Lucene search
K

4 matches found

OSV
OSV
added 2025/11/14 6:15 p.m.5 views

CVE-2025-63725

Reflected Cross-Site Scripting XSS vulnerability in SVX Portal 2.7A via the id parameter to Recivers.php...

6.1CVSS5.8AI score0.00196EPSS
Exploits1References2
ThreatPost
ThreatPost
added 2021/10/19 9:42 p.m.83 views

Squirrel Bug Lets Attackers Execute Code in Games, Cloud Services

An out-of-bounds read vulnerability in the Squirrel programming language lets attackers break out of sandbox restrictions and execute arbitrary code within a Squirrel virtual machine VM, thus giving a malicious actor complete access to the underlying machine. Given where Squirrel lives – in games...

10CVSS9.7AI score0.02177EPSS
Exploits1References11
SonarSource Blog
SonarSource Blog
added 2021/10/19 12:0 a.m.35 views

Squirrel Sandbox Escape allows Code Execution in Games and Cloud Services

SquirrelLang is an interpreted, open-source programming language that is used by video games and cloud services for customization and plugin development. For example, the extremely popular game Counter-Strike: Global Offensive CS:GO attracts millions of players on a monthly basis and utilizes the...

0.2AI score0.02177EPSS
Exploits1
CVE
CVE
added 2009/08/17 4:0 p.m.41 views

CVE-2009-2781

CVE-2009-2781 describes an SQL injection in Arab Portal 2.x/forum.php where remote authenticated users can inject via the qc parameter in an addcomment action (when magic_quotes_gpc is disabled). This is a distinct vector from CVE-2006-1666. Affected: Arab Portal 2.x/2.0.1 stable forum.php compon...

6CVSS8.1AI score0.00732EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder