Lucene search
K

58 matches found

BDU FSTEC
BDU FSTEC
added 2021/08/18 12:0 a.m.9 views

The vulnerability of the Adobe Framemaker desktop publishing system, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

8.8CVSS7.9AI score0.03966EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2021/05/25 12:0 a.m.1 views

Dreamer CMS suffers from a directory traversal vulnerability

Dreamer CMS dreamer content publishing system is the first java development content publishing system , using the most popular springboot + thymeleaf framework to build , flexible and compact , simple configuration . Dreamer CMS has a directory traversal vulnerability that can be exploited by an...

7AI score
Exploits0
CNVD
CNVD
added 2021/04/14 12:0 a.m.3 views

File Upload Vulnerability in Webzine Publishing System of Beijing Magtech Technology Development Co.

Beijing Magtech Science &Techology Development Co.Ltd was founded in March 1999, is a high-tech company engaged in software development, system integration. A file upload vulnerability exists in Beijing Magtech Science &Techology Development Co. Ltd.'s webzine publishing system, which can be...

7.3AI score
Exploits0
CNVD
CNVD
added 2020/11/24 12:0 a.m.26 views

SPIP parameter improper validation vulnerability

SPIP, an Internet publishing system, is free software distributed under the General Public License GPL. prive/formulaires/configurerpreferences.php in versions of SPIP prior to 3.2.8 is vulnerable to couleur, display, display navigation, displayoutils, imessage, and spipecran parameters are...

9.8CVSS2.8AI score0.02167EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/07/03 12:0 a.m.6 views

The vulnerability of the Adobe Framemaker desktop publishing system, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

10CVSS7.9AI score0.04463EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2019/10/14 12:0 a.m.3 views

SQL Injection Vulnerability in Air Quality System Publishing System

Zhuhai Goling Information Technology Co., Ltd. is a high-tech enterprise engaged in research and development of core technology of information network, production of professional equipment and network application service. An SQL injection vulnerability exists in the Air Quality System Publishing...

7.6AI score
Exploits0
CNVD
CNVD
added 2019/09/18 12:0 a.m.1 views

SPIP cross-site scripting vulnerability (CNVD-2019-32493)

SPIP is a Web-based content publishing system. The system is primarily used for online collaboration. A cross-site scripting vulnerability exists in SPIP versions prior to 3.1.11 and 3.2.2 prior to 3.2.5, which can be exploited by an attacker to execute client-side code...

6.1CVSS8.4AI score0.0116EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/17 12:0 a.m.20 views

SPIP Input Validation Error Vulnerability

SPIP is a Web-based content publishing system. The system is primarily used for online collaboration. An input validation error vulnerability exists in SPIP versions prior to 3.1.11 and 3.2.2 prior to 3.2.5, which arises from a web-based system or product that does not properly validate incoming...

6.1CVSS8.8AI score0.011EPSS
Exploits0References1
0day.today
0day.today
added 2016/10/20 12:0 a.m.49 views

SPIP 3.1.2 File Enumeration / Path Traversal Vulnerabilities

Exploit for php platform in category web applications SPIP 3.1.1/3.1.2 File Enumeration / Path Traversal CVE-2016-7982 Product Description SPIP is a publishing system for the Internet, which put importance on collaborative working, multilingual environments and ease of use. It is free software,...

5CVSS0.20515EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/10/20 12:0 a.m.42 views

SPIP 3.1.1/3.1.2 - File Enumeration / Path Traversal

SPIP 3.1.1/3.1.2 File Enumeration / Path Traversal CVE-2016-7982 Product Description SPIP is a publishing system for the Internet, which put importance on collaborative working, multilingual environments and ease of use. It is free software, distributed under the GNU/GPL licence. Vulnerability...

7.5CVSS7.9AI score0.20515EPSS
Exploits4
Packet Storm
Packet Storm
added 2016/10/19 12:0 a.m.40 views

SPIP 3.1.2 Cross Site Request Forgery

SPIP 3.1.2 Exec Code Cross-Site Request Forgery CVE-2016-7980 Product Description SPIP is a publishing system for the Internet, which put importance on collaborative working, multilingual environments and ease of use. It is free software, distributed under the GNU/GPL licence. Vulnerability...

0.6AI score0.13649EPSS
Exploits8
CNVD
CNVD
added 2016/10/12 12:0 a.m.90 views

SPIP Remote Code Execution Vulnerability

SPIP is a free Web-based content publishing system. The system is primarily used for online collaboration. A remote code execution vulnerability exists in SPIP 3.1.2 and prior versions. An attacker could exploit this vulnerability to execute arbitrary code at an affected site...

8.8CVSS8.5AI score0.13649EPSS
Exploits7References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

translucid 1.75 Multiple Vulnerabilities

No description provided by source. transLucid - Cross Site Scripting and HTML Injection Vulnerabilities Version Affected: 1.75 newest Info: transLucidonline is the easy website publishing system with which anyone can create and maintain web content, in multiple languages and based on a growing li...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

NewP News Publishing System 1.0 Class.Database.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20893/info NewP News Publishing system is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the applicatio...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2013/11/10 12:0 a.m.24 views

Debian Security Advisory DSA 2794-1 (spip - several vulnerabilities)

Several vulnerabilities have been found in SPIP, a website engine for publishing, resulting in cross-site request forgery on logout, cross-site scripting on author page, and PHP injection. OpenVAS Vulnerability Test $Id: deb2794.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from adviso...

7.5CVSS6.8AI score0.25287EPSS
Exploits5References1
0day.today
0day.today
added 2013/07/16 12:0 a.m.91 views

Saurus CMS 4.7.1 Multiple Vulnerabilities

Saurus CMS version 4.7.1 suffers from cross site scripting, remote file inclusion, local file inclusion, information disclosure, remote SQL injection, HTTP response splitting, cross site request forgery, and directory traversal vulnerabilities. Saurus CMS 4.7.1 LFI / RFI / XSS / SQL Injection /...

7.2AI score
Exploits0
OSV
OSV
added 2011/12/30 12:0 a.m.13 views

DSA-2263-2 movabletype-opensource - several

Bulletin has no description...

7.2AI score
Exploits0
myhack58
myhack58
added 2011/11/08 12:0 a.m.11 views

ABCMS news publishing system vulnerabilities and fixes-vulnerability warning-the black bar safety net

// APP/Controller/Admincp.php function actionliulan //Administrator information $nowindex = $GET'page' ? $GET'page' :1; //Get the data query from the first few bars begin to take the data $page = $GET'page' ? $GET'page'-16 : 0; //Query the data $liulan = $this-admin-findAll",'id desc',array6,$pag...

0.8AI score
Exploits0
myhack58
myhack58
added 2011/04/18 12:0 a.m.16 views

Easy day technology Mall 2.1 Free Edition IIS6 parsing exploits-vulnerability warning-the black bar safety net

Easy day micro Mall is E-day technologies the only official service website. Provide professional e-Commerce service,including a free online store system,supply information publishing system design and development and provide Taobao brush drill Service,Shop Agent extension services. The exploit:...

0.9AI score
Exploits0
myhack58
myhack58
added 2011/03/02 12:0 a.m.26 views

FeiXun enterprise website management system v2011 upload vulnerabilities pass to kill 0day-vulnerability warning-the black bar safety net

Affected version: v2011 Official website: http://www.webhtm.cn PRODUCT DESCRIPTION: Suitable Agent building a Business Site of the enterprise source code, The aspect of the practical! Program description: 1. Features: simplified and Traditional Chinese switch, the product display system, news...

6.8AI score
Exploits0
Rows per page
Query Builder