Lucene search
+L

8004 matches found

Prion
Prion
added 2007/11/07 11:46 p.m.27 views

Design/Logic Flaw

Perl-Compatible Regular Expression PCRE library before 7.3 reads past the end of the string when searching for unmatched brackets and parentheses, which allows context-dependent attackers to cause a denial of service crash, possibly involving forward references...

5CVSS6.5AI score0.02526EPSS
Exploits0References42Affected Software1
ATTACKERKB
ATTACKERKB
added 2007/10/30 9:46 p.m.3 views

CVE-2007-1323

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-2893. Reason: this candidate was intended for one issue, but some sources used this identifier for a separate issue, and a duplicate identifier had also been created by the time dual use was detected. Notes: All CVE users...

7.2CVSS5.8AI score0.00461EPSS
Exploits0References1
Prion
Prion
added 2007/10/29 10:46 p.m.16 views

Design/Logic Flaw

httpd.tkd in Radia Integration Server in Hewlett-Packard HP OpenView Configuration Management CM Infrastructure 4.0 through 4.2i and Client Configuration Manager CCM 2.0 allows remote attackers to read arbitrary files via URLs containing tilde references to home directories, as demonstrated by ro...

7.8CVSS7.2AI score0.02772EPSS
Exploits0References8Affected Software2
ATTACKERKB
ATTACKERKB
added 2007/10/18 8:17 p.m.3 views

CVE-2007-5553

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-4158. Reason: This candidate is a duplicate of CVE-2007-4158. It was based on a vague pre-advisory, so the duplicate was not detected until more details were provided. Notes: All CVE users should reference CVE-2007-4158 inste...

7.8CVSS5.8AI score0.02354EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2007/10/08 7:17 p.m.3 views

CVE-2007-4851

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-5137. Reason: This candidate is a duplicate of CVE-2007-5137. Notes: All CVE users should reference CVE-2007-5137 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

6.8CVSS5.8AI score0.04855EPSS
Exploits0References1
securityvulns
securityvulns
added 2007/09/26 12:0 a.m.53 views

SimpNews version 2.41.03 File Content Disclosure Vulnerability

netVigilance Security Advisory 69 SimpNews version 2.41.03 File Content Disclosure Vulnerability Description: SimpNews is a news system written in PHP. Features: Data stored in MySQL, admin interface, support for multiple languages, support for multiple instances in one database, own header,...

5CVSS0.01491EPSS
Exploits1
Packet Storm
Packet Storm
added 2007/09/18 12:0 a.m.65 views

rt-sa-2007-001.txt

Advisory: Alcatel-Lucent OmniPCX Remote Command Execution RedTeam Pentesting discovered a remote command execution in the Alcatel-Lucent OmniPCX during a penetration test. The masterCGI script of the OmniPXC integrated communication solution web interface is vulnerable to a remote command...

10CVSS9.6AI score0.97759EPSS
Exploits8
CVE
CVE
added 2007/08/09 11:0 p.m.52 views

CVE-2007-4274

CVE-2007-4274 is rejected/not used and does not represent an active vulnerability entry.

6.5AI score
Exploits1
Packet Storm
Packet Storm
added 2007/07/25 12:0 a.m.38 views

ProCheckUp Security Advisory 2007.19

PR07-19: Cross-site Scripting XSS / HTML injection on Webbler CMS admin login page 2 This advisory has been published following consultation with UK CPNI formerly known as NISCC Date Found: 14th June 2007 Successfully tested on: Webbler CMS version 3.1.3. Earlier versions are possibly affected as...

0.5AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2007/07/06 6:30 p.m.3 views

CVE-2007-3595

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-3399. Reason: This candidate is a duplicate of CVE-2007-3399. Notes: All CVE users should reference CVE-2007-3399 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

7.5CVSS5.8AI score0.01423EPSS
Exploits1References1
securityvulns
securityvulns
added 2007/06/28 12:0 a.m.69 views

[Full-disclosure] Secunia Research: Symantec Mail Security for SMTP Boundary Errors

====================================================================== Secunia Research 27/06/2007 - Symantec Mail Security for SMTP Boundary Errors - ====================================================================== Table of Contents Affected...

7.8CVSS0.8AI score0.04722EPSS
Exploits1
Packet Storm
Packet Storm
added 2007/06/15 12:0 a.m.254 views

CVE-2007-2449.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2007-2449: Apache Tomcat XSS vulnerabilities in the JSP examples Severity: low cross-site scripting Vendor: The Apache Software Foundation Versions Affected: Tomcat 4.0.0 to 4.0.6 Tomcat 4.1.0 to 4.1.36 Tomcat 5.0.0 to 5.0.30 Tomcat 5.5.0 to 5.5.2...

4.3CVSS7.7AI score0.77376EPSS
Exploits1
securityvulns
securityvulns
added 2007/06/14 12:0 a.m.578 views

[Full-disclosure] [CVE-2007-2449] Apache Tomcat XSS vulnerabilities in the JSP examples

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2007-2449: Apache Tomcat XSS vulnerabilities in the JSP examples Severity: low cross-site scripting Vendor: The Apache Software Foundation Versions Affected: Tomcat 4.0.0 to 4.0.6 Tomcat 4.1.0 to 4.1.36 Tomcat 5.0.0 to 5.0.30 Tomcat 5.5.0 to 5.5.2...

4.3CVSS7.8AI score0.77376EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2007/06/12 7:30 p.m.4 views

CVE-2007-1752

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-1499. Reason: This candidate is a duplicate of CVE-2007-1499. Notes: All CVE users should reference CVE-2007-1499 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

4.3CVSS5.8AI score0.2978EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2007/06/07 10:30 p.m.5 views

CVE-2007-3125

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-6772. Reason: This candidate is a duplicate of CVE-2006-6772. Notes: All CVE users should reference CVE-2006-6772 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

9.3CVSS5.8AI score0.04665EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2007/06/04 5:30 p.m.4 views

CVE-2007-3004

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-2788. Reason: This candidate is a duplicate of CVE-2007-2788. Notes: All CVE users should reference CVE-2007-2788 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

6.8CVSS5.8AI score0.18185EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2007/05/01 10:19 a.m.4 views

CVE-2007-2413

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-2459. Reason: This candidate is a duplicate of CVE-2007-2459. Notes: All CVE users should reference CVE-2007-2459 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

7.8CVSS5.8AI score0.04926EPSS
Exploits0References1
securityvulns
securityvulns
added 2007/03/22 12:0 a.m.41 views

Secunia Research: Evolution Shared Memo Categories Format String Vulnerability

====================================================================== Secunia Research 21/03/2007 - Evolution Shared Memo Categories Format String Vulnerability - ====================================================================== Table of Contents Affected...

6.8CVSS1.3AI score0.03364EPSS
Exploits0
securityvulns
securityvulns
added 2007/02/16 12:0 a.m.46 views

Dem_trac acces to log file wihtout authentification

Demtrac acces to log file wihtout authentification By : sn0oPy Risk : low site : http://jc.meier.free.fr exploit : juste add to the url "ancsit.txt" http://www.target.ma http://www.target.ma/ancsit.txt Dork : intitle:"Gestion des fichiers log" contact : [email protected] greetz :...

1.7AI score
Exploits0
Packet Storm
Packet Storm
added 2007/01/29 12:0 a.m.29 views

admentor-sql.txt

AdMentor banners admin SQL injection By : sn0oPy Risk : high Site : http://www.aspcode.net/products/admentor Dork : inurl:"admentor/admin" exploit : UserID = 'or' '=' Password = 'or' '=' contact : [email protected] greetz : subzero, Avg Teamhttp://forums.avenir-geopolitique.net. references :...

7.4AI score
Exploits0
Rows per page
Query Builder