Lucene search
+L

142 matches found

Openbugbounty
Openbugbounty
added 2022/12/11 9:51 a.m.16 views

redhill.bromley.sch.uk Cross Site Scripting vulnerability OBB-3094333

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/10/22 7:0 a.m.5 views

A flaw was found in the Linux kernel’s networking code. A use-after-free was found in the way the sch_sfb enqueue function used the socket buffer (SKB) cb field after the same SKB had been enqueued (and freed) into a child qdisc. This flaw allows a local unprivileged user to crash the system causing a denial of service.

...

5.5CVSS7.2AI score0.0045EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 6:20 p.m.2 views

Malicious code in sch-frontend-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8df0a30057039a07f47a29f52f2ae43e6fb46fb1e63983f39b4d26aa0f719ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 6:20 p.m.4 views

MAL-2022-5960 Malicious code in sch-frontend-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8df0a30057039a07f47a29f52f2ae43e6fb46fb1e63983f39b4d26aa0f719ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Openbugbounty
Openbugbounty
added 2022/03/08 10:33 a.m.11 views

limehurst.oldham.sch.uk Improper Access Control vulnerability OBB-2416227

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

0.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/02/02 8:6 p.m.8 views

heathside.surrey.sch.uk Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1082500 Security Researcher securaji Helped patch 77 vulnerabilities Received 3 Coordinated Disclosure badges Received 4 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting heathside.surrey.sch.uk...

0.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/01/17 7:15 a.m.8 views

astamsoccer.sch.id XSS vulnerability

Open Bug Bounty ID: OBB-206924 Description| Value ---|--- Affected Website:| astamsoccer.sch.id Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Cvelist
Cvelist
added 2014/08/29 10:0 a.m.21 views

CVE-2014-3346

The web framework in Cisco Transport Gateway for Smart Call Home aka TG-SCH or Transport Gateway Installation Software does not validate an unspecified parameter, which allows remote authenticated users to cause a denial of service service crash via a crafted string, aka Bug ID CSCuq31819...

6.3AI score0.01852EPSS
Exploits0References4
Prion
Prion
added 2014/08/29 9:55 a.m.14 views

Information disclosure

The web framework in Cisco Transport Gateway for Smart Call Home aka TG-SCH or Transport Gateway Installation Software does not validate an unspecified parameter, which allows remote authenticated users to cause a denial of service service crash via a crafted string, aka Bug ID CSCuq31819...

6.3CVSS6.8AI score0.01852EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2014/08/28 1:0 a.m.40 views

CVE-2014-3344

CVE-2014-3344 affects Cisco Transport Gateway for Smart Call Home (TG-SCH) 4.0. Multiple cross-site scripting (XSS) flaws exist in the web framework, allowing remote attackers to inject arbitrary web scripts or HTML via unspecified parameters. Root cause cited: insufficient input validation in th...

4.3CVSS5.9AI score0.01951EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2013/02/24 11:48 a.m.35 views

CVE-2012-6275

Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via 1 the filename header in an SCH request or 2 the userid component in a DUPF request...

10CVSS6.8AI score0.46498EPSS
Exploits8References1
Prion
Prion
added 2013/02/24 11:48 a.m.16 views

Stack overflow

Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via 1 the filename header in an SCH request or 2 the userid component in a DUPF request...

10CVSS7.3AI score0.46498EPSS
Exploits8References1
Cvelist
Cvelist
added 2013/02/24 11:0 a.m.37 views

CVE-2012-6275

Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via 1 the filename header in an SCH request or 2 the userid component in a DUPF request...

6.7AI score0.46498EPSS
Exploits8References1
CVE
CVE
added 2013/02/24 11:0 a.m.131 views

CVE-2012-6275

Summary: CVE-2012-6275 affects BigAntSoft BigAnt IM Message Server’s AntDS.exe, where a stack-based buffer overflow is triggered by handling the filename header in SCH requests or the userid field in DUPF requests. This can allow remote, unauthenticated attackers to influence the process, potenti...

10CVSS6.8AI score0.46498EPSS
Exploits8References1Affected Software1
Saint
Saint
added 2013/02/22 12:0 a.m.25 views

BigAnt Server SCH and DUPF Stack Overflow

Added: 02/22/2013 CVE: CVE-2012-6275 BID: 57214 OSVDB: 89344 Background BigAnt Messenger Server offers secure instant messaging, file transfer, voip, video chat, web conferencing and more. Problem BigAnt Server versions 2.97 SP7 and prior are vulnerable to a stack overflow condition due to improp...

10CVSS6.8AI score0.46498EPSS
Exploits8
Saint
Saint
added 2013/02/22 12:0 a.m.30 views

BigAnt Server SCH and DUPF Stack Overflow

Added: 02/22/2013 CVE: CVE-2012-6275 BID: 57214 OSVDB: 89344 Background BigAnt Messenger Server offers secure instant messaging, file transfer, voip, video chat, web conferencing and more. Problem BigAnt Server versions 2.97 SP7 and prior are vulnerable to a stack overflow condition due to improp...

10CVSS6.8AI score0.46498EPSS
Exploits8
Saint
Saint
added 2013/02/22 12:0 a.m.27 views

BigAnt Server SCH and DUPF Stack Overflow

Added: 02/22/2013 CVE: CVE-2012-6275 BID: 57214 OSVDB: 89344 Background BigAnt Messenger Server offers secure instant messaging, file transfer, voip, video chat, web conferencing and more. Problem BigAnt Server versions 2.97 SP7 and prior are vulnerable to a stack overflow condition due to improp...

10CVSS6.8AI score0.46498EPSS
Exploits8
Packet Storm
Packet Storm
added 2013/02/20 12:0 a.m.62 views

BigAnt Server 2 SCH And DUPF Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'BigAnt Server 2 SCH And DUPF Buffer...

10CVSS1AI score0.46498EPSS
Exploits8
NVD
NVD
added 2007/06/27 12:30 a.m.21 views

CVE-2007-3445

Buffer overflow in SJ Labs SJphone 1.60.303c, running under Windows Mobile 2003 on the Samsung SCH-i730 phone, allows remote attackers to cause a denial of service device hang and call termination via a malformed SIP INVITE message, a different vulnerability than CVE-2007-3351...

4.3CVSS6.7AI score0.0132EPSS
Exploits0References3
Prion
Prion
added 2007/06/27 12:30 a.m.22 views

Buffer overflow

Buffer overflow in SJ Labs SJphone 1.60.303c, running under Windows Mobile 2003 on the Samsung SCH-i730 phone, allows remote attackers to cause a denial of service device hang and call termination via a malformed SIP INVITE message, a different vulnerability than CVE-2007-3351...

4.3CVSS7.1AI score0.01602EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder