Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

BDU FSTEC
BDU FSTECadded 2017/12/14 12:0 a.m.3 views

The vulnerability of the “extensionsettings” component of the CGI application for the web interface of the Sonicwall Secure Remote Access server management system allows a hacker to execute arbitrary commands.

The vulnerability of the “extensionsettings” /cgi-bin/extensionsettings component of the CGI application for the web interface of the Dell Inc. Sonicwall Secure Remote Access SRA system management application is related to the lack of measures for cleaning input data. Exploiting this vulnerabilit...

10CVSS5.9AI score0.11554EPSS
Exploits2References4Affected Software1
BDU FSTEC
BDU FSTECadded 2017/09/28 12:0 a.m.6 views

The vulnerability of the scriptName parameter in the licenseKeyInfo method of the Kaspersky Anti-Virus for Linux File Server security tool allows a hacker to obtain files from the attacked system.

The vulnerability of the scriptName parameter in the licenseKeyInfo method of the Kaspersky Anti-Virus for Linux File Server security tool exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability can allow a malicious actor, operating remotely, to...

4.3CVSS6.6AI score0.02623EPSS
Exploits5References6Affected Software1
OSV
OSVadded 2017/07/17 9:29 p.m.3 views

CVE-2017-9813

In Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 version 8.0.4.312, the scriptName parameter of the licenseKeyInfo action method is vulnerable to cross-site scripting XSS...

6.1CVSS5.7AI score
Exploits0References6
Zero Day Initiative
Zero Day Initiativeadded 2016/01/25 12:0 a.m.25 views

Oracle Application Testing Suite DownloadServlet scriptName Parameter Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to exfiltrate arbitrary files on vulnerable installations of Oracle Application Testing Suite. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DownloadServlet. By providing a scriptName parameter containi...

7.8CVSS7.3AI score0.21922EPSS
Exploits0References1
NVD
NVDadded 2016/01/21 3:0 a.m.19 views

CVE-2016-0478

Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Manager Grid Control 12.4.0.2 and 12.5.0.2 allows remote attackers to affect confidentiality via unknown vectors related to Load Testing for Web Apps, a different vulnerability than CVE-2016-0476 and...

5CVSS5.6AI score0.21922EPSS
Exploits0References4
Prion
Prionadded 2016/01/21 3:0 a.m.15 views

Directory traversal

Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Manager Grid Control 12.4.0.2 and 12.5.0.2 allows remote attackers to affect confidentiality via unknown vectors related to Load Testing for Web Apps, a different vulnerability than CVE-2016-0476 and...

5CVSS5.8AI score0.21922EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder