Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

FreeBSD
FreeBSDadded 2024/01/16 12:0 a.m.20 views

sqlite -- use-after-free bug in jsonparseaddnodearray

[email protected] reports: A heap use-after-free issue has been identified in SQLite in the jsonParseAddNodeArray function in sqlite3.c. This flaw allows a local attacker to leverage a victim to pass specially crafted malicious input to the application, potentially causing a crash and leading t...

5.5CVSS6.8AI score0.00018EPSS
Exploits1References1
Hacker One
Hacker Oneadded 2016/04/12 9:16 p.m.16 views

Slack: Access to some Slack workspace metadata and settings available to unauthorized parties

In April 2016, @secalert alerted us to a vulnerability which may have allowed access to some Slack workspace metadata and settings to unauthorized parties. We implemented an initial fix within minutes, and a complete fix within two weeks. Nothing further is required from users to be protected...

4.3AI score
Exploits0
securityvulns
securityvulnsadded 2006/01/18 12:0 a.m.30 views

[Full-disclosure] Oracle Reports - Read parts of files via customize(fixed after 875 days)

Hello FD-Reader It took only 875 days to fix this problem. Summary and additional information concerning the Oracle January 2006 CPU is available here: http://www.red-database-security.com/advisory/oraclecpujan2006.html http://www.red-database-security.com/advisory/oraclereportsreadanyxm lfile.ht...

Exploits0
securityvulns
securityvulnsadded 2005/10/20 12:0 a.m.23 views

[Full-disclosure] Oracle Workflow CSS Vulnerability wf_monitor

Dear FD-Reader, The Oracle Critical Patch Update October 2005 provides fixes for 2 Cross-Site- Scripting vulnerabilities in Oracle Workflow found by Red-Database-Security GmbH. I know that the severity and impact of CSS bugs is low. My critical security bugs in Oracle e.g. become DBA via the impo...

7AI score
Exploits0
Packet Storm
Packet Stormadded 2005/03/25 12:0 a.m.19 views

oracleXSS10g.txt

Oracle Reports Server 10g 9.0.4.3.3 Vulnerable to Cross Site Scripting http://paolo/reports/examples/Tools/test.jsp?repprod&desname='alertdocument.cookie; http://paolo/reports/examples/Tools/test.jsp?repprod"alertdocument.cookie; Paolo sends GREETS to Oracle secalert Paolo...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2005/03/24 12:0 a.m.40 views

Oracle Reports Server 10g Vulnerable to XSS

Oracle Reports Server 10g 9.0.4.3.3 Vulnerable to Cross Site Scripting http://paolo/reports/examples/Tools/test.jsp?repprod&desname='scriptalertdocument.cookie;/script http://paolo/reports/examples/Tools/test.jsp?repprod"scriptalertdocument.cookie;/script Paolo sends GREETS to Oracle secalert Pao...

0.1AI score
Exploits0
Rows per page
Query Builder