Lucene search
K

307 matches found

Packet Storm
Packet Storm
added 2022/01/25 12:0 a.m.320 views

H2 Database Console Remote Code Execution

Document Title =============== Unauthenticated RCE vuln in the H2 Database console: CVE-2022-23221. Product Description =============== The H2 Console Application The Console lets you access a SQL database using a browser interface. Homepage: http://www.h2database.com/html/quickstart.html Affecte...

0.1AI score0.64766EPSS
Exploits4
GithubExploit
GithubExploit
added 2021/02/26 2:18 p.m.148 views

Exploit for Out-of-bounds Write in Adobe Acrobat

CVE-2021-21017 Not another Adobe Reader Byte Order Mark bu...

8.8CVSS8.7AI score0.8621EPSS
Exploits2
Cvelist
Cvelist
added 2011/06/06 7:0 p.m.27 views

CVE-2011-0082

The X.509 certificate validation functionality in Mozilla Firefox 4.0.x through 4.0.1 does not properly implement single-session security exceptions, which might make it easier for user-assisted remote attackers to spoof an SSL server via an untrusted certificate that triggers potentially unwante...

9.2AI score0.01502EPSS
Exploits2References9
seebug.org
seebug.org
added 2010/01/10 12:0 a.m.24 views

Solaris 7 8 9 sadmind RPC Command Execution

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

7.1AI score0.85678EPSS
Exploits9
myhack58
myhack58
added 2009/06/01 12:0 a.m.58 views

ASPX a word of the script the horse detailed analysis-vulnerability warning-the black bar safety net

Source: evil octal First recall before the ASP Word of the classic Trojan! %if request"nonamed""" then execute request"nonamed"% VBS execute is dynamic running the specified code and JSCRIPT also have the eval function can be achieved,that is ASP word the Trojan also has a version is the use of...

7.8AI score
Exploits0
NVD
NVD
added 2004/07/27 4:0 a.m.18 views

CVE-2004-0713

The remove method in a stateful Enterprise JavaBean EJB in BEA WebLogic Server and WebLogic Express version 8.1 through SP2, 7.0 through SP4, and 6.1 through SP6, does not properly check EJB permissions before unexporting a bean, which allows remote authenticated users to remove EJB objects from...

6.4CVSS6.3AI score0.03169EPSS
Exploits0References4
securityvulns
securityvulns
added 2004/02/06 12:0 a.m.23 views

IBM cloudscape SQL Database (DB2J) vulnerable to remote command injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Illegalaccess.org security advisory ii/02-2004 www.illegalaccess.org IBM cloudscape SQL Database DB2J vulnerable to remote command injection Brief ===== Product : IBM cloudscape database Version : 5.1 Vendor : IBM Impact : Code injection, DoS,...

0.5AI score
Exploits0
Rows per page
Query Builder