Lucene search
K

226 matches found

Intel
Intel
added 2023/11/14 12:0 a.m.21 views

Intel® OFU Software Advisory

Summary: Potential security vulnerabilities in some Intel® One Boot Flash Update OFU software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-32204 Description: Improper access control in so...

8.8CVSS7.6AI score0.00199EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/08/04 12:0 a.m.37 views

Debian Security Advisory DSA 3926-1 (chromium-browser - security update)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5087 Ned Williamson discovered a way to escape the sandbox. CVE-2017-5088 Xiling Gong discovered an out-of-bounds read issue in the v8 javascript library. CVE-2017-5089 Michal Bentkowski discovered a spoofing issue...

6.8CVSS0.4AI score0.15513EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/03/21 12:0 a.m.38 views

CentOS 7 : firefox (CESA-2017:0558)

An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS8.6AI score0.02802EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2017/03/21 12:0 a.m.30 views

CentOS Update for firefox CESA-2017:0558 centos7

Check the version of firefox SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882683";...

9.8CVSS8.4AI score0.02802EPSS
Exploits1References2
Cent OS
Cent OS
added 2017/03/20 8:40 a.m.69 views

firefox security update

CentOS Errata and Security Advisory CESA-2017:0558 An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS7.6AI score0.02802EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2017/03/17 10:3 p.m.59 views

Critical: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS7.6AI score0.02802EPSS
Exploits1References3
0day.today
0day.today
added 2016/04/06 12:0 a.m.35 views

SocialEngine 4.8.9 - SQL Injection

Exploit for php platform in category web applications Product: SocialEngine Vendor: Webligo Vulnerable Versions: 4.8.9 and probably prior Tested Version: 4.8.9 Advisory Publication: December 21, 2015 without technical details Vendor Notification: December 21, 2015 Public Disclosure: April 6, 2016...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2016/03/19 12:0 a.m.38 views

Dating Pro Genie 2015.7 Cross Site Request Forgery

Advisory ID: HTB23294 Product: Dating Pro Vendor: DatingPro Vulnerable Versions: Genie 2015.7 and probably prior Tested Version: Genie 2015.7 Advisory Publication: February 10, 2016 without technical details Vendor Notification: February 10, 2016 Vendor Patch: February 29, 2016 Public Disclosure:...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2016/02/18 12:0 a.m.40 views

WeBid 1.1.2P2 SQL Injection

Advisory ID: HTB23292 Product: WeBid Vendor: WeBid Vulnerable Versions: 1.1.2P2 and probably prior Tested Version: 1.1.2P2 Advisory Publication: January 22, 2016 without technical details Vendor Notification: January 22, 2016 Vendor Patch: February 4, 2016 Public Disclosure: February 17, 2016...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2016/01/15 12:0 a.m.106 views

mcart.xls Bitrix Module 6.5.2 - SQL Injection

mcart.xls Bitrix Module 6.5.2 - SQL Injection Advisory ID: HTB23279 Product: mcart.xls Bitrix module Vendor: www.mcart.ru Vulnerable Versions: 6.5.2 and probably prior Tested Version: 6.5.2 Advisory Publication: November 18, 2015 without technical details Vendor Notification: November 18, 2015...

6CVSS8.4AI score0.02731EPSS
Exploits5
htbridge
htbridge
added 2016/01/13 12:0 a.m.517 views

Remote Code Execution in Exponent

High-Tech Bridge Security Research Lab discovered critical vulnerability in Exponent CMS, which can be exploited to inject and execute arbitrary PHP code on the vulnerable system with the privileges of the web server. The vulnerability resides within "/install/index.php" script, when handling...

10CVSS9.8AI score0.06636EPSS
Exploits3Affected Software1
Exploit DB
Exploit DB
added 2015/12/14 12:0 a.m.111 views

Bitrix bitrix.mpbuilder Module 1.0.10 - Local File Inclusion

Advisory ID: HTB23281 Product: bitrix.mpbuilder Bitrix module Vendor: www.1c-bitrix.ru Vulnerable Versions: 1.0.10 and probably prior Tested Version: 1.0.10 Advisory Publication: November 18, 2015 without technical details Vendor Notification: November 18, 2015 Vendor Patch: November 25, 2015...

9CVSS6.5AI score0.06631EPSS
Exploits5
Packet Storm
Packet Storm
added 2015/12/11 12:0 a.m.60 views

bitrix.mpbuilder Bitrix 1.0.10 Local File Inclusion

Advisory ID: HTB23281 Product: bitrix.mpbuilder Bitrix module Vendor: www.1c-bitrix.ru Vulnerable Versions: 1.0.10 and probably prior Tested Version: 1.0.10 Advisory Publication: November 18, 2015 without technical details Vendor Notification: November 18, 2015 Vendor Patch: November 25, 2015...

9CVSS0.1AI score0.06631EPSS
Exploits5
Packet Storm
Packet Storm
added 2015/12/02 12:0 a.m.62 views

WordPress Gwolle Guestbook 1.5.3 Remote File Inclusion

Advisory ID: HTB23275 Product: Gwolle Guestbook WordPress Plugin Vendor: Marcel Pol Vulnerable Versions: 1.5.3 and probably prior Tested Version: 1.5.3 Advisory Publication: October 14, 2015 without technical details Vendor Notification: October 14, 2015 Vendor Patch: October 16, 2015 Public...

9.2AI score0.37032EPSS
Exploits4
0day.today
0day.today
added 2015/11/19 12:0 a.m.67 views

Horde Groupware 5.2.10 Cross Site Request Forgery Vulnerability

Horde Groupware version 5.2.10 suffers from a cross site request forgery vulnerability. Product: Horde Groupware Vendor: http://www.horde.org Vulnerable Versions: 5.2.10 and probably prior Tested Version: 5.2.10 Advisory Publication: September 30, 2015 without technical details Vendor Notificatio...

6.8CVSS0.6AI score0.04116EPSS
Exploits5
htbridge
htbridge
added 2015/10/07 12:0 a.m.508 views

Two Reflected XSS Vulnerabilities in Calls to Action WordPress plugin

High-Tech Bridge Security Research Lab discovered two Cross-Site Scripting XSS vulnerabilities in a popular WordPress plugin Calls to Action. A remote attacker might be able to steal user's and administrator’s cookies, credentials and browser history, modify web page content to perform phishing...

4.3CVSS0.2AI score0.02645EPSS
Exploits3Affected Software1
0day.today
0day.today
added 2015/09/24 12:0 a.m.77 views

iTop 2.1.0-2127 Cross Site Scripting Vulnerability

iTop version 2.1.0-2127 suffers from a cross site scripting vulnerability. Product: iTop Vendor: Combodo SARL Vulnerable Versions: 2.1.0-2127 and probably prior Tested Version: 2.1.0-2127 Advisory Publication: July 29, 2015 without technical details Vendor Notification: July 29, 2015 Vendor Patch...

4.3CVSS6.1AI score0.05477EPSS
Exploits3
Packet Storm
Packet Storm
added 2015/09/23 12:0 a.m.68 views

iTop 2.1.0-2127 Cross Site Scripting

Advisory ID: HTB23268 Product: iTop Vendor: Combodo SARL Vulnerable Versions: 2.1.0-2127 and probably prior Tested Version: 2.1.0-2127 Advisory Publication: July 29, 2015 without technical details Vendor Notification: July 29, 2015 Vendor Patch: July 30, 2015 Public Disclosure: September 23, 2015...

6.2AI score0.05477EPSS
Exploits3
Exploit DB
Exploit DB
added 2015/09/02 12:0 a.m.49 views

Cerb 7.0.3 - Cross-Site Request Forgery

Advisory ID: HTB23269 Product: Cerb Vendor: Webgroup Media LLC Vulnerable Versions: 7.0.3 and probably prior Tested Version: 7.0.3 Advisory Publication: August 12, 2015 without technical details Vendor Notification: August 12, 2015 Vendor Patch: August 14, 2015 Public Disclosure: September 2, 201...

6.8CVSS6.6AI score0.02617EPSS
Exploits5
0day.today
0day.today
added 2015/09/02 12:0 a.m.54 views

Cerb 7.0.3 Cross Site Request Forgery Vulnerability

Cerb version 7.0.3 suffers from a cross site request forgery vulnerability. Product: Cerb Vendor: Webgroup Media LLC Vulnerable Versions: 7.0.3 and probably prior Tested Version: 7.0.3 Advisory Publication: August 12, 2015 without technical details Vendor Notification: August 12, 2015 Vendor Patc...

6.8CVSS0.4AI score0.02617EPSS
Exploits5
Rows per page
Query Builder