Lucene search
K

33 matches found

ossfuzz
ossfuzz
added 2020/06/11 1:29 p.m.15 views

go-dns:fuzz_msg_unpack: Crash with empty stacktrace

Detailed Report: https://oss-fuzz.com/testcase?key=5674594752266240 Project: go-dns Fuzzing Engine: libFuzzer Fuzz Target: fuzzmsgunpack Job Type: libfuzzerasango-dns Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x00000003ee72 Crash State: NULL Sanitizer: address ASAN Recommended...

6.8AI score
Exploits0Affected Software1
Debian CVE
Debian CVE
added 2019/07/05 12:52 a.m.39 views

CVE-2019-13301

ImageMagick 7.0.8-50 Q16 has memory leaks in AcquireMagickMemory because of an AnnotateImage error...

6.5CVSS7.8AI score0.02696EPSS
Exploits1
Prion
Prion
added 2018/11/27 4:29 p.m.14 views

Design/Logic Flaw

In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, improper mounting lead to device node and executable to be run from /dsp/ which presents a potential security issue...

7.2CVSS7.4AI score0.00177EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/06/23 3:10 p.m.128 views

Security update for go1.9 (moderate)

This update for go1.9 fixes the following issues: Security issues fixed: - CVE-2018-7187: arbitrary command execution via VCS path boo1081495 Non-security changes: - Update to version 1.9.7 - fixes to the go command and compiler - minimal support to the go command for the vgo transition...

9.3CVSS6AI score0.63229EPSS
Exploits1References1
ossfuzz
ossfuzz
added 2018/01/24 2:19 a.m.15 views

mupdf/pdf_fuzzer: Use-of-uninitialized-value in jbig2_arith_decode

Project: git://git.ghostscript.com/mupdf.git Detailed report: https://oss-fuzz.com/testcase?key=5652888073273344 Project: mupdf Fuzzer: libFuzzermupdfpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanmupdf Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...

6.7AI score
Exploits0Affected Software1
Cvelist
Cvelist
added 2017/05/11 2:1 p.m.8 views

CVE-2014-8818

...

Exploits0
RedHat Linux
RedHat Linux
added 2015/08/17 8:10 a.m.5 views

subversion: svn_repos_trace_node_locations() reveals paths hidden by authz

It was found that when an SVN server both svnserve and httpd with the moddavsvn module searched the history of a file or a directory, it would disclose its location in the repository if that file or directory was not readable for example, if it had been moved...

4CVSS7.3AI score0.06464EPSS
Exploits0References5
CVE
CVE
added 2011/11/01 10:0 p.m.40 views

CVE-2010-5003

The CVE-2010-5003 entry concerns an SQL injection in the AutarTimonial component (com_autartimonial) version 1.0.8 for Joomla!. The vulnerability is triggered via the limit parameter in an autartimonial action to index.php, allowing remote attackers to execute arbitrary SQL commands. The affected...

7.5CVSS8.7AI score0.01627EPSS
Exploits1References8Affected Software1
Packet Storm
Packet Storm
added 2011/05/24 12:0 a.m.25 views

Mollify 1.8.0.1 Cross Site Scripting

------------------------------------------------------------------------ Software................Mollify 1.8.0.1 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.mollify.org/ Discovery Date..........5/19/2011 Tested...

7.4AI score
Exploits0
xssed
xssed
added 2011/02/21 12:0 a.m.15 views

Unfixed XSS vulnerability at www.gruppotoscano.it

Security researcher Langy, has submitted on 21/02/2011 a cross-site-scripting XSS vulnerability affecting www.gruppotoscano.it, which at the time of submission ranked 167859 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It is...

6.6AI score
Exploits0References1
securityvulns
securityvulns
added 2007/07/28 12:0 a.m.250 views

[email protected]

PHPBlogger is a simple tool to help the creation of web blogs... Encrypted admin password and other preferences are stored on /data/pref.db You can find lots of them exposed with google search: pref password= filetype:db = -------------------------------------------- The admin panel is acessible...

0.1AI score
Exploits0
OSV
OSV
added 2005/09/24 12:0 a.m.19 views

DSA-820-1 courier - missing input sanitising

Bulletin has no description...

4.3CVSS6.1AI score0.0273EPSS
Exploits1
Cvelist
Cvelist
added 2003/05/08 4:0 a.m.13 views

CVE-2003-0261

fuzz 0.6 and earlier creates temporary files insecurely, which could allow local users to gain root privileges...

6.5AI score0.00321EPSS
Exploits0References1
Rows per page
Query Builder