Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

50 matches found

Positive Technologies
Positive Technologiesadded 2022/11/28 12:0 a.m.1 views

PT-2022-12298 · Velneo · Velneo Vclient

Name of the Vulnerable Software and Affected Versions: Velneo vClient version 28.1.3 Description: The issue allows an attacker with knowledge of the victim's username and hashed password to spoof the victim's id against the server. Recommendations: For Velneo vClient version 28.1.3, consider...

8.7CVSS6.8AI score0.00439EPSS
Exploits0References10
OSV
OSVadded 2021/10/25 2:15 p.m.1 views

CVE-2021-24662

The Game Server Status WordPress plugin through 1.0 does not validate or escape the serverid parameter before using it in SQL statement, leading to an Authenticated SQL Injection in an admin page...

7.2CVSS5.8AI score
Exploits0References1
OSV
OSVadded 2018/06/22 8:29 p.m.2 views

UBUNTU-CVE-2018-12689

phpLDAPadmin 1.2.2 allows LDAP injection via a crafted serverid parameter in a cmd.php?cmd=loginform request, or a crafted username and password in the login panel...

9.8CVSS5.8AI score0.00427EPSS
Exploits1References3
OSV
OSVadded 2018/06/22 8:29 p.m.2 views

DEBIAN-CVE-2018-12689

phpLDAPadmin 1.2.2 allows LDAP injection via a crafted serverid parameter in a cmd.php?cmd=loginform request, or a crafted username and password in the login panel...

9.8CVSS7.4AI score0.00427EPSS
Exploits1References1
RedHat Linux
RedHat Linuxadded 2016/05/12 4:19 p.m.4 views

haproxy: Setting cookie containing internal IP address of a pod

An information disclosure flaw was discovered in haproxy as used by OpenShift Enterprise; a cookie with the name "OPENSHIFTnamespaceSERVERID" was set, which contained the internal IP address of a pod...

3.3CVSS5.8AI score0.00048EPSS
Exploits0References4
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.14 views

MediaHouse Software Statistics Server 4.28/5.1 "Server ID" Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/734/info The web interface for Statistics Server contains an unchecked buffer which accepts input from the Server ID field of the login webpage. While the login webpage has a 16 character restriction, this is easily...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2014/02/26 12:0 a.m.15 views

MODBUS/TCP 'Report Server ID' Function Code Detection

Binary data 7103.pasl...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2008/12/29 12:0 a.m.53 views

XOOPS xoopsConfig[language] Parameter Local File Inclusion (DSECRG-08-040)

The version of XOOPS installed on the remote host fails to filter user-supplied input to the 'xoopsConfiglanguage' parameter before passing it to a PHP 'includeonce' function in 'xoopslib/modules/protector/main.php'. Provided PHP's 'registerglobals' setting is enabled, an unauthenticated attacker...

6.8CVSS5.8AI score0.05657EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2008/12/15 12:0 a.m.13 views

Moodle < 1.9.4 'filter/tex/texed.php' 'pathname' Parameter RCE

Binary data 4788.prm...

7.3AI score
Exploits0References1
exploitpack
exploitpackadded 1999/09/30 12:0 a.m.15 views

MediaHouse Software Statistics Server 4.285.1 - Server ID Buffer Overflow

MediaHouse Software Statistics Server 4.285.1 - Server ID Buffer Overflow source: https://www.securityfocus.com/bid/734/info The web interface for Statistics Server contains an unchecked buffer which accepts input from the "Server ID" field of the login webpage. While the login webpage has a 16...

0.5AI score
Exploits0
Rows per page
Query Builder