CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

CNNVD•added 2022/04/12 12:0 a.m.•2 views

Microsoft Windows Remote Procedure Call Runtime 代码注入漏洞

Microsoft Windows Remote Procedure Call Runtime is a powerful technology for creating distributed client/server programs from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Windows Remote Procedure Call Runtime. The following products and versions are affected:...

9.3CVSS8.6AI score0.07351EPSS

Exploits0References6

seebug.org•added 2014/07/01 12:0 a.m.•14 views

cPanel 11.18.3 - List Directories and Folders Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28300/info cPanel is prone to an information-disclosure vulnerability. An attacker can exploit this issue to determine programs that are running on the affected server and to view folders on other sites that are protected...

7.1AI score

Exploits0

RedHat Linux•added 2013/12/19 10:49 p.m.•2 views

openjpa: Remote arbitrary code execution by creating a serialized object and leveraging improperly secured server programs

The BrokerFactory functionality in Apache OpenJPA 1.x before 1.2.3 and 2.x before 2.2.2 creates local executable JSP files containing logging trace data produced during deserialization of certain crafted OpenJPA objects, which makes it easier for remote attackers to execute arbitrary code by...

7.5CVSS7.7AI score0.14602EPSS

Exploits0References4

Mageia•added 2013/10/05 5:44 p.m.•35 views

Updated openjpa packages fix CVE-2013-1768

Updated openjpa packages fix security vulnerability: The BrokerFactory functionality in Apache OpenJPA before 2.2.2 creates local executable JSP files containing logging trace data produced during deserialization of certain crafted OpenJPA objects, which makes it easier for remote attackers to...

7.5CVSS3.9AI score0.14602EPSS

Exploits0References2