Lucene search
+L

430 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.1 views

SUSE CVE-2017-2834

An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the middle...

7.5CVSS9.4AI score0.01826EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.4 views

SUSE CVE-2020-28896

Mutt before 2.0.2 and NeoMutt before 2020-11-20 did not ensure that $sslforcetls was processed if an IMAP server's initial server response was invalid. The connection was not properly closed, and the code could continue attempting to authenticate. This could result in authentication credentials...

6.5CVSS7.3AI score0.02323EPSS
Exploits0References11
Huntr
Huntr
added 2022/12/26 10:37 a.m.34 views

An attacker can be post message in other memos page

Description An attacker can be post malicious content to other user's memos page via POST request, attacker just add an creatorID into body request and send it with Burpsuite Here is video poc: https://drive.google.com/file/d/1dNKo-ybfguam4YdvmluYujN2nkTG5D9G/view?usp=sharelink Proof of Concept...

5CVSS0.2AI score0.00772EPSS
Exploits1
Huntr
Huntr
added 2022/12/24 8:32 a.m.123 views

Stored XSS via XML File

Description When user upload a file with .xml extension and direct access this file, the server response with Content-type: image/svg+xml lead to processing XML as HTML file POC POST /flatpress-master/admin.php?p=uploader&action=default HTTP/1.1 Host: localhost Content-Length: 639 Origin:...

9.4AI score
Exploits0References2
Microsoft Secure
Microsoft Secure
added 2022/12/12 5:0 p.m.55 views

IIS modules: The evolution of web shells and how to detect them

Web exploitation and web shells are some of the most common entry points in the current threat landscape. Web servers provide an external avenue directly into your corporate network, which often results in web servers being an initial intrusion vector or mechanism of persistence. Monitoring for...

Exploits0
CNVD
CNVD
added 2022/11/25 12:0 a.m.49 views

SolarWinds Security Event Manager Information Disclosure Vulnerability

SolarWinds Security Event Manager SolarWinds SEM is an American SolarWinds Inc. for forensics and troubleshooting, as well as a tool to help you manage log data. An information disclosure vulnerability exists in SolarWinds Security Event Manager versions prior to 2022.4, which stems from the...

5.3CVSS4.9AI score0.00651EPSS
Exploits0References1
NVD
NVD
added 2022/11/23 5:15 p.m.24 views

CVE-2022-38113

This vulnerability discloses build and services versions in the server response header...

5.3CVSS0.00651EPSS
Exploits0References2
Prion
Prion
added 2022/11/23 5:15 p.m.14 views

Design/Logic Flaw

This vulnerability discloses build and services versions in the server response header...

5CVSS5.3AI score0.00651EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/11/23 12:0 a.m.25 views

CVE-2022-38113 Information Disclosure Vulnerability

This vulnerability discloses build and services versions in the server response header...

5.3CVSS5.6AI score0.00651EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/11/23 12:0 a.m.6 views

CVE-2022-38113 Information Disclosure Vulnerability

This vulnerability discloses build and services versions in the server response header...

5.3CVSS5.3AI score0.00651EPSS
Exploits0References2
CVE
CVE
added 2022/11/23 12:0 a.m.64 views

CVE-2022-38113

CVE-2022-38113 corresponds to an information-disclosure vulnerability in SolarWinds Security Event Manager (SEM). The issue stems from server response headers disclosing build and service-version information, enabling an attacker to determine software aging and lineage. Public sources consistentl...

5.3CVSS5.2AI score0.00651EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/11/21 11:15 p.m.27 views

Cross site scripting

An issue was discovered in Appalti & Contratti 9.12.2. The web applications are vulnerable to a Reflected Cross-Site Scripting issue. The idPagina parameter is reflected inside the server response without any HTML encoding, resulting in XSS when the victim moves the mouse pointer inside the page...

5.8CVSS5.8AI score0.00423EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/11/18 12:0 a.m.3 views

SEPPmail 跨站脚本漏洞

SEPPmail is an email encryption and signing solution from the Swiss company SEPPmail. A security vulnerability exists in SEPPmail version 11.1.10, which stems from a cross-site scripting vulnerability XSS in which user input is not properly encoded as HTML attributes when returned by the server...

6.1CVSS5.9AI score0.00423EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/10/26 12:0 a.m.208 views

nginx 1.1.x < 1.23.2 / 1.0.x < 1.22.1 Memory Disclosure

The installed version of nginx is 1.0.x prior to 1.22.1 or 1.1.x prior to 1.23.2. It is, therefore, affected by a memory disclosure in the ngxhttpmp4module that allows an attacker to cause a worker process crash or worker process memory disclosure. The issues only affect nginx if it is built with...

7.8CVSS7.2AI score0.01069EPSS
Exploits2References4
OSV
OSV
added 2022/10/07 5:15 a.m.39 views

CVE-2022-2928

In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the option's refcount field. However, there is not a corresponding call to optiondereference to decrement the refcount field. The function addoption is on...

6.5CVSS2.6AI score0.00682EPSS
Exploits0References6
Prion
Prion
added 2022/10/07 5:15 a.m.32 views

Code injection

In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the option's refcount field. However, there is not a corresponding call to optiondereference to decrement the refcount field. The function addoption is on...

3.3CVSS6.4AI score0.00682EPSS
Exploits0References6Affected Software3
Hacker One
Hacker One
added 2022/09/23 5:49 p.m.11 views

Basecamp: Arbitrary write in the application's data folder and arbitrary read of server's replies from 3rd party apps.

A path traversal vulnerability was found in the Android app com.basecamp.bc3 version 3.26.3, allowing an attacker to write arbitrary files in the app's private directory. Additionally, the attacker could redirect server responses containing sensitive information to 3rd party apps using a...

6.7AI score
Exploits0
OSV
OSV
added 2022/09/14 7:41 p.m.9 views

CLSA-2022-1663184487 Fix CVE(s): CVE-2022-35252

SECURITY UPDATE: When curl sends back to an HTTPS server cookies with control bytes, it might make the server return a 400 response - debian/patches/CVE-2022-35252.patch: reject cookies with control bytes 0x01-0x1f except 0x09 plus 0x7f - CVE-2022-35252...

3.7CVSS6.7AI score0.01839EPSS
Exploits1References1
OSV
OSV
added 2022/09/09 11:4 a.m.3 views

OESA-2022-1908 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: When curl is used to retrieve and parse cookies from an HTTPS server, it accepts cookies using control codes byte values below 32. When cookies...

3.7CVSS6.9AI score0.01839EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/08/31 12:0 a.m.3 views

curl 安全漏洞

curl is a tool for transferring data from or to a server. A security vulnerability exists in curl versions 4.9 through 7.84, which stems from the fact that when curl retrieves and parses a cookie from an HTTPS server, it accepts the cookie using a control code a value of less than 32 bytes, which...

3.7CVSS5.9AI score0.01839EPSS
Exploits1References25
Rows per page
Query Builder