17 matches found
EUVD-2004-2188
Malware in sbrugna...
EUVD-2010-1932
Malware in sbrugna...
EUVD-2025-16493
Malicious code in bioql PyPI...
EUVD-2024-19225
Malicious code in bioql PyPI...
PT-2025-27805 · WordPress · Wpvivid Backup/Migration
Name of the Vulnerable Software and Affected Versions: Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress versions up to, and including, 0.9.116 Description: The issue is related to arbitrary file uploads due to missing file type validation in the wpvivid upload import...
Ubuntu 20.04 LTS : Linux kernel (IBM) vulnerabilities (USN-7458-1)
"The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7458-1 advisory. Attila Szsz discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a...
CVE-2024-37359
Hitachi Vantara Pentaho Business Analytics Server is affected by a server-side request forgery issue due to not validating the Host header of incoming HTTP/HTTPS requests. Affected versions include Pentaho Server prior to 10.2.0.0 and 9.3.0.9, including 8.3.x. The issue allows an attacker to prov...
ROS-2-2101
2.2101 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...
Apache < 2.0.46 Multiple Vulnerabilities
Binary data 1443.prm...
PHP < 4.3.3 Multiple Vulnerabilities
The remote host is running a version of PHP that is older than 4.3.3. All versions of PHP 4 older than 4.3.3 contain multiple integer overflow vulnerabilities that may allow an attacker to execute arbitrary commands on this host. Another problem may also invalidate safemode. %NASLMINLEVEL 70300 C...
CVE-2003-0299
The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large mailbox size values that cause either integer signedness errors or integer overflow errors...
External access to Netgear RP114 "firewall"
The NetGear Web Safe Router RP114 with current firmware 3.26 is vulnerable in its default configuration. The router acts as a DHCP server for LAN clients and as a DHCP client on the external side. The IP address 192.168.0.1 is meant for local access, as DHCP server, DNS proxy, default gateway and...
man-cgi.txt
Upon researching several possible cgi based man holes I ran across the following bugged code © 1994-1999 Man-cgi 2.00, Panagiotis Christias © 1995 Man-cgi 1.15 Modified for Solaris 2.3, David Adams, © 1994 Man-cgi 1.15, Panagiotis Christias © 1996 Man-cgi 1.15 Ported to linux and maintained by, T...
Re: rh 6.2 - gid compromises, etc
slrnpull setgid: news - using eg. NNTPSERVER environmental variable, you can cause nice SEGV... egid==news, of course. On systems running innd server and probably other newsservers as well, group 'news' can be used to control content of whole spool, and to elevate privledges, gaining euid news...
icq99a.DoS.txt
Date: Mon, 29 Mar 1999 01:07:18 -0500 From: Ronald A. Jarrell To: [email protected] Subject: icq DOS / possible "stupid user" vulnerability. Ok, I was a bit surprised when, in playing with the new ICQ99a build 1700 v2.13 client which I believe is the first publicly distributed one of the 99...
cisco.7xx.tcp.http.txt
Date: Thu, 11 Mar 1999 16:00:00 -0000 From: [email protected] Reply-To: [email protected] To: [email protected] Subject: Cisco security notice: Cisco 7xx TCP and HTTP vulnerabilities -----BEGIN PGP SIGNED MESSAGE----- Cisco 7xx TCP and HTTP Vulnerabilities...
PHP/FI php.cgi Traversal Arbitrary File Access
'php.cgi' is installed. This CGI has a well known security flaw that lets an attacker read arbitrary files with the privileges of the HTTP server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid10177;...