Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:25 a.m.2 views

SUSE CVE-2018-14056

ZNC before 1.7.1-rc1 is prone to a path traversal flaw via ../ in a web skin name to access files outside of the intended skins directories...

7.5CVSS6.3AI score0.02017EPSS
Exploits0References5
OSV
OSV
added 2018/07/15 1:29 a.m.1 views

DEBIAN-CVE-2018-14056

ZNC before 1.7.1-rc1 is prone to a path traversal flaw via ../ in a web skin name to access files outside of the intended skins directories...

5.3CVSS6.9AI score0.02017EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

aspWebLinks 2.0 - Remote SQL Injection / Admin Pass Change Exploit

No description provided by source. !-- Title : aspWebLinks 2.0 Remote Admin Pass Change Exploit and links.asp SQL Injection Author : ajann Dork : aspWebLinks 2.0 SQL INJECTION:...

7.1AI score
Exploits0
NVD
NVD
added 2007/10/15 10:17 p.m.17 views

CVE-2007-5464

Stack-based buffer overflow in Live for Speed 0.5X10 and earlier allows remote authenticated users to cause a denial of service client crash and possibly execute arbitrary code via a long skin name...

6.5CVSS7.8AI score0.04348EPSS
Exploits1References6
Prion
Prion
added 2007/10/15 10:17 p.m.13 views

Stack overflow

Stack-based buffer overflow in Live for Speed 0.5X10 and earlier allows remote authenticated users to cause a denial of service client crash and possibly execute arbitrary code via a long skin name...

6.5CVSS8.4AI score0.04348EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2007/10/15 10:0 p.m.20 views

CVE-2007-5464

Stack-based buffer overflow in Live for Speed 0.5X10 and earlier allows remote authenticated users to cause a denial of service client crash and possibly execute arbitrary code via a long skin name...

7.8AI score0.04348EPSS
Exploits1References6
Prion
Prion
added 2007/05/31 11:30 p.m.11 views

Directory traversal

Multiple directory traversal vulnerabilities in Scallywag 2005-04-25 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the skinname parameter to template.php in 1 skin/dark/, 2 skin/gold/, or 3 skin/original/, a different vector than CVE-2007-2900. NOTE: the...

7.5CVSS7.3AI score0.02802EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2006/03/10 11:2 a.m.17 views

CVE-2006-1147

The Comsprintf function in qshared.c in Alien Arena 2006 Gold Edition 5.00 does not properly NULL terminate certain long strings, which allows remote attackers possibly authenticated to cause a denial of service application crash via a long skin, weapon, or model name...

4CVSS6.6AI score0.03057EPSS
Exploits1References8
Rows per page
Query Builder