Lucene search
K

37 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:19 a.m.5 views

CVE-2019-18932

log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...

7CVSS6.6AI score0.0025EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2008-1177

Malware in sbrugna...

4.3CVSS6.1AI score0.01553EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-8605

Malware in sbrugna...

7CVSS6.6AI score0.0025EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-7206

Malware in sbrugna...

9.3CVSS6.2AI score0.03975EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2008-7207

Malware in sbrugna...

4.3CVSS6.2AI score0.01056EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/21 7:55 p.m.7 views

CVE-2008-7250

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

4.3CVSS5.8AI score0.01553EPSS
Exploits0References1
Schneier on Security
Schneier on Security
added 2024/11/22 10:1 p.m.9 views

Friday Squid Blogging: Transcriptome Analysis of the Indian Squid

Lots of details that are beyond me. Blog moderation policy...

7.3AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.3 views

SUSE CVE-2008-1168

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this information is unknown;...

4.3CVSS5.9AI score0.01553EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.7 views

SUSE CVE-2008-1167

Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information...

10CVSS8.4AI score0.06681EPSS
Exploits0References6
OSV
OSV
added 2020/01/21 6:15 p.m.5 views

CVE-2019-18932

log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...

7CVSS6.7AI score
Exploits0References8
Prion
Prion
added 2020/01/21 6:15 p.m.18 views

Race condition

log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...

4.4CVSS6.7AI score0.0025EPSS
Exploits0References8Affected Software3
Cvelist
Cvelist
added 2020/01/21 5:52 p.m.34 views

CVE-2019-18932

log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...

6.7AI score0.0025EPSS
Exploits0References8
Exploit DB
Exploit DB
added 2017/10/17 12:0 a.m.38 views

Squid Analysis Report Generator 2.3.10 - Remote Code Execution

Exploit Title: RCE/Arbitrary file write in Squid Analysis Report Generator SARG Google Dork: inurl:sarg-php Date: 01 September 2017 Exploit Author: Pavel Suprunyuk Vendor Homepage: https://sourceforge.net/projects/sarg/ Software Link: https://sourceforge.net/projects/sarg/ Version: Tested on...

7.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2009/12/30 10:30 p.m.28 views

CVE-2008-7250

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

4.3CVSS6AI score0.01056EPSS
Exploits0References1
NVD
NVD
added 2009/12/30 10:30 p.m.19 views

CVE-2008-7250

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

4.3CVSS5.5AI score0.01056EPSS
Exploits0References3
Prion
Prion
added 2009/12/30 10:30 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

4.3CVSS5.8AI score0.01553EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2009/12/30 10:30 p.m.6 views

CVE-2008-7249

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

7.6AI score
Exploits0References4
Prion
Prion
added 2009/12/30 10:30 p.m.13 views

Buffer overflow

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

9.3CVSS7.9AI score0.06681EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2009/12/30 10:30 p.m.17 views

CVE-2008-7249

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

9.3CVSS7.6AI score0.03975EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2009/12/30 10:30 p.m.23 views

CVE-2008-7249

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

9.3CVSS6.1AI score0.03975EPSS
Exploits0References1
Rows per page
Query Builder