Lucene search
K

31 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:19 a.m.5 views

CVE-2019-18932

log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...

7CVSS6.6AI score0.0025EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2008-7207

Malware in sbrugna...

4.3CVSS6.2AI score0.01056EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-7206

Malware in sbrugna...

9.3CVSS6.2AI score0.03975EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2008-1177

Malware in sbrugna...

4.3CVSS6.1AI score0.01553EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-8605

Malware in sbrugna...

7CVSS6.6AI score0.0025EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/05/21 7:55 p.m.7 views

CVE-2008-7250

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

4.3CVSS5.8AI score0.01553EPSS
Exploits0References1
OSV
OSV
added 2020/01/21 6:15 p.m.7 views

CVE-2019-18932

log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...

7CVSS6.7AI score
Exploits0References8
Cvelist
Cvelist
added 2020/01/21 5:52 p.m.35 views

CVE-2019-18932

log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...

6.7AI score0.0025EPSS
Exploits0References8
Exploit DB
Exploit DB
added 2017/10/17 12:0 a.m.41 views

Squid Analysis Report Generator 2.3.10 - Remote Code Execution

Exploit Title: RCE/Arbitrary file write in Squid Analysis Report Generator SARG Google Dork: inurl:sarg-php Date: 01 September 2017 Exploit Author: Pavel Suprunyuk Vendor Homepage: https://sourceforge.net/projects/sarg/ Software Link: https://sourceforge.net/projects/sarg/ Version: Tested on...

7.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2009/12/30 10:30 p.m.24 views

CVE-2008-7249

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

9.3CVSS6.1AI score0.03975EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2009/12/30 10:30 p.m.29 views

CVE-2008-7250

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

4.3CVSS6AI score0.01056EPSS
Exploits0References1
Prion
Prion
added 2009/12/30 10:30 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

4.3CVSS5.8AI score0.01553EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2009/12/30 10:30 p.m.19 views

CVE-2008-7250

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

4.3CVSS5.5AI score0.01056EPSS
Exploits0References3
NVD
NVD
added 2009/12/30 10:30 p.m.17 views

CVE-2008-7249

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

9.3CVSS7.6AI score0.03975EPSS
Exploits0References3
Prion
Prion
added 2009/12/30 10:30 p.m.13 views

Buffer overflow

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

9.3CVSS7.9AI score0.06681EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2009/12/30 10:30 p.m.8 views

CVE-2008-7249

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

7.6AI score
Exploits0References4
OSV
OSV
added 2009/12/30 10:30 p.m.9 views

CVE-2008-7250

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

5.5AI score
Exploits0References3
CVE
CVE
added 2009/12/30 10:0 p.m.52 views

CVE-2008-7249

CVE-2008-7249 : A buffer overflow in Squid Analysis Report Generator (Sarg) 2.2.3.1 (and likely later) allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file. This is a standalone vulnerability distinct from CVE-2008-1167. Affec...

9.3CVSS7.5AI score0.03975EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2009/12/30 10:0 p.m.86 views

CVE-2008-7250

The CVE-2008-7250 entry describes a Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.4. An attacker could inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is mishandled when displaying the Squid proxy log. The ...

4.3CVSS5.4AI score0.01056EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2009/12/30 10:0 p.m.32 views

CVE-2008-7249

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

9.3CVSS7.4AI score0.03975EPSS
Exploits0
Rows per page
Query Builder