Lucene search
K

99 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:37 a.m.9 views

CVE-2019-7712

An issue was discovered in handleripcomshellpwd in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. When using the pwd command, the current working directory path is used as the first argument to printf without a proper check. An attacker may thus forge a path containin...

7.5CVSS6.5AI score0.01486EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-2573

Malware in sbrugna...

5CVSS6.4AI score0.0082EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-0642

Malware in sbrugna...

7.1CVSS6.4AI score0.02426EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-0199

Malware in sbrugna...

7.5CVSS7.3AI score0.00952EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2000-0441

Malware in sbrugna...

7.5CVSS6.3AI score0.03349EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-8662

Malware in sbrugna...

4.3CVSS4.9AI score0.01848EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2006-0911

Malware in sbrugna...

7.5CVSS6.4AI score0.01628EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-3123

Malware in sbrugna...

7.5CVSS6.1AI score0.02701EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2000-0983

Malware in sbrugna...

7.2CVSS6.4AI score0.00537EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-7186

Malware in sbrugna...

10CVSS6.4AI score0.0147EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 7:35 a.m.11 views

CVE-2024-41586

A stack-based Buffer Overflow vulnerability in DrayTek Vigor310 devices through 4.3.2.6 allows a remote attacker to execute arbitrary code via a long query string to the cgi-bin/ipfedr.cgi component...

8CVSS8.2AI score0.00467EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:0 a.m.6 views

CVE-2019-7715

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. The main shell handler function uses the value of the environment variable ipcom.shell.greeting as the first argument to printf. Setting this variable using the sysvar command results in a...

7.5CVSS6.8AI score0.01486EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/24 5:3 p.m.18 views

CVE-2025-30208 Vite bypasses server.fs.deny when using `?raw??`

Vite, a provider of frontend development tooling, has a vulnerability in versions prior to 6.2.3, 6.1.2, 6.0.12, 5.4.15, and 4.5.10. @fs denies access to files outside of Vite serving allow list. Adding ?raw?? or ?import&raw?? to the URL bypasses this limitation and returns the file content if it...

5.3CVSS0.74998EPSS
Exploits28References6
RedhatCVE
RedhatCVE
added 2025/02/05 6:7 p.m.13 views

CVE-2019-12935

Shopware before 5.5.8 has XSS via the Query String to the backend/Login or backend/Login/load/ URI...

7.4CVSS5.8AI score0.02734EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2024/12/18 6:21 p.m.18 views

rage vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution

A plugin name containing a path separator may allow an attacker to execute an arbitrary binary. Such a plugin name can be provided to the rage CLI through an attacker-controlled recipient or identity string, or to the following age APIs when the plugin feature flag is enabled: -...

7.4AI score
Exploits0References5Affected Software2
OSV
OSV
added 2022/11/26 10:15 p.m.5 views

AZL-45051 CVE-2022-24999 affecting package js-jquery 3.5.0-4

qs before 6.10.3, as used in Express before 4.17.3 and other products, allows attackers to cause a Node process hang for an Express application because an proto key can be used. In many typical Express use cases, an unauthenticated remote attacker can place the attack payload in the query string ...

7.5CVSS7.2AI score0.14663EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.22 views

Rockwell Automation Stratix Ethernet Switches < 15.3 IOS Link Layer Discovery Protocol Format String Exploit

Binary data 720231.prm...

8CVSS8.1AI score0.03577EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2018/09/24 12:0 a.m.33 views

udisks2 2.8.0 Denial Of Service

Exploit: udisks2 2.8.0 - Denial of Service PoC Author: oxagast Date: 2018-09-22 Vendor Homepage: http://storaged.org/ Software Link: https://github.com/storaged-project/udisks Version: =udisks2 2.8.0 Tested on: Ubuntu x64 / / / \ / / / O / / \ \ /\//\// ========The vulnerable section of code...

7.4AI score
Exploits0
OSV
OSV
added 2017/09/19 5:29 p.m.4 views

ALPINE-CVE-2017-14033

The decode method in the OpenSSL::ASN1 module in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows attackers to cause a denial of service interpreter crash via a crafted string...

7.5CVSS6.6AI score0.07734EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2014/12/28 12:0 a.m.6 views

Peercast URL Format String Exploit Code Execution - Ver2 (CVE-2005-1806)

A code execution vulnerability has been reported in Peercast. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5AI score0.11939EPSS
Exploits3
Rows per page
Query Builder