Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

68 matches found

Veracode
Veracodeadded 2018/10/02 7:56 a.m.8 views

Cross-site Scripting (XSS)

primefaces-extensions is vulnerable to cross-site scripting XSS attacks. The library does not escape the string input when setting the menuItem label, allowing a malicious user to inject and execute arbitrary Javascript...

6.1AI score
Exploits0
CNVD
CNVDadded 2018/09/26 12:0 a.m.3 views

Component Collection Factory SQL Injection Vulnerability in Joomla!

Joomla! is the United States Open Source Matters team developed a set of open source content management system CMS. A SQL injection vulnerability exists in the Collection Factory component of Joomla! The vulnerability is caused by inserting SQL commands into the query string of a web form...

9.8CVSS9.8AI score0.02512EPSS
Exploits5References1
Cvelist
Cvelistadded 2017/11/02 4:0 p.m.11 views

CVE-2017-12243

A vulnerability in the Cisco Unified Computing System UCS Manager, Cisco Firepower 4100 Series Next-Generation Firewall NGFW, and Cisco Firepower 9300 Security Appliance could allow an authenticated, local attacker to obtain root shell privileges on the device, aka Command Injection. The...

7.5AI score0.4022EPSS
Exploits3References3
Cisco
Ciscoadded 2017/11/01 4:0 p.m.45 views

Cisco UCS Manager, Cisco Firepower 4100 Series NGFW, and Cisco Firepower 9300 Security Appliance Command Injection Vulnerability

A vulnerability in the Cisco Unified Computing System UCS Manager, Cisco Firepower 4100 Series Next-Generation Firewall NGFW, and Cisco Firepower 9300 Security Appliance could allow an authenticated, local attacker to obtain root shell privileges on the device. The vulnerability is due to imprope...

6.7CVSS7.4AI score0.4022EPSS
Exploits3References1
OSV
OSVadded 2016/11/04 9:59 p.m.1 views

ALPINE-CVE-2016-8578

The v9fsiovvunmarshal function in fsdev/9p-iov-marshal.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service NULL pointer dereference and QEMU process crash by sending an empty string parameter to a 9P operation...

6CVSS6.4AI score0.00075EPSS
Exploits0References1
Cisco
Ciscoadded 2015/09/09 6:2 p.m.14 views

Cisco Email Security Appliance Format String Vulnerability

The Cisco Email Security Appliance ESA contains a vulnerability that could allow an unauthenticated, remote attacker to impact the integrity and availability of services and data on the affected device. The impact includes a partial denial of service DoS. In addition, the attacker could override...

5.8CVSS6.2AI score0.00442EPSS
Exploits0References1
exploitpack
exploitpackadded 2012/06/14 12:0 a.m.15 views

Adobe Illustrator CS5.5 - Memory Corruption

Adobe Illustrator CS5.5 - Memory Corruption Felipe Andres Manzano [email protected] ''' The vulnerable function follows... ---------------------------------- .text:004A7200 ; =============== S U B R O U T I N E ======================================= .text:004A7200 .text:004A7200 ;...

0.7AI score
Exploits0
Packet Storm
Packet Stormadded 2000/09/06 12:0 a.m.27 views

wftpd241-12.txt

================================================================= Blue Panda Vulnerability Announcement: WFTPD/WFTPD Pro 2.41 RC12 05/09/2000 dd/mm/yyyy [email protected] http://bluepanda.box.sk/ ================================================================= Problem: WFTPD will crash if a...

7.4AI score
Exploits0
Rows per page
Query Builder