CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2207 matches found

Fedora•added 2022/09/14 12:23 a.m.•48 views

[SECURITY] Fedora 37 Update: curl-7.85.0-1.fc37

curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMA P, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies,...

3.7CVSS6.7AI score0.01788EPSS

Exploits1

BDU FSTEC•added 2022/09/09 12:0 a.m.•2 views

The vulnerability of the SAP BusinessObjects BW Publisher Service software integration platform lies in the lack of commas in the syntax of elements or search paths, which allows attackers to exploit this to increase their privileges.

The vulnerability of the SAP BusinessObjects BW Publisher Service software integration platform is related to the absence of commas in the syntax of elements or search paths. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS7.2AI score0.00245EPSS

Exploits0References4Affected Software1

Schneier on Security•added 2022/08/19 9:5 p.m.•23 views

Friday Squid Blogging: The Language of the Jumbo Flying Squid

The jumbo flying squid Dosidicus gigas uses its color-changing ability as a language: In 2020, however, marine biologists discovered that jumbo flying squid are surprisingly coordinated. Despite their large numbers, the squid rarely bumped into each other or competed for the same prey. The...

0.7AI score

Exploits0

OSV•added 2022/08/19 3:55 a.m.•5 views

MAL-2022-1450 Malicious code in bael-plugin-syntax-dynramic-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca89ab83d060f762a8d1c46b906c3441300e2971fa90c2eb35024e919b2d0c97 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

OSV•added 2022/08/18 7:19 p.m.•39 views

GHSA-8CWQ-4CMF-PX73 PocketMine-MP invalid skin geometry JSON data leading to server crash

Impact pocketmine\entity\Skin doesn't correctly handle errors produced by adhocore/json-comment, which throws RuntimeException rather than returning false as PocketMine-MP expects. This leads to a server crash if the skin geometry data is invalid for some reason e.g. a syntax error. Patches...

7.5CVSS7.1AI score

Exploits0References3

Github Security Blog•added 2022/08/02 6:0 p.m.•48 views

NextAuth.js before 4.10.3 and 3.29.10 sending verification requests (magic link) to unwanted emails

Impact next-auth users who are using the EmailProvider either in versions before 4.10.3 or 3.29.10 are affected. If an attacker could forge a request that sent a comma-separated list of emails eg.: [email protected],[email protected] to the sign-in endpoint, NextAuth.js would send emails to...

9.1CVSS8.7AI score0.01098EPSS

Exploits0References11Affected Software1

OpenVAS•added 2022/07/31 12:0 a.m.•8 views

Fedora: Security Advisory for golang-github-sourcegraph-syntaxhighlight (FEDORA-2022-37aef44d1e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References2

OpenVAS•added 2022/07/31 12:0 a.m.•7 views

Fedora: Security Advisory for golang-github-zyedidia-highlight (FEDORA-2022-37aef44d1e)

7.5AI score

Exploits0References2

Fedora•added 2022/07/30 2:0 a.m.•12 views

[SECURITY] Fedora 36 Update: golang-github-zyedidia-highlight-0-0.7.20200218git291680f.fc36

A Go package for syntax highlighting...

1AI score

Exploits0

Fedora•added 2022/07/30 2:0 a.m.•11 views

[SECURITY] Fedora 36 Update: golang-github-pelletier-toml-1.9.4-3.fc36

Go-toml provides the following features for using data parsed from TOML documents: - Load TOML documents from files and string data - Easily navigate TOML structure using Tree - Mashaling and unmarshaling to and from data structures - Line & column position data for all parsed elements - Query...

7.3AI score

Exploits0

Fedora•added 2022/07/30 1:55 a.m.•11 views

[SECURITY] Fedora 36 Update: golang-github-alecthomas-chroma-0.10.0-4.fc36

Chroma takes source code and other structured text and converts it into syntax highlighted HTML, ANSI-coloured text, etc. Chroma is based heavily on Pygments, and includes translators for Pygments lexers and styles...

7.6AI score

Exploits0

OpenVAS•added 2022/07/21 12:0 a.m.•21 views

Fedora: Security Advisory for golang-starlark (FEDORA-2022-3e1ade35db)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.9AI score0.05292EPSS

Exploits4References2

OpenVAS•added 2022/07/21 12:0 a.m.•24 views

Fedora: Security Advisory for golang-github-zyedidia-highlight (FEDORA-2022-3e1ade35db)

7.5CVSS8.9AI score0.05292EPSS

Exploits3References2

Fedora•added 2022/07/20 1:40 a.m.•31 views

[SECURITY] Fedora 35 Update: golang-github-zyedidia-highlight-0-0.6.20200218git291680f.fc35

A Go package for syntax highlighting...

9.3CVSS1AI score0.05292EPSS

Exploits4

OpenVAS•added 2022/07/18 12:0 a.m.•14 views