CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

Tenable Nessus•added 2025/02/15 12:0 a.m.•9 views

Fedora 41 : libheif (2025-8fdb7be3cb)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-8fdb7be3cb advisory. Latest upstream release. It adds support for tiles and fixes reading images generated by iOS 18+. See https://github.com/strukturag/libheif/releases for more...

8.1CVSS7.8AI score0.00197EPSS

Exploits1References2

Tenable Nessus•added 2025/02/10 12:0 a.m.•4 views

Azure Linux 3.0 Security Update: bind (CVE-2024-4076)

The version of bind installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4076 advisory. - Client queries that trigger serving stale data and that also require lookups in local authoritative zone data M...

7.5CVSS8AI score0.00109EPSS

Exploits0References2

OSV•added 2024/05/01 1:15 p.m.•0 views

UBUNTU-CVE-2024-27036

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix writeback data corruption cifs writeback doesn't correctly handle the case where cifsextendwriteback hits a point where it is considering an additional folio, but this would overrun the wsize - at which point it drops o...

7.8CVSS6.2AI score0.00019EPSS

Exploits0References12

Packet Storm•added 2020/03/10 12:0 a.m.•120 views

Persian VIP Download Script 1.0 SQL Injection

Exploit Title: Persian VIP Download Script 1.0 - 'active' SQL Injection Data: 2020-03-09 Exploit Author: S3FFR Vendor HomagePage: http://download.freescript.ir/scripts/Persian-VIP-DownloadFreeScript.ir.zip Version: = 1.0 Final Version Tested on: Windows,Linux Google Dork: N/A...

0.7AI score

Exploits0

0day.today•added 2020/03/10 12:0 a.m.•120 views

Persian VIP Download Script 1.0 - (active) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Persian VIP Download Script 1.0 - 'active' SQL Injection Exploit Author: S3FFR Vendor HomagePage: http://download.freescript.ir/scripts/Persian-VIP-DownloadFreeScript.ir.zip Version: = 1.0 Final Version Tested on: Windows,Linux...

0.5AI score

Exploits0

0day.today•added 2017/07/28 12:0 a.m.•100 views

Joomla CCNewsLetter 2.1.9 Component - sbid Parameter SQL Injection Vulnerability

Exploit for php platform in category web applications "Joomla Component ccnewsletter 2.1.9 - 'sbid' Parameter SQL Injection" Exploit Title: Joomla Component ccnewsletter 2.1.9 - SQL Injection Date: 07-26-2017 Exploit Author: Shahab Shamsi Vendor Homepage:...

7.1AI score

Exploits0

exploitpack•added 2017/07/27 12:0 a.m.•43 views

Joomla! Component CCNewsLetter 2.1.9 - sbid SQL Injection

Joomla! Component CCNewsLetter 2.1.9 - sbid SQL Injection "Joomla Component ccnewsletter 2.1.9 - 'sbid' Parameter SQL Injection" Exploit Title: Joomla Component ccnewsletter 2.1.9 - SQL Injection Date: 07-26-2017 Exploit Author: Shahab Shamsi Vendor Homepage:...

0.3AI score

Exploits0

Packet Storm•added 2017/07/27 12:0 a.m.•63 views

Joomla CCNewsLetter 2.1.9 SQL Injection

Exploit Title: Joomla Component ccnewsletter 2.1.9 - SQL Injection Date: 07-26-2017 Exploit Author: Shahab Shamsi Vendor Homepage: https://extensions.joomla.org/extension/ccnewsletter/ Version: = 2.1.9 Final Version Tested on: Win,Linux Google Dork: inurl:"index.php?option=comccnewsletter"...

0.4AI score

Exploits0

seebug.org•added 2011/12/18 12:0 a.m.•26 views

Google Chrome IFRAME装载信息泄露漏洞

Bugtraq ID: 51068 CVE ID：CVE-2011-4691 Google Chrome是一款流行的WEB浏览器。 Google Chrome 15.0.874.121及其之前的版本中存在漏洞，在IFRAME加载尝试过程中，没有正确防止在违反同源策略所需的时间里采集数据，远程攻击者构建包含恶意JavaScript代码的WEB页，诱使用户解析，可判断目标用户浏览器缓存中的文件。 0 Google Chrome = 15.0.874.121 厂商解决方案目前没有详细解决方案提供： http://www.google.com/chrome 测试方法...

5CVSS0.1AI score0.0023EPSS

Exploits2

seebug.org•added 2010/12/01 12:0 a.m.•12 views

NoScript可绕过 "Reflective XSS"检测漏洞

NoScript Firefox extension是一款免费的开源插件，提供对Firefox、Seamonkey和其他基于Mozilla浏览器的额外保护。 NoScript的实现上存在漏洞，远程攻击者可利用此漏洞绕过反射式XSS保护。在通过SQLXSSI发动攻击时，NoScript未能从受信任的域中检测到反射式XSS。通过利用浏览器中的错误信息机制发动Union SQL投毒攻击而导致的“Reflective XSS”可成功地绕过NoScript。 NoScript NoScript 2.0.5.1 NoScript NoScript 2.0.6 厂商补丁： NoScript...

7.1AI score

Exploits0

myhack58•added 2005/12/09 12:0 a.m.•24 views

Construct a special file name to bypass multiple anti-virus engine-vulnerability warning-the black bar safety net

Affected by the anti - virusengine: Kaspersky Antivirus Symantec AntiVirus F-Prot Antivirus ClamWin Antivirus Avast Antivirus RAV AntiVirus Microsoft AntiSpyware Tested version: Symantec AntiVirus Corporate 8.0 Kaspersky Antivirus Personal Pro 4.5.0.104 Kaspersky Antivirus For MS NTServer 4.5.0.1...

1.2AI score

Exploits0

securityvulns•added 2001/05/10 12:0 a.m.•28 views

Advisory for Spynet Chat

Advisory for Spynet Chat Spynet Chat is made by Spytech Site: http://www.spytech-web.com by nemesystm of the DHC http://dhcorp.cjb.net - [email protected] ADV-0120 /-|=explanation=|- Spynet Chat is a chat server. It suffers from a denial of service. /-|=who is vulnerable=|- Spynet Chat 6.5 ha...

7AI score

Exploits0

securityvulns•added 2001/05/10 12:0 a.m.•68 views

Advisory for Electrocomm 2.0

Advisory for Electrocomm Electrocomm is made by Electrosoft Site: http://www.esei.com by nemesystm of the DHC http://dhcorp.cjb.net - [email protected] ADV-0118 /-|=explanation=|- ElectroComm allows you to connect to a comm port on a computer over a network using any Telnet client. The progra...

1.1AI score

Exploits0

securityvulns•added 2001/04/18 12:0 a.m.•20 views

Advisory for Xitami 2.4d7, 2.5d4

Advisory for Xitami 2.4d7, 2.5d4 Xitami is made by Imatix. Site: http://xitami.com by nemesystm of the DHC http://dhcorp.cjb.net - [email protected] ADV-0105 /-|=explanation=|- Xitami is a webserver. It has a denial of service. /-|=who is vulnerable=|- Anyone running Xitami 2.5d4, 2.4d7 and...

0.6AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by