CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2020/01/15 12:0 a.m.•3 views

Unspecified Vulnerability in Oracle Application Testing Suite

The Oracle Application Testing Suite is a comprehensive, integrated testing solution that ensures the quality, scalability and availability of Web applications, Web services, packaged Oracle applications and Oracle databases. An unspecified vulnerability exists in Oracle Application Testing Suite...

7.5CVSS9.2AI score0.01816EPSS

Exploits0References1

Packet Storm•added 2020/01/15 12:0 a.m.•141 views

WordPress Postie 1.9.40 Cross Site Scripting

Exploit Title: WordPress Plugin Postie 1.9.40 - Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/plugins/postie/readme.txt Date: 2020-01-15 Exploit Author: V1n1v131r4 Vendor Homepage: https://postieplugin.com/ Software Link: https://wordpress.org/plugins/postie/developers Version:...

5CVSS5.4AI score0.03376EPSS

Exploits6

BDU FSTEC•added 2020/01/15 12:0 a.m.•2 views

The vulnerability of Huawei’s mobile phone software, which stems from insufficient validation of input data, allows a hacker to trigger a service failure.

The vulnerability of Huawei’s mobile phone software exists due to insufficient testing of input data. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

5.3CVSS5.9AI score0.0031EPSS

Kitploit•added 2020/01/14 8:30 p.m.•71 views

Gtfo - Search For Unix Binaries That Can Be Exploited To Bypass System Security Restrictions

This is a standalone script written in Python 3 for GTFOBins. You can search for Unix binaries that can be exploited to bypass system security restrictions. These binaries can be abused to get the fk break out of restricted shells, escalate privileges, transfer files, spawn bind and reverse shell...

7.5AI score

The Coalfire Blog•added 2020/01/14 8:1 p.m.•7 views

Managing Web Application Security

Web application scanners using dynamic application security testing DAST methods are ideal at identifying common vulnerabilities such as cross-site scripting, SQL injection, command execution and more. When used in conjunction with whitebox static application security testing SAST results that...

2.1AI score

BDU FSTEC•added 2020/01/13 12:0 a.m.•2 views

The vulnerability of Mentor’s Nucleus operating system, related to insufficient checking of DHCP packets, allows attackers to compromise the accessibility and integrity of the protected information.

The vulnerability of Mentor’s Nucleus operating system lies in insufficient testing of DHCP packets. Exploiting this vulnerability allows a remote attacker to compromise the accessibility and integrity of the protected information...

7.1CVSS7.1AI score0.00715EPSS

Fedora•added 2020/01/12 1:46 a.m.•46 views

[SECURITY] Fedora 31 Update: python36-3.6.10-1.fc31

Python 3.6 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.6, see other distributions that support it, such as CentOS or RHEL with Software...

7.5CVSS4AI score0.05366EPSS

Exploits1

Fedora•added 2020/01/12 1:16 a.m.•51 views

[SECURITY] Fedora 30 Update: python36-3.6.10-1.fc30

7.5CVSS4AI score0.05366EPSS

Exploits1

GithubExploit•added 2020/01/11 12:8 a.m.•192 views

Exploit for Path Traversal in Citrix Application_Delivery_Controller_Firmware

CVE-2019-19781 This was only uploaded due to other researcher...

9.8CVSS10AI score0.99999EPSS

Exploits48

Gitee•added 2020/01/10 1:32 a.m.•6 views

vulhub

It is an open-source collection of pre-built vulnerable docker environments. The primary vulnerability class/vector is not specified, but the environments are designed to be vulnerable to various attacks. The probable entry points include docker-compose build and run commands. Notable...

7.9AI score

Symantec•added 2020/01/10 12:0 a.m.•87 views

Oracle January 2020 Critical Patch Update Multiple Vulnerabilities

Description Oracle has released advance notification regarding the January 2020 Critical Patch Update CPU to be released on January 14, 2020. The update addresses 333 vulnerabilities affecting the following software: Oracle Database Server, versions 12.2.0.1, 18c, 19c Oracle Communications Design...

1.2AI score

Exploits0References1Affected Software88

OpenVAS•added 2020/01/09 12:0 a.m.•23 views

Fedora Update for dnsperf FEDORA-2019-73a8737068

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.9AI score0.04022EPSS

Gitee•added 2020/01/08 9:31 a.m.•5 views

Exploit for Deserialization of Untrusted Data in Apache Log4J

CVE-2019-17571 is a vulnerability in the Apache Commons FileUpload library. It allows an attacker to upload a malicious file with a .class extension, which can be used to execute arbitrary code on the server. The vulnerability is caused by the library not properly validating the file extension...

9.8CVSS6.5AI score0.6906EPSS

Exploits3

Fedora•added 2020/01/04 10:17 p.m.•17 views

[SECURITY] Fedora 30 Update: python39-3.9.0~a2-1.fc30

Python 3.9 package for developers. This package exists to allow developers to test their code against a newer version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.9, update your Fedora to a newer version once Python 3.9 is stable...

Fedora•added 2020/01/04 10:17 p.m.•16 views

[SECURITY] Fedora 30 Update: python38-3.8.1-1.fc30

Python 3.8 package for developers. This package exists to allow developers to test their code against a newer version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.8, update your Fedora to a newer version once Python 3.8 is stable...

Fedora•added 2020/01/04 8:33 p.m.•12 views

[SECURITY] Fedora 31 Update: python38-3.8.1-1.fc31

Fedora•added 2020/01/04 8:33 p.m.•16 views

[SECURITY] Fedora 31 Update: python39-3.9.0~a2-1.fc31