CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

60 matches found

Cvelist•added 2025/12/26 12:0 a.m.•28 views

CVE-2025-57403

Cola Dnslog v1.3.2 is vulnerable to Directory Traversal. When a DNS query for a TXT record is processed, the application concatenates the requested URL or a portion of it directly with a base path using os.path.join. This bypass allows directory traversal or absolute path injection, leading to th...

0.00962EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-27227

Malware in sbrugna...

7.5CVSS8.5AI score0.02377EPSS

Exploits1References6

RedhatCVE•added 2025/02/05 2:38 p.m.•7 views

CVE-2020-6073

An exploitable denial-of-service vulnerability exists in the TXT record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing the RDATA section in a TXT record in mDNS messages, multiple integer overflows can be triggered, leading to a denial of service. An attacker can send an mDNS...

7.5CVSS6.5AI score0.02377EPSS

Exploits1References1

The Hacker News•added 2024/01/22 4:35 p.m.•51 views

MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries

Several public and popular libraries abandoned but still used in Java and Android applications have been found susceptible to a new software supply chain attack method called MavenGate. "Access to projects can be hijacked through domain name purchases and since most default build configurations a...

7.6AI score

Exploits0

Positive Technologies•added 2023/05/09 12:0 a.m.•2 views

PT-2023-8932 · Maradns +2 · Maradns +2

Name of the Vulnerable Software and Affected Versions: MaraDNS versions 3.5.0024 and prior Description: MaraDNS is open-source software that implements the Domain Name System DNS. A remotely exploitable integer underflow vulnerability in the DNS packet decompression function allows an attacker to...

7.8CVSS7.3AI score0.01143EPSS

Exploits0References27

Kitploit•added 2021/07/18 12:30 p.m.•75 views

DNSStager - Hide Your Payload In DNS

DNSStager is an open-source project based on Python used to hide and transfer your payload using DNS. DNSStager will create a malicious DNS server that handles DNS requests to your domain and return your payload as a response to specific record requests such as AAAA or TXT records after splitting...

7.6AI score

Exploits0References3

Packet Storm•added 2021/01/08 12:0 a.m.•393 views

dnsrecon 0.10.0 CSV Injection

Exploit Title: dnsrecon 0.10.0 - CSV Injection Author: Dolev Farhi Date: 2021-01-07 Vendor Homepage: https://github.com/darkoperator/dnsrecon/ Version : 0.10.0 Tested on: ParrotOS 4.10 dnsrecon, when scanning a TXT record such as SPF, i.e.: spf.domain.com, outputs a CSV report -c out.csv with...

7.4AI score

Exploits0

Exploit DB•added 2021/01/08 12:0 a.m.•483 views

dnsrecon 0.10.0 - CSV Injection

7.4AI score

Exploits0

0day.today•added 2021/01/08 12:0 a.m.•57 views

dnsrecon 0.10.0 - CSV Injection Vulnerability

Exploit Title: dnsrecon 0.10.0 - CSV Injection Author: Dolev Farhi Vendor Homepage: https://github.com/darkoperator/dnsrecon/ Version : 0.10.0 Tested on: ParrotOS 4.10 dnsrecon, when scanning a TXT record such as SPF, i.e.: spf.domain.com, outputs a CSV report -c out.csv with entries such as...

7.1AI score

Exploits0

Veracode•added 2020/08/06 9:40 p.m.•23 views

Denial Of Service (DoS)

libmicrodns is vulnerable to denial of service. When parsing the RDATA section in a TXT record in mDNS messages, multiple integer overflows can be triggered, leading to a denial of service. An attacker can send a malicious mDNS message to exploit the vulnerability...

7.5CVSS5.8AI score0.02377EPSS

Exploits1References3Affected Software1

Tenable Nessus•added 2020/05/08 12:0 a.m.•59 views

VLC < 3.0.9 Multiple Vulnerabilities

The version of VLC media player installed on the remote Windows host is prior to 3.0.9. It is, therefore, affected by multiple vulnerabilities: - An exploitable denial-of-service vulnerability exists in the resource record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing...

9.8CVSS7.5AI score0.03607EPSS

Exploits7References8

NVD•added 2020/03/24 9:15 p.m.•21 views

CVE-2020-6073

7.5CVSS8.3AI score0.02377EPSS

Exploits1References3

OSV•added 2020/03/24 9:15 p.m.•1 views

DEBIAN-CVE-2020-6073

7.5CVSS8.1AI score0.02377EPSS

Exploits1References1

OSV•added 2020/03/24 9:15 p.m.•31 views

CVE-2020-6073

7.5CVSS6.5AI score

Exploits0References3

UbuntuCve•added 2020/03/24 9:15 p.m.•20 views

CVE-2020-6073

7.5CVSS7.1AI score0.02377EPSS

Exploits1References3

Prion•added 2020/03/24 9:15 p.m.•19 views

Integer overflow

5CVSS7.6AI score0.02377EPSS

Exploits1References3Affected Software2

Debian CVE•added 2020/03/24 8:43 p.m.•17 views

CVE-2020-6073

7.5CVSS8.4AI score0.02377EPSS

Exploits1

AlpineLinux•added 2020/03/24 8:43 p.m.•39 views

CVE-2020-6073

7.5CVSS7.6AI score0.02377EPSS

Exploits1

Talos•added 2020/03/23 12:0 a.m.•62 views

Videolabs libmicrodns 0.1.0 TXT record RDATA-parsing denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the TXT record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing the RDATA section in a TXT record in mDNS messages, multiple integer overflows can be triggered, leading to a denial of service. An attacker can send ...

7.5CVSS7.4AI score0.02377EPSS

Exploits1

The Hacker News•added 2019/04/17 7:26 p.m.•69 views

Researcher Hijacks a Microsoft Service Using Loophole in Azure Cloud Platform

A cybersecurity professional today demonstrated a long-known unpatched weakness in Microsoft's Azure cloud service by exploiting it to take control over Windows Live Tiles, one of the key features Microsoft built into Windows 8 operating system. Introduced in Windows 8, the Live tiles feature was...

0.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by