Lucene search
K

5 matches found

NVD
NVD
added 2026/07/02 12:16 a.m.9 views

CVE-2026-55794

Craft CMS is a content management system CMS. In versions 5.9.0 and above prior to 5.10.0, control panel users with the ability to edit entries can execute unsandboxed Twig code via the HTTP Referrer header, potentially leading to authenticated RCE. The issue happens when a user is saving entries...

8.7CVSS0.00293EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2017/06/27 12:0 a.m.62 views

Microsoft MsMpEng - mpengine x86 Emulator Heap Corruption in VFS API

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1282&desc=2 In issue 1260 I discussed Microsoft's "apicall" instruction that can invoke a large number of internal emulator apis and is exposed to remote attackers by default in all recent versions of Windows. I asked Microsoft if...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2017/06/27 12:0 a.m.26 views

Microsoft MsMpEng - mpengine x86 Emulator Heap Corruption in VFS API

Microsoft MsMpEng - mpengine x86 Emulator Heap Corruption in VFS API Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1282&desc=2 In issue 1260 I discussed Microsoft's "apicall" instruction that can invoke a large number of internal emulator apis and is exposed to remote attacker...

7.3AI score
Exploits0
Hacker One
Hacker One
added 2015/09/11 1:18 a.m.14 views

Phabricator: Information leakage through Graphviz blocks

This report amounts to Unsandboxed Command Execution Considered Harmful, which you already suspected: https://secure.phabricator.com/T7785 Graphviz blocks can be used to view a render of any image file readable by the webserver, through the image and shapefile graph node attributes. This alone...

0.5AI score
Exploits0
Hacker One
Hacker One
added 2015/01/21 12:44 p.m.47 views

Vimeo: XSS on any site that includes the moogaloop flash player | deprecated embed code

The moogaloop flash player includes in most cases http://f.vimeocdn.com/p/flash/moogaloop/6.0.30/controllers/videoControllerProgressive.swf. In that flash file we can find functionality that looks into the SharedObject "com.conviva.livePass" for recently loaded swf-URLs under the key "lastSwfUrls...

5.9AI score
Exploits0
Rows per page
Query Builder