Lucene search
K

9 matches found

Cvelist
Cvelist
added 2025/03/03 12:0 a.m.11 views

CVE-2025-25949

A stored cross-site scripting XSS vulnerability in Serosoft Solutions Pvt Ltd Academia Student Information System SIS EagleR v1.0.118 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the User ID parameter at /rest/staffResource/update...

0.00298EPSS
Exploits1References3
OSV
OSV
added 2024/12/19 4:18 a.m.22 views

RLSA-2024:10831 Important: postgresql:16 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID CVE-2024-10978 postgresql: PostgreSQL PL/Perl environment variable changes execute arbitrary code CVE-2024-10979 postgresq...

8.8CVSS8.2AI score0.04422EPSS
Exploits1References4
OSV
OSV
added 2024/12/05 12:0 a.m.18 views

ALSA-2024:10832 Important: postgresql:13 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID CVE-2024-10978 postgresql: PostgreSQL PL/Perl environment variable changes execute arbitrary code CVE-2024-10979 postgresq...

8.8CVSS8.2AI score0.04422EPSS
Exploits1References8
AlmaLinux
AlmaLinux
added 2024/12/04 12:0 a.m.12 views

Important: postgresql security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID CVE-2024-10978 postgresql: PostgreSQL PL/Perl environment variable changes execute arbitrary code CVE-2024-10979 postgresq...

8.8CVSS7.4AI score0.04422EPSS
Exploits1References8
OSV
OSV
added 2024/12/04 12:0 a.m.23 views

ALSA-2024:10788 Important: postgresql:16 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID CVE-2024-10978 postgresql: PostgreSQL PL/Perl environment variable changes execute arbitrary code CVE-2024-10979 postgresq...

8.8CVSS8.2AI score0.04422EPSS
Exploits1References8
NVD
NVD
added 2024/07/03 9:15 a.m.24 views

CVE-2024-6428

Mattermost versions 9.8.0, 9.7.x = 9.7.4, 9.6.x = 9.6.2, 9.5.x = 9.5.5 fail to prevent specifying a RemoteId when creating a new user which allows an attacker to specify both a remoteId and the user ID, resulting in creating a user with a user-defined user ID. This can cause some broken...

6.5CVSS0.00394EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.5 views

Vulnerability of the check_output function in output.c. SUID in a isolated programming environment. Firejail, due to the lack of measures to neutralize special elements, allows a violator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability in the checkoutput function in output.c. The SUID attribute in the isolated programming environment of Firejail indicates that there are no measures in place to neutralize this vulnerability. Exploiting this vulnerability could allow a remote attacker to access confidential data...

9.8CVSS7.8AI score0.04098EPSS
Exploits0References11Affected Software5
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.21 views

CVE-2001-1016

PGP Corporate Desktop before 7.1, Personal Security before 7.0.3, Freeware before 7.0.3, and E-Business Server before 7.1 does not properly display when invalid userID's are used to sign a message, which could allow an attacker to make the user believe that the document has been signed by a trust...

6.5AI score0.0136EPSS
Exploits0References5
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.19 views

CVE-1999-1308

Certain programs in HP-UX 10.20 do not properly handle large user IDs UID or group IDs GID over 60000, which could allow local users to gain privileges...

6.6AI score0.00484EPSS
Exploits0References3
Rows per page
Query Builder