Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-20578

Malware in sbrugna...

9.8CVSS9.3AI score0.01339EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-1066

Malware in sbrugna...

6.1CVSS6.1AI score0.00658EPSS
Exploits0References4
OSV
OSV
added 2023/02/10 2:15 p.m.12 views

SUSE-SU-2023:0362-1 Security update for grafana

This update for grafana fixes the following issues: - Version update from 8.5.13 to 8.5.15 jscPED-2617: CVE-2022-39306: Security fix for privilege escalation bsc1205225 CVE-2022-39307: Omit error from http response when user does not exists bsc1205227 CVE-2022-39201: Do not forward login cookie i...

8.1CVSS6.2AI score0.01228EPSS
Exploits0References13
OSV
OSV
added 2021/11/23 10:15 p.m.8 views

CVE-2021-37997

Use after free in Sign-In in Google Chrome prior to 95.0.4638.69 allowed a remote attacker who convinced a user to sign into Chrome to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.4AI score
Exploits0References4
Prion
Prion
added 2021/04/02 2:15 p.m.15 views

Open redirect

Pomerium from version 0.10.0-0.13.3 has an Open Redirect in the user sign-in/out process...

5.8CVSS6.2AI score0.00658EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/02/11 9:40 p.m.17 views

CVE-2021-21310 Token verification bug in next-auth

NextAuth.js next-auth is am open source authentication solution for Next.js applications. In next-auth before version 3.3.0 there is a token verification vulnerability. Implementations using the Prisma database adapter in conjunction with the Email provider are impacted. Implementations using the...

6.1CVSS6.3AI score0.01667EPSS
Exploits1References3
Veracode
Veracode
added 2018/12/11 7:42 a.m.11 views

Cross Site Request Forgery (CSRF)

github.com/gogs/gog is vulnerable to cross-site request forgery CSRF attack. The library does not properly validate the token for user sign-in process, allowing a malicious user to launch a cross-site request forgery attack...

6.6AI score
Exploits0
Exploit DB
Exploit DB
added 2014/09/20 12:0 a.m.26 views

Livefyre LiveComments Plugin - Persistent Cross-Site Scripting

Title : Stored XSS in Livefyre LiveComments Plugin CVE : 2014-6420 Vendor Homepage : http://livefyre.com Software Link : http://web.livefyre.com/streamhub/liveComments Version : v3.0 Author : Brij Kishore Mishra Date : 03-Sept-2014 Tested On : Chrome 37, Ubuntu 14.04 Description : This plugin...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Ubisoft uplay 2.0.3 Active X Control Arbitrary Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score
Exploits0
0day.today
0day.today
added 2012/08/07 12:0 a.m.18 views

Ubisoft uplay 2.0.3 Active X Control Arbitrary Code Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2008/01/12 12:0 a.m.50 views

Naymz multiple XSS

Naymz is a online profile system with positive and accurate information that you want others to find when they search for you online. Community Search fails to sanitize: 1."scriptalert'xss'/script...

6.8AI score
Exploits0
Rows per page
Query Builder