Lucene search
+L

227 matches found

NVD
NVD
added 2009/03/10 8:30 p.m.26 views

CVE-2009-0836

Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 1120 and 1301, does not require user confirmation before performing dangerous actions defined in a PDF file, which allows remote attackers to execute arbitrary programs and have unspecified other impact via a crafted file, as...

10CVSS7.5AI score0.40857EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.27 views

Ubuntu 5.04 : kdewebdev vulnerability (USN-115-1)

Eckhart Worner discovered that Kommander opens files from remote and possibly untrusted locations without user confirmation. Since Kommander files can contain scripts, this would allow an attacker to execute arbitrary code with the privileges of the user opening the file. The updated Kommander wi...

7.5CVSS5.9AI score0.0298EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2005/04/24 4:0 a.m.51 views

CVE-2005-0754

Removed by vendor...

7.5CVSS6.7AI score0.0298EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/21 12:0 a.m.18 views

Microsoft Internet Explorer 6 SV 1 XHTML Comment User Confirmation Bypass

Binary data 2301.prm...

5CVSS7.3AI score0.10266EPSS
Exploits0References1
OSV
OSV
added 2004/06/14 12:0 a.m.45 views

DSA-518 kdelibs - unsanitised input

Bulletin has no description...

7.5CVSS6AI score0.07778EPSS
Exploits0
exploitpack
exploitpack
added 2004/02/04 12:0 a.m.17 views

Microsoft Internet Explorer - URL Injection in History List (MS04-004)

Microsoft Internet Explorer - URL Injection in History List MS04-004 // Andreas Sandblad, 2004-02-03, patched by MS04-004 // Name: payload // Purpose: Run payload code called from Local Machine zone. // The code may be arbitrary such as executing shell commands. // This demo simply creates a...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2000/10/06 12:0 a.m.27 views

Дырка в Pegasus Mail

Если ссылки mailto: обрабатываются Pegasus Mail, то с помощью подобной ссылки можно отправить любой файл с компьютера пользователя по любому адресу без подтверждения пользователем...

0.6AI score
Exploits0References1Affected Software1
Rows per page
Query Builder