Lucene search
K

3199 matches found

NVD
NVD
added 2014/01/22 9:55 p.m.20 views

CVE-2014-0808

Authorization bypass through user-controlled key issue exists in EC-CUBE 2.11.0 through 2.12.2 and EC-Orange systems deployed before June 29th, 2015. If this vulnerability is exploited, a user of the affected shopping website may obtain other users' information by sending a crafted HTTP request...

9.1CVSS6.2AI score0.02245EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2014/01/22 9:55 p.m.11 views

CVE-2014-0808

Authorization bypass through user-controlled key issue exists in EC-CUBE 2.11.0 through 2.12.2 and EC-Orange systems deployed before June 29th, 2015. If this vulnerability is exploited, a user of the affected shopping website may obtain other users' information by sending a crafted HTTP request...

9.1CVSS5.3AI score0.02245EPSS
Exploits0References8Affected Software2
Vulnrichment
Vulnrichment
added 2014/01/22 9:0 p.m.15 views

CVE-2014-0808

Authorization bypass through user-controlled key issue exists in EC-CUBE 2.11.0 through 2.12.2 and EC-Orange systems deployed before June 29th, 2015. If this vulnerability is exploited, a user of the affected shopping website may obtain other users' information by sending a crafted HTTP request...

6.5AI score0.02245EPSS
Exploits0References6
Check Point Advisories
Check Point Advisories
added 2013/12/31 12:0 a.m.1 views

ABB MicroSCADA Wserver Multiple Buffer Overflows

Multiple Buffer Overflow vulnerabilities have been reported in the Wserver component of ABB MicroSCADA. The vulnerabilities are due to the copying of user controlled data to stack-based buffers without size verification. A remote attacker can exploit this issue by sending a specially crafted...

7.2AI score
Exploits0
RubySec
RubySec
added 2013/12/03 12:0 a.m.23 views

XSS Vulnerability in simple_format helper

There is a vulnerability in the simpleformat helper in Ruby on Rails. The simpleformat helper converts user supplied text into html text which is intended to be safe for display. A change made to the implementation of this helper means that any user provided HTML attributes will not be escaped...

4.3CVSS1AI score0.01963EPSS
Exploits0References1Affected Software1
0day.today
0day.today
added 2013/11/27 12:0 a.m.155 views

Microsoft Tagged Image File Format (TIFF) Integer Overflow

This Metasploit module exploits a vulnerability found in Microsoft's Tagged Image File Format. It was originally discovered in the wild, targeting Windows XP and Windows Server 2003 users running Microsoft Office, specifically in the Middle East and South Asia region. The flaw is due to a DWORD...

9.3CVSS0.4AI score0.84971EPSS
Exploits7
Packet Storm
Packet Storm
added 2013/11/27 12:0 a.m.112 views

Microsoft Tagged Image File Format (TIFF) Integer Overflow

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex/zip' require 'nokogiri' module ::Nokogiri module XML class Builder Some XML documents don't declare the namespace before referencing, but...

9.3CVSS0.3AI score0.84971EPSS
Exploits7
securityvulns
securityvulns
added 2013/11/26 12:0 a.m.65 views

[ MDVSA-2013:272 ] poppler

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:272 http://www.mandriva.com/en/support/security/ Package : poppler Date : November 21, 2013 Affected: Business Server 1.0 Problem Description: Updated poppler packages fix security vulnerabilities: Poppler i...

7.5CVSS7.9AI score0.10483EPSS
Exploits1
Metasploit
Metasploit
added 2013/11/22 8:25 a.m.79 views

MS13-096 Microsoft Tagged Image File Format (TIFF) Integer Overflow

This module exploits a vulnerability found in Microsoft's Tagged Image File Format. It was originally discovered in the wild, targeting Windows XP and Windows Server 2003 users running Microsoft Office, specifically in the Middle East and South Asia region. The flaw is due to a DWORD value...

7.8CVSS9.6AI score0.84971EPSS
Exploits7
securityvulns
securityvulns
added 2013/10/09 12:0 a.m.55 views

Apache OpenJPA code execution

User-controlled data it stored in local executable file...

7.5CVSS1.9AI score0.09511EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2013/08/21 3:0 p.m.17 views

Jumping Out of IE's Sandbox With One Click

Software vendors often give intentionally vague and boring names to the updates they use to fix security vulnerabilities. The lamer the name, the less attention it may attract from attackers looking to reverse-engineer the patch. There was one patch in Microsoft’s August Patch Tuesday release...

1.1AI score
Exploits0References4
Packet Storm
Packet Storm
added 2013/06/03 12:0 a.m.40 views

Windows NT/2K/XP/2K3/VISTA/2K8/7/8 EPATHOBJ Local ring0

ifndef WIN32NOSTATUS define WIN32NOSTATUS endif include include include include include ifdef WIN32NOSTATUS undef WIN32NOSTATUS endif include pragma commentlib, "gdi32" pragma commentlib, "kernel32" pragma commentlib, "user32" pragma commentlib, "shell32" pragma commentlinker, "/SECTION:.text,ERW...

0.1AI score
Exploits0
Atlassian
Atlassian
added 2013/04/26 6:49 a.m.19 views

Path traversal in HtmlExporter.java and FileXmlExporter.java

Both HtmlExporter.java and FileXmlExporter.java use the prepareExportFileName method inherited from AbstractExporterImpl.java|https://stash.atlassian.com/projects/CONF/repos/confluence/browse/confluence-core/confluence/src/java/com/atlassian/confluence/importexport/impl/AbstractExporterImpl.java9...

2.7AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/04/26 6:49 a.m.23 views

Path traversal in HtmlExporter.java and FileXmlExporter.java

Both HtmlExporter.java and FileXmlExporter.java use the prepareExportFileName method inherited from AbstractExporterImpl.java|https://stash.atlassian.com/projects/CONF/repos/confluence/browse/confluence-core/confluence/src/java/com/atlassian/confluence/importexport/impl/AbstractExporterImpl.java9...

2.7AI score
Exploits0Affected Software1
securityvulns
securityvulns
added 2013/03/10 12:0 a.m.47 views

Corel WordPerfect uninitialized pointer dereference

User-controlled pointer dereferences on WPD parsing...

3.8AI score0.0207EPSS
Exploits1References1
OSV
OSV
added 2013/02/26 12:0 a.m.24 views

DSA-2633-1 fusionforge - privilege escalation

Bulletin has no description...

6.9CVSS6.4AI score0.00374EPSS
Exploits0
Exploit DB
Exploit DB
added 2013/01/24 12:0 a.m.27 views

ZoneMinder Video Server - packageControl Command Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'ZoneMinder Video...

7.4AI score
Exploits0
Metasploit
Metasploit
added 2012/10/24 5:54 a.m.25 views

SugarCRM unserialize() PHP Code Execution

This module exploits a php unserialize vulnerability in SugarCRM 'SugarCRM unserialize PHP Code Execution', 'Description' = %q This module exploits a php unserialize vulnerability in SugarCRM = 6.3.1 which could be abused to allow authenticated SugarCRM users to execute arbitrary code with the...

9.8CVSS0.3AI score0.67256EPSS
Exploits13
0day.today
0day.today
added 2012/10/11 12:0 a.m.104 views

KeyHelp ActiveX LaunchTriPane Remote Code Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

7.1AI score0.39711EPSS
Exploits9
0day.today
0day.today
added 2012/09/22 12:0 a.m.15 views

ZEN Load Balancer Filelog Command Execution

Exploit for linux platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

7.1AI score
Exploits0
Rows per page
Query Builder