CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

Github Security Blog•added 2023/05/04 3:30 a.m.•28 views

Server-side template injection in beetl

An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection SSTI via a crafted payload...

9.8CVSS9.1AI score0.00385EPSS

Exploits1References4Affected Software1

Prion•added 2023/05/04 3:15 a.m.•15 views

Sql injection

An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection SSTI via a crafted payload...

7.5CVSS9.4AI score0.00385EPSS

Exploits1References2Affected Software1

Cvelist•added 2023/05/04 12:0 a.m.•16 views

CVE-2023-30331

An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection SSTI via a crafted payload...

9.7AI score0.00385EPSS

Exploits1References2

Vulnrichment•added 2023/05/04 12:0 a.m.•9 views

CVE-2023-30331

An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection SSTI via a crafted payload...

9.5AI score0.00385EPSS

Exploits1References2

NVD•added 2023/04/26 9:15 p.m.•9 views

CVE-2023-30363

vConsole v3.15.0 was discovered to contain a prototype pollution due to incorrect key and value resolution in setOptions in core.ts...

9.8CVSS9.5AI score0.00613EPSS

Exploits1References2

Prion•added 2023/04/26 9:15 p.m.•13 views

Design/Logic Flaw

vConsole v3.15.0 was discovered to contain a prototype pollution due to incorrect key and value resolution in setOptions in core.ts...

7.5CVSS9.5AI score0.00613EPSS

Exploits1References2Affected Software1

Cvelist•added 2023/04/26 12:0 a.m.•13 views

CVE-2023-30363

vConsole v3.15.0 was discovered to contain a prototype pollution due to incorrect key and value resolution in setOptions in core.ts...

9.8AI score0.00613EPSS

Exploits1References2

CVE•added 2023/04/26 12:0 a.m.•57 views

CVE-2023-30363

vConsole v3.15.0 has a prototype pollution flaw caused by incorrect key/value resolution in setOptions within core.ts. The issue is described as high-severity (CVSS v3.1: 9.8, CRITICAL) with network attack vector, no exploitation details are provided in the included documents, and a concrete reme...

9.8CVSS9.4AI score0.00613EPSS

Exploits1References2Affected Software1

NVD•added 2021/11/10 10:15 p.m.•10 views

CVE-2020-23884

A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial of service DoS via a crafted MNG file...

5.5CVSS0.0038EPSS

Exploits1References3

OSV•added 2021/11/10 10:15 p.m.•13 views

CVE-2020-23884

A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial of service DoS via a crafted MNG file...

5.5CVSS7AI score

Exploits0References3

Prion•added 2021/11/10 10:15 p.m.•13 views

Buffer overflow

A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial of service DoS via a crafted MNG file...

4.3CVSS5.5AI score0.0038EPSS

Exploits1References3Affected Software1

Debian CVE•added 2021/11/10 9:25 p.m.•14 views

CVE-2020-23884

A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial of service DoS via a crafted MNG file...

5.5CVSS5.5AI score0.0038EPSS

Exploits1

CVE•added 2021/11/10 9:25 p.m.•54 views

CVE-2020-23884

CVE-2020-23884 affects Nomacs v3.15.0 and is due to a buffer overflow in processing MNG files, leading to a DoS. The connected sources confirm the vulnerability details but do not provide a vendor patch or remediation steps within the supplied documents. No exploitation details or active exploit ...

5.5CVSS5.5AI score0.0038EPSS

Exploits1References3Affected Software1

Cvelist•added 2021/11/10 9:25 p.m.•13 views

CVE-2020-23884

A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial of service DoS via a crafted MNG file...

5.5AI score0.0038EPSS

Exploits1References3

Cvelist•added 2021/04/01 5:36 p.m.•17 views

CVE-2021-22195

Client side code execution in gitlab-vscode-extension v3.15.0 and earlier allows attacker to execute code on user system...

8.6CVSS9AI score0.00206EPSS

Exploits0References2