Lucene search
+L

11 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-1004

Malware in sbrugna...

9.8CVSS8.6AI score0.02174EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-28942

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01109EPSS
Exploits1References1
nvd
nvd
added 2025/08/21 2:15 p.m.9 views

CVE-2025-55370

Incorrect access control in the component \controller\ResourceController.java of jshERP v3.5 allows unauthorized attackers to obtain all the corresponding ID data by modifying the ID value...

8.8CVSS0.00358EPSS
Exploits1References2
osv
osv
added 2023/11/09 4:2 p.m.37 views

GHSA-XFM3-HJCC-GV78 Any value can be changed in the configuration table by an employee having access to block reassurance module

Impact An ajax function in module blockreassurance allows modifying any value in the configuration table Patches v5.1.4 Workarounds no workaround available References...

5.3CVSS7AI score0.00418EPSS
Exploits0References5
cnnvd
cnnvd
added 2023/11/09 12:0 a.m.5 views

PrestaShop blockreassurance security breach

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image zoom. A security vulnerability exists in PrestaShop blockreassurance version 5.1.3 and earlier versions, which stems...

9.1CVSS6.8AI score0.00418EPSS
Exploits0References2
susecve
susecve
added 2023/02/15 6:0 a.m.4 views

SUSE CVE-2010-0622

The wakefutexpi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance PI futex, which allows local users to cause a denial of service OOPS and possibly have unspecified other impact via vectors involving...

2.1CVSS6.8AI score0.00387EPSS
Exploits0References6
osv
osv
added 2021/10/28 1:15 p.m.3 views

CVE-2021-37001

There is a Register tampering vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow the register value to be modified...

7.5CVSS5.8AI score0.00562EPSS
Exploits0References1
prion
prion
added 2021/08/24 12:15 p.m.22 views

Command injection

From Apache NiFi MiNiFi C++ version 0.5.0 the c2 protocol implements an "agent-update" command which was designed to patch the application binary. This "patching" command defaults to calling a trusted binary, but might be modified to an arbitrary value through a "c2-update" command. Said command ...

7.5CVSS9.3AI score0.04024EPSS
Exploits0References3Affected Software1
prion
prion
added 2012/07/26 10:55 p.m.19 views

Design/Logic Flaw

The login implementation in AirDroid 1.0.4 beta allows remote attackers to bypass a multiple-login protection mechanism by modifying a pass value within JSON data...

5CVSS7.2AI score0.01431EPSS
Exploits1References2Affected Software1
ptsecurity
ptsecurity
added 2008/10/23 12:0 a.m.9 views

PT-2008-5939 · Hummingbird · Hummingbird Deployment Wizard

Name of the Vulnerable Software and Affected Versions: Hummingbird Deployment Wizard 2008 version 10.0.0.44 Description: The issue concerns insecure methods in the DeployRun.DeploymentSetup.1 ActiveX control, allowing remote attackers to execute arbitrary programs via the Run and PerformUpdateAsy...

9.3CVSS7.7AI score0.31628EPSS
Exploits2References11
freebsd
freebsd
added 2005/06/22 12:0 a.m.29 views

ruby -- arbitrary command execution on XMLRPC server

Nobuhiro IMAI reports: the default value modification on Modulepublicinstancemethods from false to true breaks s.addhandlerXMLRPC::iPIMethods"sample", MyHandler.new style security protection. This problem could allow a remote attacker to execute arbitrary commands on XMLRPC server of libruby...

7.5CVSS6.8AI score0.06565EPSS
Exploits0References2
Rows per page
Query Builder