Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.8 views

RHEL 6 : libsamplerate (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libsamplerate: Buffer overflow in calcoutputsingle CVE-2017-7697 Note that Nessus has not tested for this issue but...

5.5CVSS5.7AI score0.00913EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.20 views

RHEL 8 : audiofile (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - audiofile: NULL pointer dereference in ModuleState::setup in modules/ModuleState.cpp allows for denial of service v...

6.5CVSS6.9AI score0.03113EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.15 views

RHEL 5 : freeradius2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - freeradius: stack-based buffer overflow flaw in rlmpap module CVE-2014-2015 Note that Nessus has not tested for thi...

7.5CVSS7AI score0.03912EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.14 views

RHEL 7 : tpm2-tss (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - tpm2-tss: Buffer Overlow in TSS2RCDecode CVE-2023-22745 Note that Nessus has not tested for this issue but has...

7.3AI score0.00519EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2021/06/04 12:0 a.m.289 views

HealthForYou 1.11.1 / HealthCoach 2.9.2 User Enumeration

Trovent Security Advisory 2104-01 User enumeration through API Overview Advisory ID: TRSA-2104-01 Advisory version: 1.0 Advisory status: Public Advisory URL: https://trovent.io/security-advisory-2104-01 Affected product: HealthForYou & Sanitas HealthCoach mobile and web applications Tested...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/04/14 12:0 a.m.317 views

CITSmart ITSM 9.1.2.22 - LDAP Injection

Exploit Title: CITSmart ITSM 9.1.2.22 - LDAP Injection Google Dork: "citsmart.local" Date: 29/12/2020 Exploit Author: skysbsb Vendor Homepage: https://docs.citsmart.com/pt-br/citsmart-platform-9/get-started/about-citsmart/release-notes.html Version: = 9.1.2.23 Using this LDAP query in the usernam...

9.8CVSS9.7AI score0.13309EPSS
Exploits3
Packet Storm
Packet Storm
added 2020/06/07 12:0 a.m.297 views

Virtual Airlines Manager 2.6.2 SQL Injection

Exploit Title: Virtual Airlines Manager 2.6.2 - 'notam' SQL Injection Date: 2020-06-07 Exploit Author: Pankaj Kumar Thakur Vendor Homepage: http://virtualairlinesmanager.net/ Dork: inurl:notamid= Affected Version: 2.6.2 Tested on: Ubuntu CVE : N/A Vulnerable parameter -------------------...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2017/12/24 12:0 a.m.245 views

Ubiquiti UniFi Video 3.7.3 (Windows) Local Privilege Escalation

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Ubiquiti UniFi Video Windows Vendor URL: https://www.ubnt.com Type: Improper Handling of Insufficient Permissions or Privileges CWE-280 Date found: 2016-05-24 Date published: 2017-12-20 CVSS...

0.6AI score0.01161EPSS
Exploits5
ThreatPost
ThreatPost
added 2016/12/15 10:30 a.m.8 views

Bug Hunters Prefer Communication Over Compensation

Unlike their criminal counterparts, it turns out that white hats aren’t necessarily as financially motivated when it comes to bug hunting. Bug bounties are everywhere, and many researchers are making a decent amount of money privately disclosing vulnerabilities through coordinated bounty programs...

0.6AI score
Exploits0References1
Exploit DB
Exploit DB
added 2016/10/05 12:0 a.m.56 views

Cisco Firepower Threat Management Console 6.0.1 - Hard-Coded MySQL Credentials

KL-001-2016-005 : Cisco Firepower Threat Management Console Hard-coded MySQL Credentials Title: Cisco Firepower Threat Management Console Hard-coded MySQL Credentials Advisory ID: KL-001-2016-005 Publication Date: 2016.10.05 Publication URL:...

7.8CVSS7.7AI score0.00983EPSS
Exploits4
Prion
Prion
added 2013/01/31 2:55 p.m.27 views

Design/Logic Flaw

Unspecified vulnerability in Oracle Java SE 7 Update 11 JRE 1.7.011-b21 allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors, aka "Issue 51," a different vulnerability than CVE-2013-0431. NOTE: as of 20130130, this vulnerability does not contain any...

4.3CVSS6.7AI score0.89987EPSS
Exploits8References6Affected Software2
securityvulns
securityvulns
added 2012/09/02 12:0 a.m.101 views

Chamilo 1.8.8.4 Multiple Vulnerabilities

Chamilo 1.8.8.4 Multiple Vulnerabilities ======================== CVE: CVE-2012-4029 Issue: Reflected XSS PHPSELF in third-party app, Stored XSS PHPSELF XSS http://chamilo-1.8.8.4/main/inc/lib/phpdocx/pdf/www/examples.php/'"img src=404 onerror=alert1 Stored XSS unfiltered input categoryname...

1.1AI score0.01442EPSS
Exploits2
securityvulns
securityvulns
added 2010/02/08 12:0 a.m.46 views

JAHx101 - Huski retail mulitple SQL injection vulnerabilities

-------------------------------------------------------------------------------------------- 20100205 - Justanotherhacker.com : Huski retail mulitple SQL injection vulnerabilities JAHx101 - http://www.justanotherhacker.com/advisories/JAHx101.txt...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2009/06/15 12:0 a.m.19 views

LinkLogger 2.4.10.15 - syslog Denial of Service

LinkLogger 2.4.10.15 - syslog Denial of Service !/usr/bin/perl LinkLogger 2.4.10.15 syslog DoS Tested against 2.4.10.15 Coded by Mike Cyr, aka h00die mcyr2 at csc dotcom Notes: 1. Based on code from http://www.pythonprasanna.com/Papers%20and%20Articles/Sockets/udpspoofpl.txt 2. The exact amount o...

7.3AI score
Exploits0
0day.today
0day.today
added 2009/06/15 12:0 a.m.31 views

LinkLogger 2.4.10.15 (syslog) Denial of Service Exploit

Exploit for linux platform in category dos / poc ======================================================= LinkLogger 2.4.10.15 syslog Denial of Service Exploit ======================================================= !/usr/bin/perl LinkLogger 2.4.10.15 syslog DoS Tested against 2.4.10.15 Coded by...

7AI score
Exploits0
Rows per page
Query Builder