Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2004-2669

Malware in sbrugna...

7.8CVSS6.4AI score0.01426EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-52783

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: wangxun: fix kernel panic due to null pointer When the device uses a custom subsystem...

5.5CVSS5.6AI score0.00208EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 2:49 a.m.7 views

CVE-2024-6666

The WP ERP plugin for WordPress is vulnerable to SQL Injection via the ‘vendorid’ and 'status' parameter in all versions up to, and including, 1.13.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible fo...

8.8CVSS5.9AI score0.00535EPSS
Exploits0References1
NVD
NVD
added 2024/07/11 7:15 a.m.26 views

CVE-2024-6666

The WP ERP plugin for WordPress is vulnerable to SQL Injection via the ‘vendorid’ and 'status' parameter in all versions up to, and including, 1.13.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible fo...

8.8CVSS0.00535EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/11 6:43 a.m.19 views

CVE-2024-6666 WP ERP <= 1.13.0 - Authenticated (Accounting Manager+) SQL Injection via vendor_id

The WP ERP plugin for WordPress is vulnerable to SQL Injection via the ‘vendorid’ and 'status' parameter in all versions up to, and including, 1.13.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible fo...

8.8CVSS5.9AI score0.00535EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/07/11 6:36 a.m.3 views

WordPress WP ERP plugin <= 1.13.0 - Authenticated (Accounting Manager+) SQL Injection via vendor_id vulnerability

Authenticated Accounting Manager+ SQL Injection via vendorid vulnerability discovered by Edwin Siebel edwinsiebel in WordPress Plugin WP ERP versions = 1.13.0...

8.8CVSS8.1AI score0.00535EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/11 12:0 a.m.4 views

PT-2024-37787 · WordPress · Wp Erp

Name of the Vulnerable Software and Affected Versions: WP ERP plugin for WordPress versions up to, and including, 1.13.0 Description: The issue is related to SQL Injection via the vendor id parameter due to insufficient escaping on the user-supplied parameter and lack of sufficient preparation on...

8.8CVSS7.4AI score0.00535EPSS
Exploits0References10
Exploit DB
Exploit DB
added 2024/06/14 12:0 a.m.436 views

Zyxel IKE Packet Decoder - Unauthenticated Remote Code Execution (Metasploit)

Exploit Title: Zyxel IKE Packet Decoder Unauthenticated Remote Code Execution Date: 2023-03-31 Exploit Author: sf Vendor Homepage: https://www.zyxel.com/ Software Link: https://www.zyxel.com/ Version: ATP Firmware version 4.60 to 5.35 inclusive, USG FLEX Firmware version 4.60 to 5.35 inclusive, V...

9.8CVSS7.4AI score0.99284EPSS
Exploits8
SUSE CVE
SUSE CVE
added 2024/05/23 3:23 p.m.2 views

SUSE CVE-2023-52783

In the Linux kernel, the following vulnerability has been resolved: net: wangxun: fix kernel panic due to null pointer When the device uses a custom subsystem vendor ID, the function wxswinit returns before the memory of 'wx-mactable' is allocated. The null pointer will causes the kernel panic...

5.9CVSS6.6AI score0.00208EPSS
Exploits0References10
OSV
OSV
added 2024/05/21 4:15 p.m.7 views

UBUNTU-CVE-2023-52783

In the Linux kernel, the following vulnerability has been resolved: net: wangxun: fix kernel panic due to null pointer When the device uses a custom subsystem vendor ID, the function wxswinit returns before the memory of 'wx-mactable' is allocated. The null pointer will causes the kernel panic...

5.5CVSS5.8AI score0.00208EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/05/21 3:31 p.m.17 views

CVE-2023-52783 net: wangxun: fix kernel panic due to null pointer

In the Linux kernel, the following vulnerability has been resolved: net: wangxun: fix kernel panic due to null pointer When the device uses a custom subsystem vendor ID, the function wxswinit returns before the memory of 'wx-mactable' is allocated. The null pointer will causes the kernel panic...

6.7AI score0.00208EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2023/03/31 12:0 a.m.48 views

Microsoft Windows IKEEXT Service Vendor ID Null Pointer Dereference Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Windows. Authentication is not required to exploit this vulnerability. The specific flaw exists within the IKEEXT service, which listens on UDP ports 500 and 4500. A crafted...

5.3CVSS7.7AI score0.91597EPSS
Exploits0References1
Kitploit
Kitploit
added 2017/08/25 2:30 p.m.32 views

ike-scan - Discover and fingerprint IKE hosts (IPsec VPN Servers)

Discover and fingerprint IKE hosts IPsec VPN Servers. Building and Installing ike-scan uses the standard GNU autoconf and automake tools, so installation is the normal process: Run git clone https://github.com/royhills/ike-scan.git to obtain the project source code Run cd ike-scan to enter source...

7.4AI score
Exploits0References2
OSV
OSV
added 2017/08/10 9:29 p.m.4 views

CVE-2017-3130

An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows attacker to get FortiOS version info by inspecting FortiOS IKE VendorID packets...

7.5CVSS5.8AI score0.01449EPSS
Exploits0References2
Kitploit
Kitploit
added 2014/03/06 12:3 a.m.23 views

[USBLogView] Records the details of any USB device that is plugged or unplugged into your system

USBLogView is a small utility that runs in the background and records the details of any USB device that is plugged or unplugged into your system. For every log line created by USBLogView, the following information is displayed: Event Type Plug/Unplug, Event Time, Device Name, Description, Device...

7AI score
Exploits0
seebug.org
seebug.org
added 2014/01/20 12:0 a.m.31 views

SmarterMail Email正文HTML注入漏洞

Bugtraq ID:64970 SmarterMail是一款邮件服务程序。 SmarterMail不正确过滤Email正文数据,允许远程攻击者利用漏洞构建恶意邮件,诱使用户解析,当恶意数据被查看时可获取敏感信息或者劫持用户会话。 0 SmarterMail 11.x 目前没有详细解决方案提供: http://www.smartertools.com/smartermail/mail-server-software.aspx ?php / Exploit Title: SmarterMail Enterprise and Standard =11.x Stored XSS Google...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/02/28 12:0 a.m.22 views

SuSE 11.2 Security Update : freeradius (SAT Patch Number 7255)

This update for freeradius-server provides the following fixes and improvements : - Increase the vendor IDs limit from 32767 to 65535. bnc791666 - Fix issues with escaping special characters in password. bnc797515 - Respect expired passwords and accounts when using the unix module. bnc797313,...

6CVSS8.1AI score0.01382EPSS
Exploits0References5
Prion
Prion
added 2012/06/17 3:41 a.m.22 views

Design/Logic Flaw

libvirt, possibly before 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and product ID, which might cause the wrong device to be associated with a guest and might allow local users to access unintended USB devices...

3.7CVSS6.8AI score0.00331EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder