Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2022/06/17 9:51 p.m.0 views

GHSA-85Q9-7467-R53Q XSS Vulnerability in Markdown Editor

Impact InvenTree uses EasyMDE for displaying markdown text in various places e.g. for the various "notes" fields associated with various models. By default, EasyMDE does not sanitize input data, and it is possible for malicious code to be injected into the markdown editor, and executed in the use...

5.9AI score
Exploits0References1
CNVD
CNVDadded 2020/04/23 12:0 a.m.7 views

Teeworlds Access Control Error Vulnerability

Teeworlds is a multiplayer online shooter. A security vulnerability exists in the CServer::SendMsg file in engine/server/server.cpp in versions 0.7.x prior to Teeworlds 0.7.5. A remote attacker could use this vulnerability to shut down the server...

7.8CVSS6.5AI score0.05727EPSS
Exploits0References1
OSV
OSVadded 2020/04/22 5:15 p.m.0 views

UBUNTU-CVE-2020-12066

CServer::SendMsg in engine/server/server.cpp in Teeworlds 0.7.x before 0.7.5 allows remote attackers to shut down the server...

7.5CVSS5.8AI score0.05727EPSS
Exploits0References5
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.11 views

Galette (picture.php) SQL Injection Vulnerability

No description provided by source. Source: http://www.securityfocus.com/bid/53463/info Galette is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

7.1AI score
Exploits0
CVE
CVEadded 2012/08/20 6:0 p.m.86 views

CVE-2011-3936

CVE-2011-3936 affects FFmpeg/libavcodec DV handling. The vulnerability exists in dv_extract_audio() for FFmpeg 0.7.x before 0.7.12, 0.8.x before 0.8.11 and Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, 0.8.x before 0.8.1. It allows remote attackers to trigger an out-of-bounds ...

4.3CVSS8.6AI score0.01021EPSS
Exploits0References7Affected Software1
Prion
Prionadded 2012/06/19 8:55 p.m.18 views

Design/Logic Flaw

APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import keyrings, relies on GnuPG argument order and does not check GPG subkeys, which might allow remote attackers to install Trojan horse packages via a man-in-the-middle MITM attack...

2.6CVSS6.7AI score0.00115EPSS
Exploits0References4Affected Software1
seebug.org
seebug.orgadded 2012/05/24 12:0 a.m.15 views

nginx 0.6.x,0.7.x,0.8<=0.8.57 文件解析错误

No description provided by source...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2012/05/13 12:0 a.m.11 views

Galette - picture.php SQL Injection

Galette - picture.php SQL Injection source: https://www.securityfocus.com/bid/53463/info Galette is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Exploits0
Rows per page
Query Builder