Lucene search
K

8 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/30 2:7 p.m.3 views

CVE-2026-28527

BlueKitchen BTstack versions prior to 1.8.1 contain an out-of-bounds read vulnerability in the AVRCP Controller GETPLAYERAPPLICATIONSETTINGATTRIBUTETEXT and GETPLAYERAPPLICATIONSETTINGVALUETEXT handlers that allows nearby attackers to read beyond packet boundaries. Attackers can establish a paire...

3.5CVSS5.9AI score0.00157EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/17 12:49 a.m.5 views

CVE-2025-59397

Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...

5CVSS7.3AI score0.00385EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/15 12:0 a.m.1 views

CVE-2025-59397

Open Web Analytics OWA before 1.8.1 allows owadb.php vvalue SQL injection...

5CVSS7AI score0.00385EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 7:20 p.m.10 views

CVE-2021-24143

Unvalidated input in the AccessPress Social Icons plugin, versions before 1.8.1, did not sanitise its widget attribute, allowing accounts with post permission, such as author, to perform SQL injections...

8.8CVSS7.3AI score0.01255EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/03/18 12:0 a.m.5 views

Wordpress AccessPress Social Icon SQL注入漏洞

Wordpress AccessPress Social Icon is an open source application plugin for Wordpress. The plugin is used to add design media icons to a website. A SQL injection vulnerability exists in versions of the Wordpress AccessPress Social Icons plugin prior to 1.8.1. The vulnerability stems from the progr...

8.8CVSS6AI score0.01255EPSS
Exploits1References2
OSV
OSV
added 2019/03/25 7:29 p.m.1 views

DEBIAN-CVE-2019-3861

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the way SSH packets with a padding length value greater than the packet length are parsed. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory...

9.1CVSS7.2AI score0.05118EPSS
Exploits0References1
OSV
OSV
added 2016/02/15 7:59 p.m.4 views

DEBIAN-CVE-2016-0747

The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution, which allows remote attackers to cause a denial of service worker process resource consumption via vectors related to arbitrary name resolution...

5.3CVSS8.1AI score0.08433EPSS
Exploits0References1
OSV
OSV
added 2010/03/25 10:30 p.m.3 views

DEBIAN-CVE-2010-0628

The spnegogssacceptseccontext function in lib/gssapi/spnego/spnegomech.c in the SPNEGO GSS-API functionality in MIT Kerberos 5 aka krb5 1.7 before 1.7.2 and 1.8 before 1.8.1 allows remote attackers to cause a denial of service assertion failure and daemon crash via an invalid packet that triggers...

5CVSS7.8AI score0.03329EPSS
Exploits0References1
Rows per page
Query Builder