Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.6 views

MiracleLinux 3 : dovecot-1.0.7-7.1.0.1.AXS3 (AXSA:2011-295:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2011-295:01 advisory. Dovecot is an IMAP server for Linux/UNIX-like systems, written with security primarily in mind. It also contains a small POP3 server. It supports mail in eith...

5CVSS5.8AI score0.0325EPSS
Exploits0References2
OSV
OSV
added 2023/06/05 9:15 p.m.4 views

CVE-2023-29630

PrestaShop jmsmegamenu 1.1.x and 2.0.x is vulnerable to SQL Injection via ajaxjmsmegamenu.php...

9.8CVSS7.4AI score0.01029EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:27 a.m.4 views

SUSE CVE-2018-11760

When using PySpark , it's possible for a different local user to connect to the Spark application and impersonate the user running the Spark application. This affects versions 1.x, 2.0.x, 2.1.x, 2.2.0 to 2.2.2, and 2.3.0 to 2.3.1...

5.5CVSS6.6AI score0.00605EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/05/05 12:0 a.m.5 views

Mutt 缓冲区错误漏洞

Mutt is a text-based mail client for Unix-like systems developed by Michael Elkins. A security vulnerability exists in Mutt versions 1.11.0 through 2.0.x and prior to 2.0.7 in the 2.0.x series, which is caused by an out-of-scope read...

9.1CVSS8.2AI score0.02551EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2020/08/06 12:0 a.m.5 views

PT-2020-19567 · Gog · Gog Galaxy

Name of the Vulnerable Software and Affected Versions: GOG Galaxy versions 1.2.x through 1.2.64 GOG Galaxy versions 2.0.x through 2.0.12 Description: The GalaxyClientService component of GOG Galaxy runs with elevated SYSTEM privileges in a Windows environment. Due to the software shipping with an...

8.8CVSS8.6AI score0.03778EPSS
Exploits5References4
Positive Technologies
Positive Technologies
added 2019/10/23 12:0 a.m.5 views

PT-2019-7464 · Sandhills Development · Easy Digital Downloads

Name of the Vulnerable Software and Affected Versions: Easy Digital Downloads EDD core component versions 1.8.x through 1.8.6 Easy Digital Downloads EDD core component versions 1.9.x through 1.9.9 Easy Digital Downloads EDD core component versions 2.0.x through 2.0.4 Easy Digital Downloads EDD co...

6.1CVSS6.1AI score0.00923EPSS
Exploits0References5
Exploit DB
Exploit DB
added 2019/04/30 12:0 a.m.59 views

Spring Cloud Config 2.1.x - Path Traversal (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Spring Cloud Config Server Directory Traversal', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability whi...

6.5CVSS6.7AI score0.85295EPSS
Exploits6
CNVD
CNVD
added 2019/02/11 12:0 a.m.3 views

SDL (Simple DirectMedia Layer) Buffer Overflow Vulnerability (CNVD-2019-29175)

Simple DirectMedia Layer SDL is a multi-platform library for accessing low-level hardware and graphics and providing support for games, software and emulators. A heap-based buffer overflow vulnerability exists in the 'SDLFillRect' function in the video/SDLsurface.c file in SDL versions 1.2.15 and...

8.1CVSS9.8AI score0.02879EPSS
Exploits1References1
OSV
OSV
added 2019/02/07 6:2 p.m.3 views

GHSA-FVXV-9XXR-H7WJ Pyspark User Impersonation Vulnerability

When using PySpark , it's possible for a different local user to connect to the Spark application and impersonate the user running the Spark application. This affects versions 1.x, 2.0.x, 2.1.x, 2.2.0 to 2.2.2, and 2.3.0 to 2.3.1...

6.8CVSS6.4AI score0.00605EPSS
Exploits0References8
OSV
OSV
added 2018/08/03 5:29 p.m.3 views

ALPINE-CVE-2018-14574

django.middleware.common.CommonMiddleware in Django 1.11.x before 1.11.15 and 2.0.x before 2.0.8 has an Open Redirect...

6.1CVSS7AI score0.2549EPSS
Exploits0References1
OSV
OSV
added 2016/04/25 10:59 a.m.4 views

UBUNTU-CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS6.6AI score0.02316EPSS
Exploits0References5
NVD
NVD
added 2012/07/21 3:38 a.m.17 views

CVE-2012-2359

admin/roles/override.php in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to gain privileges by leveraging the teacher role and modifying their own capabilities, as demonstrated by obtaining the backup:userinfo capability...

6.5CVSS6.3AI score0.01117EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2011/09/14 6:59 p.m.4 views

httpd: multiple ranges DoS

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different...

7.8CVSS7.3AI score0.98945EPSS
Exploits17References4
RedHat Linux
RedHat Linux
added 2006/07/03 4:10 p.m.4 views

security flaw

Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x aka StarOffice up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to escape the Java sandbox and conduct unauthorized activities via certain applets in OpenOffice documents...

7.6CVSS5.7AI score0.03344EPSS
Exploits0References4
Rows per page
Query Builder