55 matches found
CVE-2019-10364
Jenkins Amazon EC2 Plugin 1.43 and earlier wrote the beginning of private keys to the Jenkins system log...
CVE-2019-8513
creationtimestamp| type| source ---|---|--- 2019-04-13 18:51:06+00:00| published-proof-of-concept| https://t.me/antichat/4432 2019-04-13 20:10:59+00:00| published-proof-of-concept| https://t.me/canyoupwnme/5400 2019-06-29 10:52:23+00:00| seen|...
CVE-2018-5010
creationtimestamp| type| source ---|---|--- 2019-01-29 15:21:05+00:00| seen| MISP/5c506eeb-c0e4-4178-b2be-2cf30a021402...
CVE-2018-5711
creationtimestamp| type| source ---|---|--- 2018-01-22 12:56:46+00:00| published-proof-of-concept| https://t.me/news4hack/31 2024-11-14 06:07:44+00:00| seen| MISP/a57f7f1a-11dd-462d-81cd-6cf385407046...
CVE-2017-3317
Removed by vendor...
CVE-2013-2633
Piwik before 1.11 accepts input from a POST request instead of a GET request in unspecified circumstances, which might allow attackers to obtain sensitive information by leveraging the logging of parameters...
CVE-2011-3176
creationtimestamp| type| source ---|---|--- 2012-07-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/19959 2012-07-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/19958 2018-05-29 15:50:33+00:00| seen|...
CVE-2012-0813
Wicd before 1.7.1 saves sensitive information in log files in /var/log/wicd, which allows context-dependent attackers to obtain passwords and other sensitive information...
CVE-2010-3970
creationtimestamp| type| source ---|---|--- 2011-02-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16660 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ms11006createsizeddibsection.rb 2025-02-06...
CVE-2008-1472
creationtimestamp| type| source ---|---|--- 2008-03-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5264 2010-06-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16577 2018-05-29 15:50:33+00:00| seen|...
Format string
Format string vulnerability in the logging function in Larson Network Print Server LstNPS 9.4.2 build 105 and earlier for Windows might allow remote attackers to execute arbitrary code via format string specifiers in a USEP command on TCP port 3114...
CVE-2004-1900
Format string vulnerability in the logging function in IGI 2 Covert Strike server 1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in RCON commands...
CVE-2004-0168
Unknown vulnerability in CoreFoundation for Mac OS X 10.3.2, related to "notification logging."...
Apache stops writing access/error logs after processing "Request-URI" containing "0x1A" characters
Overview A vulnerability in the logging of URI requests may permit a remote attacker to disable logging on an Apache HTTP Server. Version 1.3.27 on Windows systems is reported vulnerable to this issue. Description Apache HTTP Server 1.3.27 running on Win32 systems contains a vulnerability that...
Local root compromise in GNQS 3.50.6 and 3.50.7
A large security hole was uncovered last month in Generic-NQS ver. 3.50.6 and 3.50.7. This hole leads to immediate local root compromise. All users of those versions are requested to upgrade to ver. 3.50.8 or later ASAP. The updated package can be downloaded from...