Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
SecurityvulnsRecent
RecentMost viewed

47153 matches found

securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.55 views

Apache Tomcat security vulnerabilities

Resources exhaustion, restrictions bypass...

7.8CVSS2.3AI score0.09485EPSS
Exploits0References2Affected Software1
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.47 views

[CORE-2015-0009] - SAP LZC/LZH Compression Multiple Vulnerabilities

Advisory Information Title: SAP LZC/LZH Compression Multiple Vulnerabilities Advisory ID: CORE-2015-0009 Advisory URL: http://www.coresecurity.com/advisories/sap-lzc-lzh-compression-multiple-vulnerabilities Date published: 2015-05-12 Date of last update: 2015-05-12 Vendors contacted: SAP Release...

7.5CVSS0.00915EPSS
Exploits2
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.66 views

Concrete5 Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-2250

Information -------------------- Advisory by Netsparker. Name: Multiple XSS Vulnerabilities in Concrete5 Affected Software : Concrete5 Affected Versions: 5.7.3.1 and possibly below Vendor Homepage : https://www.concrete5.org Vulnerability Type : Cross-site Scripting Severity : Important CVE-ID:...

4.3CVSS0.1AI score0.00393EPSS
Exploits2
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.65 views

[USN-2608-1] QEMU vulnerabilities

========================================================================== Ubuntu Security Notice USN-2608-1 May 13, 2015 qemu, qemu-kvm vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

7.8CVSS0.4AI score0.19325EPSS
Exploits1
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.38 views

Cisco Telepresence security vulnerabilities

Code execution, authentication bypass, DoS...

9CVSS3AI score0.0049EPSS
Exploits0
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.216 views

[SECURITY] CVE-2014-7810: Apache Tomcat Security Manager Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 CVE-2014-7810 Security Manager Bypass Severity: Moderate Vendor: The Apache Software Foundation Versions Affected: - - Apache Tomcat 8.0.0-RC1 to 8.0.15 - - Apache Tomcat 7.0.0 to 7.0.57 - - Apache Tomcat 6.0.0 to 6.0.43 Description: Malicious web...

5CVSS0.1AI score0.09485EPSS
Exploits0
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.1668 views

Web India Solutions CMS 2015 - SQL Injection Vulnerability

Document Title: =============== Web India Solutions CMS 2015 - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1495 Release Date: ============= 2015-05-13 Vulnerability Laboratory ID VL-ID: ====================================...

0.3AI score
Exploits0
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.50 views

libvirt / qemu security vulnerabilities

Crash on PCI registers, IDE controller and Physical Region Descriptor Table decoder. Code execution...

7.8CVSS4.1AI score0.19325EPSS
Exploits1References2Affected Software1
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.21 views

Websense Content Gateway certificates check vulnereability

Compromised certificates are incorrectly checked...

2.1AI score
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.62 views

Sidu 5.2 Admin XSS Vulnerability

Affected Vendor: www.topnew.net/sidu/ Credits: John Page hyp3rlinx Domains: hyp3rlinx.altervista.org Source: http://hyp3rlinx.altervista.org/advisories/AS-SIDU0513.txt Product: Sidu version 5.2 is a web based database front-end administration tool. Advisory Information:...

Exploits0
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.32 views

SAP applications buffer overflow

Buffer overflow in LZC/LZH implementation...

7.5CVSS3.2AI score0.00915EPSS
Exploits1References1
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.26 views

Pure Faction game server buffer overflow

Buffer overflow via game chat...

4.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2015/05/17 12:0 a.m.36 views

Certificate trust vulnerability in Websense Content Gateway

SUMMARY Websense Content Gateway proxy explicitly trusts compromised certificate authorities Affected versions: Content Gateway 7.8.x Not affected: Content Gateway 7.7.x, 8.0 DESCRIPTION Websense Content Gateway is a filtering web proxy and content inspection application based on a modified...

7.8AI score
Exploits0
securityvulns
securityvulnsadded 2015/05/13 12:0 a.m.132 views

Adobe Flash Player multiple security vulnerabilities

Buffer overflows, memory corruptions, integer overflows, race conditions, restriction bypass...

10CVSS3.5AI score0.89827EPSS
Exploits10Affected Software1
securityvulns
securityvulnsadded 2015/05/13 12:0 a.m.170 views

Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities

Multiple buffer overflows, memory corruptions, information disclosures, restriction bypass...

10CVSS2.5AI score0.07609EPSS
Exploits0Affected Software3
securityvulns
securityvulnsadded 2015/05/13 12:0 a.m.63 views

Adobe Reader / Acrobat multiple security vulnerabilities

Memory corruptions, buffer overlfows, restrictions bypass, DoS...

10CVSS3AI score0.49312EPSS
Exploits0Affected Software2
securityvulns
securityvulnsadded 2015/05/13 12:0 a.m.96 views

Microsoft Windows multiple security vulnerabilities

Buffer overflow, memory corruption, code execution, privilege escalation, restrictions bupass, DoS, information disclosure...

9.3CVSS3.1AI score0.90429EPSS
Exploits40Affected Software1
securityvulns
securityvulnsadded 2015/05/13 12:0 a.m.33 views

Microsoft SharePoint Server code execution

Code execution via document content...

6CVSS3.4AI score0.20213EPSS
Exploits0Affected Software1
securityvulns
securityvulnsadded 2015/05/13 12:0 a.m.42 views

Microsoft Office memory corruptions

Memory corruptions on documents parsing...

9.3CVSS4AI score0.37547EPSS
Exploits0Affected Software2
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.29 views

EMC Documentum xCelerated Management System information disclosure

Service password is stored in .bat file...

2.1CVSS2.1AI score0.00057EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.30 views

quassel SQL injection

SQL injection via messages...

7.5CVSS4.1AI score0.00671EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.72 views

GoAutoDial 3.3 multiple vulnerabilities

Affected software: GoAutoDial Affected version: 3.3-1406088000 GoAdmin and previous releases of GoAutodial 3.3 Associated CVEs: CVE-2015-2842, CVE-2015-2843, CVE-2015-2844, CVE-2015-2845 Vendor advisory: http://goautodial.org/news/21 Abstract: Multiple vulnerabilties exist in the GoAutodial 3.3...

10CVSS0.7AI score0.87464EPSS
Exploits11
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.101 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

10CVSS1.6AI score0.94366EPSS
Exploits50References28Affected Software20
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.65 views

[SECURITY ANNOUNCEMENT] CVE-2015-0225

CVE-2015-0225: Apache Cassandra remote execution of arbitrary code Severity: Important Vendor: The Apache Software Foundation Versions Affected: Cassandra 1.2.0 to 1.2.19 Cassandra 2.0.0 to 2.0.13 Cassandra 2.1.0 to 2.1.3 Description: Under its default configuration, Cassandra binds an...

7.5CVSS1.8AI score0.00667EPSS
Exploits0
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.78 views

[USN-2607-1] Module::Signature vulnerabilities

========================================================================== Ubuntu Security Notice USN-2607-1 May 12, 2015 libmodule-signature-perl vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...

10CVSS1.2AI score0.03926EPSS
Exploits0
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.29 views

EMC Isilon OneFS privilege escalation

Local files access...

7.2CVSS3.3AI score0.00069EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.44 views

ESA-2015-049: EMC Isilon OneFS Privilege Escalation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-049: EMC Isilon OneFS Privilege Escalation Vulnerability EMC Identifier: ESA-2015-049 CVE Identifier: CVE-2015-0528 Severity Rating: CVSS v2 Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected products: • EMC Isilon OneFS 7.2.0.0 • EMC Isilon...

7.2CVSS1.1AI score0.00069EPSS
Exploits0
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.54 views

[CVE-2015-2926] XSS vuln in phpTrafficA

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Product: phpTrafficA Product page: http://soft.zoneo.net/phpTrafficA/ Affected versions: Up to and including 2.3 latest as of writing. Description: The user agent string provided by the browser is not sanitized nor escaped when handled. This string ...

7.2AI score0.00254EPSS
Exploits2
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.185 views

[ MDVSA-2015:181 ] drupal

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:181 http://www.mandriva.com/en/support/security/ Package : drupal Date : March 30, 2015 Affected: Business Server 1.0 Problem Description: Updated drupal packages fix security vulnerabilities: An information...

7.5CVSS8.3AI score0.94366EPSS
Exploits23
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.70 views

Avsarsoft Matbaa Script - Multiple Vulnerabilities

Title : Avsarsoft Matbaa Script - Multiple Vulnerabilities Author : ZoRLu / [email protected] Website : milw00rm.com / milw00rm.net / milw00rm.org Twitter : https://twitter.com/milw00rm or @milw00rm Test : Windows7 Ultimate Discovery : 15/04/15 Publish : 23/04/15 Thks : exploit-db.com,...

0.7AI score
Exploits0
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.28 views

Battle of Wesnoth directory traversal

Directory traversal on maps loading...

5CVSS2.9AI score0.00651EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.82 views

Advisory: CVE-2014-9707: GoAhead Web Server 3.0.0 - 3.4.1

Affected software: GoAhead Web Server Affected versions: 3.0.0 - 3.4.1 3.x.x series before 3.4.2 CVE ID: CVE-2014-9707 Description: The server incorrectly normalizes HTTP request URIs that contain path segments that start with a "." but are not entirely equal to "." or ".." eg. ".x". By sending a...

7.5CVSS7.2AI score0.60589EPSS
Exploits4
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.37 views

Palo Alto Traps Server XSS

Stored XSS in logs...

4.3CVSS1.5AI score0.01895EPSS
Exploits5References1Affected Software1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.62 views

[SECURITY] [DSA 3230-1] django-markupfield security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3230-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini April 20, 2015 http://www.debian.org/security/faq -...

5CVSS2.2AI score0.0025EPSS
Exploits0
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.61 views

Reflected XSS Vulnerability In Manage Engine Firewall Analyzer

======================================================================== =======Reflected XSS Vulnerability In Manage Engine Firewall Analyzer ======================================================================== ======= . contents:: Table Of Content Overview ======== Title : Reflected XSS...

6.6AI score
Exploits0
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.32 views

NetworkManager directory traversal

File access on modem device handling...

4.6CVSS4AI score0.00023EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.45 views

Reflected Cross-Site Scripting vulnerability in asdoc generated documentation

------------------------------------------------------------------------ Reflected Cross-Site Scripting vulnerability in asdoc generated documentation ------------------------------------------------------------------------ Radjnies Bhansingh, March 2014...

0.5AI score
Exploits0
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.33 views

ESA-2015-044: EMC Documentum xMS Sensitive Information Disclosure Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-044: EMC Documentum xMS Sensitive Information Disclosure Vulnerability EMC Identifier: ESA-2015-044 CVE Identifier: CVE-2015-0527 Severity Rating: CVSS v2 Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C Affected products: • EMC Documentum xCelerat...

2.1CVSS0.5AI score0.00057EPSS
Exploits0
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.34 views

Fortinet FortiAnalyzer and FortiManager crossite scripting

Crossite scripting in web interface...

4.3CVSS2AI score0.00514EPSS
Exploits4References1Affected Software2
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.104 views

[CVE-2014-5361][CVE-2014-5362]Landesk Management Suite RFI & CSRF Security Vulnerabilities

Exploit Title: Landesk Management Suite RFI and CSRF vulnerabilities Product: Landesk Management Suite Vulnerable Versions: 9.5 and possible previous versions, 9.6 Tested Version: 9.5 Advisory Publication: 16/04/2015 Latest Update: 16/04/2015 Vulnerability Type: Cross-site request forgery CWE-352...

6.8CVSS7.3AI score0.03788EPSS
Exploits5
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.56 views

Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability

Document Title: =============== Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1354 Security Bulletin FortiGuard: http://www.fortiguard.com/advisory/FG-IR-15-005/ PSI...

4.3CVSS0.3AI score0.00514EPSS
Exploits4
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.41 views

CVE-2015-2223: Palo Alto Traps Server Stored XSS

------------------------------------------------------------------------ Product: Palo Alto Traps Server formerly Cyvera Endpoint Protection Vendor: Palo Alto Networks Vulnerable Versions: 3.1.2.1546 Tested Version: 3.1.2.1546 Advisory Publication: 29 March 2015 Vendor Notification: 17 October 20...

4.3CVSS0.2AI score0.01895EPSS
Exploits5
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.74 views

[ MDVSA-2015:087 ] egroupware

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:087 http://www.mandriva.com/en/support/security/ Package : egroupware Date : March 28, 2015 Affected: Business Server 2.0 Problem Description: Updated egroupware packages fix security vulnerabilities:...

7.5CVSS7.4AI score0.02305EPSS
Exploits1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.80 views

HotExBilling Manager Cross-site scripting (XSS) vulnerability

Title: ==== HotExBilling Manager – Cross-site scripting XSS vulnerability Credit: ====== Name: Bhadresh Patel Company/affiliation: HelpAG Website: www.helpag.com CVE: ===== CVE-2015-2781 Date: ==== 12-03-2015 dd/mm/yyyy Vendor: ====== Hotspot Express has been in the billing solution business sinc...

4.3CVSS0.2AI score0.00256EPSS
Exploits2
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.31 views

perl-Module-Signature content spoofing

Unsigned content can be interpreted as a signed...

10CVSS1.3AI score0.03926EPSS
Exploits0References2Affected Software1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.55 views

Advisory: CVE-2014-9708: Appweb Web Server

Affected software: Appweb Web Server CVE ID: CVE-2014-9708 Description: An HTTP request with a Range header of the form "Range: x=," ie. with an empty range value will cause a null pointer dereference, leading to a remotely-triggerable DoS. Fixed versions: 4.6.6, 5.2.1 Bug entry:...

5CVSS0.9AI score0.0451EPSS
Exploits2
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.88 views

[ MDVSA-2015:200 ] mediawiki

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:200 http://www.mandriva.com/en/support/security/ Package : mediawiki Date : April 10, 2015 Affected: Business Server 1.0 Problem Description: Updated mediawiki packages fix security vulnerabilities: In...

7.1CVSS5.7AI score0.02017EPSS
Exploits1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.33 views

GoAhead Web Server security vulnerabilities

Directory traversal, buffer overflow...

7.5CVSS4AI score0.60589EPSS
Exploits4References1Affected Software1
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.36 views

[USN-2581-1] NetworkManager vulnerability

========================================================================== Ubuntu Security Notice USN-2581-1 April 28, 2015 network-manager vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivative...

4.6CVSS1AI score0.00023EPSS
Exploits0
securityvulns
securityvulnsadded 2015/05/12 12:0 a.m.68 views

Multiple Cross-Site Scripting (XSS) in FreePBX

Advisory ID: HTB23253 Product: FreePBX Vendor: Sangoma Technologies Vulnerable Versions: 12.0.43 and probably prior Tested Version: 12.0.43 Advisory Publication: March 18, 2015 without technical details Vendor Notification: March 18, 2015 Vendor Patch: March 27, 2015 Public Disclosure: April 22,...

4.3CVSS6.4AI score0.0013EPSS
Exploits2
Total number of security vulnerabilities47153