Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
SecurityvulnsRecent
RecentMost viewed

47153 matches found

securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.119 views

[CVE-2013-5702] Watchguard Server Center v11.7.4 Multiple Non-Persistent Cross-Site Scripting Vulnerabilities

Watchguard Server Center v11.7.4 Multiple Non-Persistent Cross-Site Scripting Vulnerabilities RCE Security Advisory http://www.rcesecurity.com 1. ADVISORY INFORMATION ----------------------- Product: Watchguard Server Center Vendor URL: www.watchguard.com Type: Cross-Site Scripting CWE-79 Date...

4.3CVSS0.3AI score0.00974EPSS
Exploits2
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.96 views

Cisco Identity Services Engine multiple security vulnerabilities

Authentication bypass, code execution...

9.3CVSS3.3AI score0.99998EPSS
Exploits18Affected Software1
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.75 views

[SECURITY] [DSA 2782-1] polarssl security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2782-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 20, 2013 http://www.debian.org/security/faq -...

6.8CVSS1.7AI score0.02997EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.46 views

PolarSSL multiple security vulnerabilities

DoS, buffer overflows, timing attacks...

6.8CVSS4.6AI score0.02997EPSS
Exploits1References1Affected Software1
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.52 views

Linux kernel mulriple security vulnerabilities

Privilege escalations, information leakages, DoS conditions...

7.8CVSS2.5AI score0.04707EPSS
Exploits12References7Affected Software1
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.156 views

[USN-2002-1] Keystone vulnerabilities

========================================================================== Ubuntu Security Notice USN-2002-1 October 23, 2013 keystone vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: ...

6.5CVSS0.1AI score0.02342EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.56 views

ESA-2013-067: RSA® Authentication Agent for Web for Internet Information Services (IIS) Security Controls Bypass Vulnerability

ESA-2013-067.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-067: RSA® Authentication Agent for Web for Internet Information Services IIS Security Controls Bypass Vulnerability EMC Identifier: ESA-2013-067 CVE Identifier: CVE-2013-3280 Severity Rating: CVSS v2 Base Score: 9.0...

7.5CVSS0.2AI score0.0228EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.43 views

glibc 2.5 <= reloc types to crash bug

+---------------------------------------------------------+ | XADV-2013002 glibc 2.5 = reloc types to crash bug | +---------------------------------------------------------+ Vulnerable versions: - glibc 2.5 = Not vulnerable versions: - glibc 2.6 = Testbed: linux distro Type: Local Impact: crash...

0.5AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.64 views

[ MDVSA-2013:257 ] nss

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:257 http://www.mandriva.com/en/support/security/ Package : nss Date : October 23, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: A vulnerability has been discovered and...

5CVSS6.6AI score0.03406EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.88 views

[USN-2001-1] Swift vulnerability

========================================================================== Ubuntu Security Notice USN-2001-1 October 23, 2013 swift vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

4CVSS0.9AI score0.01661EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/28 12:0 a.m.72 views

Symantec Workspace Streaming 7.5.0.493 SWS Streamlet Engine Invoker Servlets Remote Code Execution

Symantec Workspace Streaming 7.5.0.493 SWS Streamlet Engine Invoker Servlets Remote Code Execution tested against: Microsoft Windows Server 2008 R2 sp1 download url: http://www.symantec.com/it/it/products-solutions/trialware/ file tested: SymantecWorkspaceStreaming7.5.0.493.zip vulnerability: the...

1.7AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.56 views

DornCMS Application v1.4 - Multiple Web Vulnerabilities

Document Title: =============== DornCMS Application v1.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1113 Release Date: ============= 2013-10-14 Vulnerability Laboratory ID VL-ID: ==================================== 11...

7.5AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.60 views

Security Advisory for Bugzilla 4.4.1, 4.2.7 and 4.0.11

Summary ======= Bugzilla is a Web-based bug-tracking system used by a large number of software projects. The following security issues have been discovered in Bugzilla: A CSRF vulnerability in processbug.cgi affecting Bugzilla 4.4 only can lead to a bug being edited without the user consent. A CS...

6.8CVSS6AI score0.02824EPSS
Exploits6
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.172 views

[ISecAuditors Security Advisories] HTTP Response Splitting Vulnerability in WebCollab <= v3.30

============================================= INTERNET SECURITY AUDITORS ALERT 2013-011 - Original release date: March 21st, 2013 - Last revised: March 21st, 2013 - Discovered by: Manuel Garcia Cardenas - Severity: 5/10 CVSS Base Score - CVE-ID: CVE-2013-2652...

4.3CVSS0.4AI score0.02528EPSS
Exploits2
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.103 views

Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities

Exploit Title: Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities Exploit Author: absane Blog: http://blog.noobroot.com Discovery date: September 29th 2013 Vendor notified: September 29th 2013 Vendor fixed: October 12 2013 Vendor Homepage: http://cart66.com Software Link:...

6.8CVSS6.7AI score0.04084EPSS
Exploits7
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.72 views

ZAPms v1.42 CMS - Client Side Cross Site Scripting Web Vulnerability

Document Title: =============== ZAPms v1.42 CMS - CS Cross Site Scripting Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1112 Release Date: ============= 2013-10-15 Vulnerability Laboratory ID VL-ID: ===================================...

6.8AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.44 views

AFU and IL vulnerabilities in Uploadify

Hello 3APA3A! These are Arbitrary File Uploading and Information Leakage vulnerabilities in Uploadify. The same as in June with previous vulnerabilities in Uploadify, in September the developers just ignored my warnings, even I sent letter to multiple their e-mail addresses...

0.5AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.337 views

WebTester 5.x Multiple Vulnerabilities

========================================================================================== WebTester 5.x Multiple Vulnerabilities ==========================================================================================...

Exploits0
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.915 views

Zikula CMS v1.3.5 - Multiple Web Vulnerabilities

Document Title: =============== Zikula CMS v1.3.5 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1114 Release Date: ============= 2013-10-16 Vulnerability Laboratory ID VL-ID: ==================================== 1114 Comm...

Exploits0
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.59 views

[SOJOBO-ADV-13-02] - MODx 2.2.10 Reflected Cross Site Scripting

SOJOBO-ADV-13-02 - MODx 2.2.10 Reflected Cross Site Scripting I. Information ================== Name : MODx 2.2.10 Reflected Cross Site Scripting Software : MODx 2.2.10 and possibly below. Vendor Homepage : http://modx.com/ Vulnerability Type : Reflected Cross-Site Scripting Severity : Low 2/5...

6.7AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/27 12:0 a.m.38 views

Wordpress videowall Plugin Xss vulnerabilities

The Wordpress videowall Plugin suffers from a Cross-Site Scripting Vulnerability @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@@ @@@@@@ @@@ @@@@@@@@@@@...

1.5AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.133 views

Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities

Exploit Title: Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities Exploit Author: absane Blog: http://blog.noobroot.com Discovery date: September 29th 2013 Vendor notified: September 29th 2013 Vendor fixed: October 2 2013 Vendor Homepage: http://cart66.com Software Link:...

6.8CVSS0.3AI score0.04084EPSS
Exploits7
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.55 views

Multiple vulnerabilities in flv-player

Hello 3APA3A! These are Cross-Site Scripting and Content Spoofing vulnerabilities in flv-player. ------------------------- Affected products: ------------------------- Vulnerable are flv-player 3.5 and previous versions. ------------------------- Affected vendors: ------------------------- U-Stud...

0.7AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.64 views

[SECURITY] [DSA 2770-1] torque security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2770-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso October 09, 2013 http://www.debian.org/security/faq -...

9CVSS2.1AI score0.02915EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.75 views

[ISecAuditors Security Advisories] Multiple Reflected XSS vulnerabilities in BoltWire <= v3.5

============================================= INTERNET SECURITY AUDITORS ALERT 2013-010 - Original release date: March 20th, 2013 - Last revised: March 25th, 2013 - Discovered by: Manuel Garcia Cardenas - Severity: 4,8/10 CVSS Base Score - CVE-ID: CVE-2013-2651...

4.3CVSS0.3AI score0.0215EPSS
Exploits3
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.59 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6.8CVSS1.6AI score0.10692EPSS
Exploits20References7Affected Software7
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.49 views

Multiple vulnerabilities in mp3-player

Hello 3APA3A! These are Cross-Site Scripting and Content Spoofing vulnerabilities in mp3-player. ------------------------- Affected products: ------------------------- Vulnerable are mp3-player 2.5 and previous versions. ------------------------- Affected vendors: ------------------------- U-Stud...

0.8AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.32 views

Cisco ASA / FWSM multiple security vulnerabilities

Privilege escalation, authentication bypass, DoS...

10CVSS3.5AI score0.02297EPSS
Exploits0Affected Software1
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.71 views

Cross-Site Scripting (XSS) in Feng Office

Advisory ID: HTB23174 Product: Feng Office Vendor: Secure Data SRL Vulnerable Versions: 2.3.2-rc and probably prior Tested Version: 2.3.2-rc Advisory Publication: September 18, 2013 without technical details Vendor Notification: September 18, 2013 Public Disclosure: October 9, 2013 Vulnerability...

4.3CVSS6.2AI score0.0096EPSS
Exploits3
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.128 views

[ISecAuditors Security Advisories] Multiple Vulnerabilities in Uebimiau <= 2.7.11

============================================= INTERNET SECURITY AUDITORS ALERT 2013-008 - Original release date: March 15th, 2013 - Last revised: March 20th, 2013 - Discovered by: Manuel Garcia Cardenas - Severity: 4,8/10 CVSS Base Score - CVE-ID: CVE-2013-2621, CVE-2013-2622, CVE-2013-2623...

0.8AI score0.10692EPSS
Exploits6
securityvulns
securityvulnsadded 2013/10/13 12:0 a.m.85 views

[SECURITY] [DSA 2776-1] drupal6 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2776-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 11, 2013 http://www.debian.org/security/faq -...

6.8CVSS1.4AI score0.02746EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.53 views

[ MDVSA-2013:248 ] xinetd

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:248 http://www.mandriva.com/en/support/security/ Package : xinetd Date : October 10, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: Updated xinetd package fixes security...

7.6CVSS9.5AI score0.06391EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.59 views

[USN-1988-1] Cyrus SASL vulnerability

========================================================================== Ubuntu Security Notice USN-1988-1 October 09, 2013 cyrus-sasl2 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives:...

4.3CVSS0.1AI score0.03589EPSS
Exploits2
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.72 views

[SECURITY] [DSA 2777-1] systemd security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2777-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 11, 2013 http://www.debian.org/security/faq -...

7.5CVSS0.05341EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.46 views

systemd security vulnerabilities

Integer overflow, protection bypass, privilege escalation...

7.5CVSS4.3AI score0.05341EPSS
Exploits1References1
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.38 views

xinetd privilege escalation

tcpmux-server service is executed with root privileges...

7.6CVSS3.7AI score0.06391EPSS
Exploits1References1Affected Software1
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.75 views

[ MDVSA-2013:247 ] gnupg

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:247 http://www.mandriva.com/en/support/security/ Package : gnupg Date : October 10, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been discovered...

5.8CVSS8AI score0.0503EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.48 views

[security bulletin] HPSBMU02901 rev.1 - HP Business Process Monitor running on Windows, Remote Execution of Arbitrary Code and Disclosure of Information

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03844594 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03844594 Version: 1 HPSBMU02901 rev....

10CVSS1.5AI score0.03436EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.35 views

GnuPG security vulnerabilities

Protection bypass, DoS...

5.8CVSS2.3AI score0.0503EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.32 views

Cyrus SASL DoS

Crash on some values for password's salt...

4.3CVSS1.5AI score0.03589EPSS
Exploits2References1Affected Software1
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.78 views

[SECURITY] [DSA 2771-1] nas security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2771-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 09, 2013 http://www.debian.org/security/faq -...

7.5CVSS1AI score0.0408EPSS
Exploits2
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.32 views

Network Audio System security vulnerabilities

Code execution, Denial of service...

7.5CVSS4.5AI score0.0408EPSS
Exploits2References2Affected Software1
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.37 views

HP Business Process Monitor security vulnerabilities

Information leak, code execution...

10CVSS1.7AI score0.03436EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/12 12:0 a.m.41 views

[SECURITY] [DSA 2775-1] ejabberd security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2775-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst October 10, 2013 http://www.debian.org/security/faq -...

1.2AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.29 views

AVTech digital video recorders multiple security vulnerabilities

RTSP parsing buffer overflow, web interface buffer overflow, protection bypass...

9CVSS4.4AI score0.13117EPSS
Exploits8References1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.29 views

Evolution / libcamel messages encryption vulnerabilities

Under some conditions messages are encrypted with wrong key...

3.3AI score0.0189EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.48 views

CORE-2013-0726 - AVTECH DVR multiple vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ AVTECH DVR multiple vulnerabilities 1. Advisory Information Title: AVTECH DVR multiple vulnerabilities Advisory ID: CORE-2013-0726 Advisory URL: http://www.coresecurity.com/advisories/avtech-dvr-multiple-vulnerabilities Date...

9CVSS0.2AI score0.13117EPSS
Exploits8
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.67 views

[security bulletin] HPSBST02897 rev.1 - HP StoreOnce D2D Backup System, Remote Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03828580 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03828580 Version: 1 HPSBST02897 rev....

7.8CVSS0.7AI score0.02533EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.61 views

Two Instagram Android App Security Vulnerabilities

Affected app: Instagram for Android Affected versions: 4.0.2 and 4.1.2, probably also earlier versions as well as iOS affected. Summary After the Instagram iOS vulnerability discovered last year 1, the app's HTTP API has been extended with a cryptographic authentication for changes like "likes" a...

Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.36 views

AST-2013-004: Remote Crash From Late Arriving SIP ACK With SDP

Asterisk Project Security Advisory - AST-2013-004 Product Asterisk Summary Remote Crash From Late Arriving SIP ACK With SDP Nature of Advisory Remote Crash Susceptibility Remote Unauthenticated Sessions Severity Major Exploits Known None Reported On February 11, 2013 Reported By Colin Cuthbertson...

0.6AI score
Exploits0
Total number of security vulnerabilities47153