Smiley;Smileys Security Vulnerabilities
0.1AI Score
7.1AI Score
0.3AI Score
7.1AI Score
-0.1AI Score
Windows Live Messenger <= 14.0.8117 Animation Remote Denial of Service
No description provided by...
7.1AI Score
Microsoft Windows Live Messenger 14.0.8117 - Animation Remote Denial of Service
Microsoft Windows Live Messenger 14.0.8117 - Animation Remote Denial of...
-0.3AI Score
Windows Live Messenger <= 14.0.8117 Animation Remote Denial of Service
Exploit for windows platform in category dos /...
7AI Score
7.4AI Score
The remote host is missing an update to the system as announced in the referenced...
AI Score
0.229EPSS
0.2AI Score
0.229EPSS
0.2AI Score
0.229EPSS
Mandriva Linux Security Advisory : pidgin (MDVSA-2010:085)
Security vulnerabilities has been identified and fixed in pidgin : The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and Adium before 1.3.7 allows remote attackers to cause a denial of service (application crash) via crafted contact-list data for (1) ICQ and possibly (2) AIM, as...
7.5CVSS
-0.9AI Score
0.229EPSS
Three denial of service vulnerabilities where found in pidgin and allow remote attackers to crash the application. The developers summarized these problems as follows : Pidgin can become unresponsive when displaying large numbers of smileys Certain nicknames in group chat rooms can trigger a crash....
AI Score
0.229EPSS
SA-CONTRIB-2010-035: Smileys - Cross Site Request Forgery
The Smileys module provides a text filter that substitutes emoticons with images. The module is vulnerable to cross-site request forgeries (CSRF) via the URL used to delete smileys. A user with "administer smileys" permission could be tricked into visiting the smiley delete URL and unwittingly...
6.5AI Score
Ubuntu Update for pidgin vulnerabilities USN-902-1
Ubuntu Update for Linux kernel vulnerabilities...
0.1AI Score
0.229EPSS
gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2)...
7.4AI Score
0.229EPSS
gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2)...
7.2AI Score
0.229EPSS
gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2)...
6.2AI Score
0.229EPSS
gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2)...
6.9AI Score
0.229EPSS
gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2)...
7.3AI Score
0.229EPSS
Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : pidgin vulnerabilities (USN-902-1)
Fabian Yamaguchi discovered that Pidgin incorrectly validated all fields of an incoming message in the MSN protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. (CVE-2010-0277) Sadrul Habib Chowdhury discovered that...
6.2AI Score
0.229EPSS
Releases Ubuntu 9.10 Ubuntu 9.04 Ubuntu 8.10 Ubuntu 8.04 Packages pidgin - Details Fabian Yamaguchi discovered that Pidgin incorrectly validated all fields of an incoming message in the MSN protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to...
7.6AI Score
0.229EPSS
Mandriva Linux Security Advisory : pidgin (MDVSA-2010:041)
Multiple security vulnerabilities has been identified and fixed in pidgin : Certain malformed SLP messages can trigger a crash because the MSN protocol plugin fails to check that all pieces of the message are set correctly (CVE-2010-0277). In a user in a multi-user chat room has a nickname...
-0.8AI Score
0.229EPSS
0.2AI Score
0.229EPSS
0.2AI Score
0.229EPSS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:041 http://www.mandriva.com/security/ Package : pidgin Date : February 18, 2010 Affected: 2008.0, 2009.1, 2010.0, Enterprise Server 5.0 Problem Description: Multiple security...
-0.1AI Score
0.229EPSS
gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2)...
4.9AI Score
0.229EPSS
pidgin -- multiple remote denial of service vulnerabilities
Three denial of service vulnerabilities where found in pidgin and allow remote attackers to crash the application. The developers summarized these problems as follows: Pidgin can become unresponsive when displaying large numbers of smileys Certain nicknames in group chat rooms...
6.6AI Score
0.229EPSS
Pidgin MSN Custom Smileys File Disclosure Vulnerability (Windows)
This host has Pidgin installed and is prone to File Disclosure ...
-0.8AI Score
0.072EPSS
Pidgin MSN Custom Smileys Feature Emoticon Request Traversal Arbitrary File Disclosure
The version of Pidgin installed on the remote host is earlier than 2.6.5. Such versions have a directory traversal vulnerability when processing an MSN emoticon request. A remote attacker could exploit this to read arbitrary...
7.5CVSS
-0.4AI Score
0.072EPSS
40 vulnerabilities in SMF 1.1.10/SMF 2.0RC2 by elhacker.net (Simple Audit)
This is the first batch of vulnerabilities found by the SimpleAudit team from elhacker.net http://labs.elhacker.net/simpleaudit Our goal is to evaluate the security of SMF 2.0 before using it on our own server, and we have found several security vulnerabilities. The vulnerabilities that also apply....
0.4AI Score
-0.1AI Score
Multiple cross-site scripting (XSS) vulnerabilities in admin.php in Phorum before 5.1.22 allow remote attackers to inject arbitrary web script or HTML via the (1) group_id parameter in the groups module or (2) the smiley_id parameter in the smileys modsettings...
5.8AI Score
0.008EPSS
Multiple cross-site scripting (XSS) vulnerabilities in admin.php in Phorum before 5.1.22 allow remote attackers to inject arbitrary web script or HTML via the (1) group_id parameter in the groups module or (2) the smiley_id parameter in the smileys modsettings...
5.8AI Score
0.008EPSS
Multiple cross-site scripting (XSS) vulnerabilities in admin.php in Phorum before 5.1.22 allow remote attackers to inject arbitrary web script or HTML via the (1) group_id parameter in the groups module or (2) the smiley_id parameter in the smileys modsettings...
6.1AI Score
0.008EPSS
Multiple cross-site scripting (XSS) vulnerabilities in admin.php in Phorum before 5.1.22 allow remote attackers to inject arbitrary web script or HTML via the (1) group_id parameter in the groups module or (2) the smiley_id parameter in the smileys modsettings...
5.8AI Score
0.008EPSS
Phorum 5.1.20 - admin.php?modsettings Module smiley_id Cross-Site Scripting
Phorum 5.1.20 - admin.php?modsettings Module smiley_id Cross-Site...
-0.7AI Score
7.4AI Score
EPSS
-0.1AI Score
[waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20
[waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20 Author: Janek Vind "waraxe" Date: 19. April 2007 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-49.html Target software description: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Phorum 5.1.20...
AI Score
Unrestricted file upload vulnerability in admin.bbcode.php in Connectix Boards 0.7 and earlier allows remote authenticated administrators to execute arbitrary PHP code by uploading a crafted GIF smiley image with a .php extension via the uploadimage parameter to admin.php, which can be later...
8.1AI Score
0.003EPSS
Unrestricted file upload vulnerability in admin.bbcode.php in Connectix Boards 0.7 and earlier allows remote authenticated administrators to execute arbitrary PHP code by uploading a crafted GIF smiley image with a .php extension via the uploadimage parameter to admin.php, which can be later...
8.1AI Score
0.003EPSS
Unrestricted file upload vulnerability in admin.bbcode.php in Connectix Boards 0.7 and earlier allows remote authenticated administrators to execute arbitrary PHP code by uploading a crafted GIF smiley image with a .php extension via the uploadimage parameter to admin.php, which can be later...
8.7AI Score
0.003EPSS
Unrestricted file upload vulnerability in admin.bbcode.php in Connectix Boards 0.7 and earlier allows remote authenticated administrators to execute arbitrary PHP code by uploading a crafted GIF smiley image with a .php extension via the uploadimage parameter to admin.php, which can be later...
8.1AI Score
0.003EPSS
AI Score
Connectix Boards <= 0.7 (p_skin) Multiple Vulnerabilities Exploit
No description provided by...
7.1AI Score
Connectix Boards <= 0.7 (p_skin) Multiple Vulnerabilities Exploit
No description provided by...
7.1AI Score
Connectix Boards <= 0.7 (p_skin) Multiple Vulnerabilities Exploit
Exploit for unknown platform in category web...
7.1AI Score
Connectix Boards 0.7 - p_skin Multiple Vulnerabilities
Connectix Boards 0.7 - p_skin Multiple...
0.4AI Score