Логотип exploitDog
source:"github"
Консоль
Логотип exploitDog

exploitDog

source:"github"

Количество 312 573

Количество 312 573

github логотип

GHSA-3p39-2wh4-rwfp

больше 3 лет назад

A vulnerability in the directory permissions of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to perform a directory traversal attack on a limited set of restricted directories. The vulnerability is due to a flaw in the logic that governs directory permissions. An attacker could exploit this vulnerability by using capabilities that are not controlled by the role-based access control (RBAC) mechanisms of the software. A successful exploit could allow the attacker to overwrite files on an affected device.

EPSS: Низкий
github логотип

GHSA-3p37-hv77-x3rp

больше 3 лет назад

sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote attackers to execute arbitrary code by placing command-line options in the query string, related to lack of skipping a certain php_getopt for the 'd' case.

CVSS3: 9.8
EPSS: Критический
github логотип

GHSA-3p37-f5jm-24mc

почти 4 года назад

Cross-site scripting (XSS) vulnerability in imagelist.php in Jeremy Ashcraft Simplog 0.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the imagedir parameter. NOTE: this issue might be resultant from directory traversal.

EPSS: Низкий
github логотип

GHSA-3p37-3636-q8wv

больше 2 лет назад

Vyper vulnerable to OOB DynArray access when array is on both LHS and RHS of an assignment

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-3p36-h8wm-47v4

больше 3 лет назад

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of Calculate events. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-6353.

CVSS3: 8.8
EPSS: Низкий
github логотип

GHSA-3p36-28gq-hv7j

больше 2 лет назад

In inviteInternal of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-274443441

CVSS3: 4.4
EPSS: Низкий
github логотип

GHSA-3p35-pmr9-qf5c

почти 4 года назад

SQL injection vulnerability in index.php in the RSGallery (com_rsgallery) 2.0 beta 5 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an inline page action.

EPSS: Низкий
github логотип

GHSA-3p35-jq3v-gh22

3 месяца назад

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

EPSS: Низкий
github логотип

GHSA-3p35-64mh-v96v

больше 3 лет назад

Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-3p34-8x49-x9wx

больше 3 лет назад

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3118, CVE-2015-3124, CVE-2015-3127, CVE-2015-3128, CVE-2015-3129, CVE-2015-3131, CVE-2015-3136, CVE-2015-3137, CVE-2015-4428, CVE-2015-4430, and CVE-2015-5117.

EPSS: Средний
github логотип

GHSA-3p34-6p74-74v3

больше 3 лет назад

NETGEAR WAC510 devices before 5.0.10.2 are affected by disclosure of sensitive information.

EPSS: Низкий
github логотип

GHSA-3p32-j457-pg5x

около 5 лет назад

Query Binding Exploitation

CVSS3: 7.2
EPSS: Низкий
github логотип

GHSA-3p32-8vq4-qvph

около 1 года назад

An issue in aedes v0.51.2 allows attackers to cause a Denial of Service(DoS) via a crafted request.

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-3p2x-p2h6-wp37

больше 3 лет назад

Improper initialization in the Intel(R) Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable denial of service via local access.

CVSS3: 5.5
EPSS: Низкий
github логотип

GHSA-3p2x-hfrr-wj4w

10 месяцев назад

Denial of service due to allocation of resources without limits. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904.

CVSS3: 5.5
EPSS: Низкий
github логотип

GHSA-3p2x-fgmw-32pv

около 2 лет назад

Windows Subsystem for Linux Elevation of Privilege Vulnerability

CVSS3: 7.8
EPSS: Низкий
github логотип

GHSA-3p2x-2cfv-p7xm

почти 4 года назад

Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations."

EPSS: Низкий
github логотип

GHSA-3p2w-3263-9gr3

больше 3 лет назад

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document.

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-3p2v-w863-5q4c

около 2 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: i2c: cadence: cdns_i2c_master_xfer(): Fix runtime PM leak on error path The cdns_i2c_master_xfer() function gets a runtime PM reference when the function is entered. This reference is released when the function is exited. There is currently one error path where the function exits directly, which leads to a leak of the runtime PM reference. Make sure that this error path also releases the runtime PM reference.

EPSS: Низкий
github логотип

GHSA-3p2v-4qj8-6w5f

больше 1 года назад

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: explicitly clear ioctl input data As seen from a recent syzbot bug report, mistakes in the compat ioctl implementation can lead to uninitialized kernel stack data getting used as input for driver ioctl handlers. The reported bug is now fixed, but it's possible that other related bugs are still present or get added in the future. As the drivers need to check user input already, the possible impact is fairly low, but it might still cause an information leak. To be on the safe side, always clear the entire ioctl buffer before calling the conversion handler functions that are meant to initialize them.

CVSS3: 5.5
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
github логотип
GHSA-3p39-2wh4-rwfp

A vulnerability in the directory permissions of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to perform a directory traversal attack on a limited set of restricted directories. The vulnerability is due to a flaw in the logic that governs directory permissions. An attacker could exploit this vulnerability by using capabilities that are not controlled by the role-based access control (RBAC) mechanisms of the software. A successful exploit could allow the attacker to overwrite files on an affected device.

0%
Низкий
больше 3 лет назад
github логотип
GHSA-3p37-hv77-x3rp

sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote attackers to execute arbitrary code by placing command-line options in the query string, related to lack of skipping a certain php_getopt for the 'd' case.

CVSS3: 9.8
94%
Критический
больше 3 лет назад
github логотип
GHSA-3p37-f5jm-24mc

Cross-site scripting (XSS) vulnerability in imagelist.php in Jeremy Ashcraft Simplog 0.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the imagedir parameter. NOTE: this issue might be resultant from directory traversal.

8%
Низкий
почти 4 года назад
github логотип
GHSA-3p37-3636-q8wv

Vyper vulnerable to OOB DynArray access when array is on both LHS and RHS of an assignment

CVSS3: 7.5
0%
Низкий
больше 2 лет назад
github логотип
GHSA-3p36-h8wm-47v4

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of Calculate events. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-6353.

CVSS3: 8.8
1%
Низкий
больше 3 лет назад
github логотип
GHSA-3p36-28gq-hv7j

In inviteInternal of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-274443441

CVSS3: 4.4
0%
Низкий
больше 2 лет назад
github логотип
GHSA-3p35-pmr9-qf5c

SQL injection vulnerability in index.php in the RSGallery (com_rsgallery) 2.0 beta 5 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an inline page action.

0%
Низкий
почти 4 года назад
github логотип
GHSA-3p35-jq3v-gh22

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

3 месяца назад
github логотип
GHSA-3p35-64mh-v96v

Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.

CVSS3: 7.5
5%
Низкий
больше 3 лет назад
github логотип
GHSA-3p34-8x49-x9wx

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3118, CVE-2015-3124, CVE-2015-3127, CVE-2015-3128, CVE-2015-3129, CVE-2015-3131, CVE-2015-3136, CVE-2015-3137, CVE-2015-4428, CVE-2015-4430, and CVE-2015-5117.

10%
Средний
больше 3 лет назад
github логотип
GHSA-3p34-6p74-74v3

NETGEAR WAC510 devices before 5.0.10.2 are affected by disclosure of sensitive information.

0%
Низкий
больше 3 лет назад
github логотип
GHSA-3p32-j457-pg5x

Query Binding Exploitation

CVSS3: 7.2
1%
Низкий
около 5 лет назад
github логотип
GHSA-3p32-8vq4-qvph

An issue in aedes v0.51.2 allows attackers to cause a Denial of Service(DoS) via a crafted request.

CVSS3: 7.5
0%
Низкий
около 1 года назад
github логотип
GHSA-3p2x-p2h6-wp37

Improper initialization in the Intel(R) Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable denial of service via local access.

CVSS3: 5.5
0%
Низкий
больше 3 лет назад
github логотип
GHSA-3p2x-hfrr-wj4w

Denial of service due to allocation of resources without limits. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904.

CVSS3: 5.5
0%
Низкий
10 месяцев назад
github логотип
GHSA-3p2x-fgmw-32pv

Windows Subsystem for Linux Elevation of Privilege Vulnerability

CVSS3: 7.8
0%
Низкий
около 2 лет назад
github логотип
GHSA-3p2x-2cfv-p7xm

Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations."

0%
Низкий
почти 4 года назад
github логотип
GHSA-3p2w-3263-9gr3

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document.

CVSS3: 7.5
0%
Низкий
больше 3 лет назад
github логотип
GHSA-3p2v-w863-5q4c

In the Linux kernel, the following vulnerability has been resolved: i2c: cadence: cdns_i2c_master_xfer(): Fix runtime PM leak on error path The cdns_i2c_master_xfer() function gets a runtime PM reference when the function is entered. This reference is released when the function is exited. There is currently one error path where the function exits directly, which leads to a leak of the runtime PM reference. Make sure that this error path also releases the runtime PM reference.

0%
Низкий
около 2 месяцев назад
github логотип
GHSA-3p2v-4qj8-6w5f

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: explicitly clear ioctl input data As seen from a recent syzbot bug report, mistakes in the compat ioctl implementation can lead to uninitialized kernel stack data getting used as input for driver ioctl handlers. The reported bug is now fixed, but it's possible that other related bugs are still present or get added in the future. As the drivers need to check user input already, the possible impact is fairly low, but it might still cause an information leak. To be on the safe side, always clear the entire ioctl buffer before calling the conversion handler functions that are meant to initialize them.

CVSS3: 5.5
0%
Низкий
больше 1 года назад

Уязвимостей на страницу