Логотип exploitDog
source:"github"
Консоль
Логотип exploitDog

exploitDog

source:"github"

Количество 312 573

Количество 312 573

github логотип

GHSA-3g3c-85xr-23j3

почти 4 года назад

Denial of service in Debian IRC Epic/epic4 client via a long string.

EPSS: Низкий
github логотип

GHSA-3g37-x67f-m9rp

почти 4 года назад

Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which causes rm to chdir to a ".." directory that is higher than expected, possibly up to the root file system, a related issue to CVE-2002-0435.

EPSS: Низкий
github логотип

GHSA-3g37-ghfj-6c5g

больше 1 года назад

In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via vendor URL in App manifest

CVSS3: 4.6
EPSS: Средний
github логотип

GHSA-3g36-jm7h-4mqf

около 1 года назад

Authentication bypass by assumed-immutable data on airlift.microsoft.com allows an authorized attacker to elevate privileges over a network.

CVSS3: 7.3
EPSS: Низкий
github логотип

GHSA-3g36-gf7c-75qw

10 месяцев назад

Mattermost Playbooks fails to properly validate the props used by the RetrospectivePost custom post type

CVSS3: 6.5
EPSS: Низкий
github логотип

GHSA-3g36-27c8-73r9

почти 2 года назад

A vulnerability classified as critical was found in Ruijie RG-UAC up to 20240428. Affected by this vulnerability is an unknown functionality of the file /view/dhcp/dhcpConfig/dhcp_relay_commit.php. The manipulation of the argument interface_from leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263107. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS3: 4.7
EPSS: Низкий
github логотип

GHSA-3g35-v53r-gpxc

почти 2 года назад

Mattermost race condition

CVSS3: 2.6
EPSS: Низкий
github логотип

GHSA-3g35-2jhp-9xcc

больше 3 лет назад

In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allows attackers to cause a denial of service.

CVSS3: 6.5
EPSS: Низкий
github логотип

GHSA-3g33-qjmm-8mwx

около 2 лет назад

The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.33.3. This is due to missing or incorrect nonce validation on the give_sendwp_disconnect function. This makes it possible for unauthenticated attackers to deactivate the SendWP plugin via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

CVSS3: 5.4
EPSS: Низкий
github логотип

GHSA-3g33-62q3-g457

почти 4 года назад

Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter.

EPSS: Низкий
github логотип

GHSA-3g33-3wh4-cfqw

почти 4 года назад

Integer overflow in the Png_datainfo_callback function in Dillo 2.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PNG image with crafted (1) width or (2) height values.

EPSS: Низкий
github логотип

GHSA-3g32-r9h6-fv6m

около 2 лет назад

Multiple use-after-free vulnerabilities exist in the VCD get_vartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the use-after-free when triggered via the GUI's recoder (default) VCD parsing code.

CVSS3: 7.8
EPSS: Низкий
github логотип

GHSA-3g32-h55j-rh57

почти 4 года назад

Multiple cross-site scripting (XSS) vulnerabilities in Claroline before 1.8.6 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) dir parameter in admin/adminusers.php, the (2) action parameter in admin/advancedUserSearch.php, and the (3) view parameter in admin/campusProblem.php.

EPSS: Низкий
github логотип

GHSA-3g32-62rm-7wvw

почти 4 года назад

OpenOffice.org (OOo) before 2.1.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.

EPSS: Низкий
github логотип

GHSA-3g2x-fc6h-f86c

больше 3 лет назад

A denial of service vulnerability in decoder/ihevcd_decode.c in libhevc in Mediaserver could enable a remote attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1. Android ID: A-32322258.

CVSS3: 5.5
EPSS: Низкий
github логотип

GHSA-3g2w-rhvj-j46g

больше 2 лет назад

A Time of Check Time of Use (TOCTOU) vulnerability was reported in the Lenovo Vantage SystemUpdate Plugin version 2.0.0.212 and earlier that could allow a local attacker to delete arbitrary files.

CVSS3: 6.1
EPSS: Низкий
github логотип

GHSA-3g2v-jg49-4hc7

больше 3 лет назад

The iThoughts web server in the iThoughtsHD app 4.19 for iOS on iPad devices allows remote attackers to cause a denial of service (disk consumption) by uploading a large file.

EPSS: Низкий
github логотип

GHSA-3g2v-fc6j-cjxj

почти 4 года назад

Stack-based buffer overflow in CarbonCore in Apple Mac OS X 10.4.11 and 10.5.4, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a long filename to the file management API.

EPSS: Низкий
github логотип

GHSA-3g2r-q9r9-rjh5

почти 4 года назад

A certain Red Hat configuration step for the qla2xxx driver in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5, when N_Port ID Virtualization (NPIV) hardware is used, sets world-writable permissions for the (1) vport_create and (2) vport_delete files under /sys/class/scsi_host/, which allows local users to make arbitrary changes to SCSI host attributes by modifying these files.

EPSS: Низкий
github логотип

GHSA-3g2p-rjfc-78cj

больше 1 года назад

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check In 'cfg80211_wext_siwscan()', add extra check whether number of channels passed via 'ioctl(sock, SIOCSIWSCAN, ...)' doesn't exceed IW_MAX_FREQUENCIES and reject invalid request with -EINVAL otherwise.

CVSS3: 5.5
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
github логотип
GHSA-3g3c-85xr-23j3

Denial of service in Debian IRC Epic/epic4 client via a long string.

1%
Низкий
почти 4 года назад
github логотип
GHSA-3g37-x67f-m9rp

Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which causes rm to chdir to a ".." directory that is higher than expected, possibly up to the root file system, a related issue to CVE-2002-0435.

0%
Низкий
почти 4 года назад
github логотип
GHSA-3g37-ghfj-6c5g

In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via vendor URL in App manifest

CVSS3: 4.6
17%
Средний
больше 1 года назад
github логотип
GHSA-3g36-jm7h-4mqf

Authentication bypass by assumed-immutable data on airlift.microsoft.com allows an authorized attacker to elevate privileges over a network.

CVSS3: 7.3
2%
Низкий
около 1 года назад
github логотип
GHSA-3g36-gf7c-75qw

Mattermost Playbooks fails to properly validate the props used by the RetrospectivePost custom post type

CVSS3: 6.5
0%
Низкий
10 месяцев назад
github логотип
GHSA-3g36-27c8-73r9

A vulnerability classified as critical was found in Ruijie RG-UAC up to 20240428. Affected by this vulnerability is an unknown functionality of the file /view/dhcp/dhcpConfig/dhcp_relay_commit.php. The manipulation of the argument interface_from leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263107. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS3: 4.7
0%
Низкий
почти 2 года назад
github логотип
GHSA-3g35-v53r-gpxc

Mattermost race condition

CVSS3: 2.6
0%
Низкий
почти 2 года назад
github логотип
GHSA-3g35-2jhp-9xcc

In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allows attackers to cause a denial of service.

CVSS3: 6.5
0%
Низкий
больше 3 лет назад
github логотип
GHSA-3g33-qjmm-8mwx

The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.33.3. This is due to missing or incorrect nonce validation on the give_sendwp_disconnect function. This makes it possible for unauthenticated attackers to deactivate the SendWP plugin via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

CVSS3: 5.4
0%
Низкий
около 2 лет назад
github логотип
GHSA-3g33-62q3-g457

Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter.

8%
Низкий
почти 4 года назад
github логотип
GHSA-3g33-3wh4-cfqw

Integer overflow in the Png_datainfo_callback function in Dillo 2.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PNG image with crafted (1) width or (2) height values.

2%
Низкий
почти 4 года назад
github логотип
GHSA-3g32-r9h6-fv6m

Multiple use-after-free vulnerabilities exist in the VCD get_vartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the use-after-free when triggered via the GUI's recoder (default) VCD parsing code.

CVSS3: 7.8
0%
Низкий
около 2 лет назад
github логотип
GHSA-3g32-h55j-rh57

Multiple cross-site scripting (XSS) vulnerabilities in Claroline before 1.8.6 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) dir parameter in admin/adminusers.php, the (2) action parameter in admin/advancedUserSearch.php, and the (3) view parameter in admin/campusProblem.php.

2%
Низкий
почти 4 года назад
github логотип
GHSA-3g32-62rm-7wvw

OpenOffice.org (OOo) before 2.1.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.

1%
Низкий
почти 4 года назад
github логотип
GHSA-3g2x-fc6h-f86c

A denial of service vulnerability in decoder/ihevcd_decode.c in libhevc in Mediaserver could enable a remote attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1. Android ID: A-32322258.

CVSS3: 5.5
0%
Низкий
больше 3 лет назад
github логотип
GHSA-3g2w-rhvj-j46g

A Time of Check Time of Use (TOCTOU) vulnerability was reported in the Lenovo Vantage SystemUpdate Plugin version 2.0.0.212 and earlier that could allow a local attacker to delete arbitrary files.

CVSS3: 6.1
0%
Низкий
больше 2 лет назад
github логотип
GHSA-3g2v-jg49-4hc7

The iThoughts web server in the iThoughtsHD app 4.19 for iOS on iPad devices allows remote attackers to cause a denial of service (disk consumption) by uploading a large file.

0%
Низкий
больше 3 лет назад
github логотип
GHSA-3g2v-fc6j-cjxj

Stack-based buffer overflow in CarbonCore in Apple Mac OS X 10.4.11 and 10.5.4, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a long filename to the file management API.

4%
Низкий
почти 4 года назад
github логотип
GHSA-3g2r-q9r9-rjh5

A certain Red Hat configuration step for the qla2xxx driver in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5, when N_Port ID Virtualization (NPIV) hardware is used, sets world-writable permissions for the (1) vport_create and (2) vport_delete files under /sys/class/scsi_host/, which allows local users to make arbitrary changes to SCSI host attributes by modifying these files.

0%
Низкий
почти 4 года назад
github логотип
GHSA-3g2p-rjfc-78cj

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check In 'cfg80211_wext_siwscan()', add extra check whether number of channels passed via 'ioctl(sock, SIOCSIWSCAN, ...)' doesn't exceed IW_MAX_FREQUENCIES and reject invalid request with -EINVAL otherwise.

CVSS3: 5.5
0%
Низкий
больше 1 года назад

Уязвимостей на страницу