Логотип exploitDog
source:"github"
Консоль
Логотип exploitDog

exploitDog

source:"github"

Количество 314 458

Количество 314 458

github логотип

GHSA-2hqr-pr9m-mcr8

больше 3 лет назад

cPanel before 64.0.21 allows a Webmail account to execute code via forwarders (SEC-240).

CVSS3: 4.4
EPSS: Низкий
github логотип

GHSA-2hqr-548x-6625

больше 3 лет назад

Null Pointer Dereference. in xObjectBindingFromExpression at moddable/xs/sources/xsSyntaxical.c:3419 in Moddable SDK before OS200908 causes a denial of service (SEGV).

EPSS: Низкий
github логотип

GHSA-2hqp-7448-qrw3

больше 3 лет назад

The MPTCP module has the memory leak vulnerability. Successful exploitation of this vulnerability can cause memory leaks.

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-2hqm-x8qp-68ph

больше 3 лет назад

A vulnerability has been identified in JT2Go (All Versions < V13.1.0), Teamcenter Visualization (All Versions < V13.1.0). Affected applications lack proper validation of user-supplied data when parsing CGM files. This could lead to a stack based buffer overflow while trying to copy to a buffer during font string handling. An attacker could leverage this vulnerability to execute code in the context of the current process.

EPSS: Низкий
github логотип

GHSA-2hqj-m7qj-9pc3

больше 3 лет назад

Oxenstored 32->31 bit integer truncation issues Integers in Ocaml are 63 or 31 bits of signed precision. The Ocaml Xenbus library takes a C uint32_t out of the ring and casts it directly to an Ocaml integer. In 64-bit Ocaml builds this is fine, but in 32-bit builds, it truncates off the most significant bit, and then creates unsigned/signed confusion in the remainder. This in turn can feed a negative value into logic not expecting a negative value, resulting in unexpected exceptions being thrown. The unexpected exception is not handled suitably, creating a busy-loop trying (and failing) to take the bad packet out of the xenstore ring.

CVSS3: 5.5
EPSS: Низкий
github логотип

GHSA-2hqg-pvgv-h68j

больше 3 лет назад

The mintToken function of a smart contract implementation for Escut (ESCT) (Contract Name: JuntsPerCreixer), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-2hqg-m6wm-qjm5

больше 1 года назад

AdTran SRG 834-5 HDC17600021F1 devices (with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1) have SSH enabled by default, accessible both over the LAN and the Internet. During a window of time when the device is being set up, it uses a default username and password combination of admin/admin with root-level privileges. An attacker can exploit this window to gain unauthorized root access by either modifying the existing admin account or creating a new account with equivalent privileges. This vulnerability allows attackers to execute arbitrary commands.

CVSS3: 8.8
EPSS: Низкий
github логотип

GHSA-2hqf-qqmq-pgpp

больше 5 лет назад

Malicious Package in commander-js

CVSS3: 9.8
EPSS: Низкий
github логотип

GHSA-2hqc-v3c9-r36r

12 месяцев назад

A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11, triggered by the dnsserver1 and dnsserver2 parameters at /userRpm/WanSlaacCfgRpm.htm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted packet.

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-2hqc-mrj5-72jg

больше 3 лет назад

The ping_unhash function in net/ipv4/ping.c in the Linux kernel through 4.10.8 is too late in obtaining a certain lock and consequently cannot ensure that disconnect function calls are safe, which allows local users to cause a denial of service (panic) by leveraging access to the protocol value of IPPROTO_ICMP in a socket system call.

CVSS3: 5.5
EPSS: Низкий
github логотип

GHSA-2hqc-9p94-56j8

почти 4 года назад

The Security Framework in Apple Mac OS X 10.4 through 10.4.8 allows remote attackers to cause a denial of service (resource consumption) via certain public key values in an X.509 certificate that requires extra resources during signature verification. NOTE: this issue may be similar to CVE-2006-2940.

EPSS: Низкий
github логотип

GHSA-2hq7-9vfw-v9m4

больше 3 лет назад

The iTunes ActiveX control in Apple iTunes before 11.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.

EPSS: Низкий
github логотип

GHSA-2hq6-c9ph-83qr

больше 1 года назад

The wp-eMember WordPress plugin before 10.6.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

CVSS3: 5.4
EPSS: Низкий
github логотип

GHSA-2hq6-33g7-497g

около 2 лет назад

The SpeedyCache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the speedycache_save_varniship, speedycache_img_update_settings, speedycache_preloading_add_settings, and speedycache_preloading_delete_resource functions in all versions up to, and including, 1.1.3. This makes it possible for authenticated attackers, with subscriber-level access and above, to update plugin options.

CVSS3: 4.3
EPSS: Низкий
github логотип

GHSA-2hq5-m4w6-6x9c

почти 4 года назад

Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the privileges of the function owner, related to "search_path settings."

EPSS: Низкий
github логотип

GHSA-2hq5-j2j6-vrv6

6 месяцев назад

A code injection vulnerability due to an improper initialization check exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI using a CIN node. This vulnerability affects 32-bit NI LabVIEW 2025 Q1 and prior versions. LabVIEW 64-bit versions do not support CIN nodes and are not affected.

CVSS3: 7.8
EPSS: Низкий
github логотип

GHSA-2hq5-5vh4-f96j

почти 4 года назад

Use after free in Web Search in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via profile destruction.

CVSS3: 8.8
EPSS: Низкий
github логотип

GHSA-2hq4-6p2g-96ph

больше 3 лет назад

Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable various anti-virus protection features. DoS, Bypass.

EPSS: Низкий
github логотип

GHSA-2hq2-wmqr-66p5

больше 3 лет назад

Delta Electronics TPEditor Versions 1.97 and prior. An out-of-bounds read may be exploited by processing specially crafted project files. Successful exploitation of this vulnerability may allow an attacker to read/modify information, execute arbitrary code, and/or crash the application.

CVSS3: 7.8
EPSS: Низкий
github логотип

GHSA-2hq2-qgpr-hrq4

больше 3 лет назад

The ecalendar2 (aka cn.etouch.ecalendar2) application 4.5.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
github логотип
GHSA-2hqr-pr9m-mcr8

cPanel before 64.0.21 allows a Webmail account to execute code via forwarders (SEC-240).

CVSS3: 4.4
0%
Низкий
больше 3 лет назад
github логотип
GHSA-2hqr-548x-6625

Null Pointer Dereference. in xObjectBindingFromExpression at moddable/xs/sources/xsSyntaxical.c:3419 in Moddable SDK before OS200908 causes a denial of service (SEGV).

0%
Низкий
больше 3 лет назад
github логотип
GHSA-2hqp-7448-qrw3

The MPTCP module has the memory leak vulnerability. Successful exploitation of this vulnerability can cause memory leaks.

CVSS3: 7.5
0%
Низкий
больше 3 лет назад
github логотип
GHSA-2hqm-x8qp-68ph

A vulnerability has been identified in JT2Go (All Versions < V13.1.0), Teamcenter Visualization (All Versions < V13.1.0). Affected applications lack proper validation of user-supplied data when parsing CGM files. This could lead to a stack based buffer overflow while trying to copy to a buffer during font string handling. An attacker could leverage this vulnerability to execute code in the context of the current process.

1%
Низкий
больше 3 лет назад
github логотип
GHSA-2hqj-m7qj-9pc3

Oxenstored 32->31 bit integer truncation issues Integers in Ocaml are 63 or 31 bits of signed precision. The Ocaml Xenbus library takes a C uint32_t out of the ring and casts it directly to an Ocaml integer. In 64-bit Ocaml builds this is fine, but in 32-bit builds, it truncates off the most significant bit, and then creates unsigned/signed confusion in the remainder. This in turn can feed a negative value into logic not expecting a negative value, resulting in unexpected exceptions being thrown. The unexpected exception is not handled suitably, creating a busy-loop trying (and failing) to take the bad packet out of the xenstore ring.

CVSS3: 5.5
0%
Низкий
больше 3 лет назад
github логотип
GHSA-2hqg-pvgv-h68j

The mintToken function of a smart contract implementation for Escut (ESCT) (Contract Name: JuntsPerCreixer), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.

CVSS3: 7.5
0%
Низкий
больше 3 лет назад
github логотип
GHSA-2hqg-m6wm-qjm5

AdTran SRG 834-5 HDC17600021F1 devices (with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1) have SSH enabled by default, accessible both over the LAN and the Internet. During a window of time when the device is being set up, it uses a default username and password combination of admin/admin with root-level privileges. An attacker can exploit this window to gain unauthorized root access by either modifying the existing admin account or creating a new account with equivalent privileges. This vulnerability allows attackers to execute arbitrary commands.

CVSS3: 8.8
0%
Низкий
больше 1 года назад
github логотип
GHSA-2hqf-qqmq-pgpp

Malicious Package in commander-js

CVSS3: 9.8
больше 5 лет назад
github логотип
GHSA-2hqc-v3c9-r36r

A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11, triggered by the dnsserver1 and dnsserver2 parameters at /userRpm/WanSlaacCfgRpm.htm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted packet.

CVSS3: 7.5
0%
Низкий
12 месяцев назад
github логотип
GHSA-2hqc-mrj5-72jg

The ping_unhash function in net/ipv4/ping.c in the Linux kernel through 4.10.8 is too late in obtaining a certain lock and consequently cannot ensure that disconnect function calls are safe, which allows local users to cause a denial of service (panic) by leveraging access to the protocol value of IPPROTO_ICMP in a socket system call.

CVSS3: 5.5
0%
Низкий
больше 3 лет назад
github логотип
GHSA-2hqc-9p94-56j8

The Security Framework in Apple Mac OS X 10.4 through 10.4.8 allows remote attackers to cause a denial of service (resource consumption) via certain public key values in an X.509 certificate that requires extra resources during signature verification. NOTE: this issue may be similar to CVE-2006-2940.

0%
Низкий
почти 4 года назад
github логотип
GHSA-2hq7-9vfw-v9m4

The iTunes ActiveX control in Apple iTunes before 11.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.

2%
Низкий
больше 3 лет назад
github логотип
GHSA-2hq6-c9ph-83qr

The wp-eMember WordPress plugin before 10.6.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

CVSS3: 5.4
0%
Низкий
больше 1 года назад
github логотип
GHSA-2hq6-33g7-497g

The SpeedyCache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the speedycache_save_varniship, speedycache_img_update_settings, speedycache_preloading_add_settings, and speedycache_preloading_delete_resource functions in all versions up to, and including, 1.1.3. This makes it possible for authenticated attackers, with subscriber-level access and above, to update plugin options.

CVSS3: 4.3
0%
Низкий
около 2 лет назад
github логотип
GHSA-2hq5-m4w6-6x9c

Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the privileges of the function owner, related to "search_path settings."

2%
Низкий
почти 4 года назад
github логотип
GHSA-2hq5-j2j6-vrv6

A code injection vulnerability due to an improper initialization check exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI using a CIN node. This vulnerability affects 32-bit NI LabVIEW 2025 Q1 and prior versions. LabVIEW 64-bit versions do not support CIN nodes and are not affected.

CVSS3: 7.8
0%
Низкий
6 месяцев назад
github логотип
GHSA-2hq5-5vh4-f96j

Use after free in Web Search in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via profile destruction.

CVSS3: 8.8
0%
Низкий
почти 4 года назад
github логотип
GHSA-2hq4-6p2g-96ph

Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable various anti-virus protection features. DoS, Bypass.

0%
Низкий
больше 3 лет назад
github логотип
GHSA-2hq2-wmqr-66p5

Delta Electronics TPEditor Versions 1.97 and prior. An out-of-bounds read may be exploited by processing specially crafted project files. Successful exploitation of this vulnerability may allow an attacker to read/modify information, execute arbitrary code, and/or crash the application.

CVSS3: 7.8
0%
Низкий
больше 3 лет назад
github логотип
GHSA-2hq2-qgpr-hrq4

The ecalendar2 (aka cn.etouch.ecalendar2) application 4.5.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0%
Низкий
больше 3 лет назад

Уязвимостей на страницу