Aggregator
CVE-2016-1377 | Cisco Unity Connection up to 11.0 cross site scripting (CSCus21776 / ID 316012)
1 year 9 months ago
A vulnerability has been found in Cisco Unity Connection up to 11.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2016-1377. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2008-0468 | Flinx 1.3 category.php id sql injection (EDB-4985 / XFDB-39930)
1 year 9 months ago
A vulnerability classified as critical has been found in Flinx 1.3. Affected is an unknown function of the file category.php. The manipulation of the argument id leads to sql injection.
This vulnerability is traded as CVE-2008-0468. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-0469 | Tiger Php News System up to 1.0b index.php catid sql injection (EDB-4984 / XFDB-39908)
1 year 9 months ago
A vulnerability classified as critical was found in Tiger Php News System up to 1.0b. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument catid leads to sql injection.
This vulnerability is known as CVE-2008-0469. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-0492 | Persits XUpload 3.0 ActiveX Control xupload.ocx memory corruption (EDB-4987 / XFDB-39967)
1 year 9 months ago
A vulnerability classified as critical was found in Persits XUpload 3.0. Affected by this vulnerability is an unknown functionality of the file xupload.ocx of the component ActiveX Control. The manipulation leads to memory corruption.
This vulnerability is known as CVE-2008-0492. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-0551 | Sejoong Namo NamoInstaller.NamoInstall.1 up to 6 ActiveX Control namoinstaller.dll code injection (EDB-4986 / XFDB-39943)
1 year 9 months ago
A vulnerability was found in Sejoong Namo NamoInstaller.NamoInstall.1 up to 6. It has been rated as very critical. This issue affects some unknown processing in the library namoinstaller.dll of the component ActiveX Control. The manipulation leads to code injection.
The identification of this vulnerability is CVE-2008-0551. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-0722 | Pagetool 1.07 index.php search_term cross site scripting (EDB-4983 / BID-27653)
1 year 9 months ago
A vulnerability was found in Pagetool 1.07 and classified as problematic. Affected by this issue is some unknown functionality of the file index.php. The manipulation of the argument search_term leads to cross site scripting.
This vulnerability is handled as CVE-2008-0722. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2009-1203 | Cisco ASA 8.0(4) CIFS Server Privilege Escalation (EDB-33054 / XFDB-51337)
1 year 9 months ago
A vulnerability was found in Cisco ASA 8.0(4) and classified as critical. This issue affects some unknown processing of the component CIFS Server. The manipulation leads to Privilege Escalation.
The identification of this vulnerability is CVE-2009-1203. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
vivo X200 Pro :再见「高山」
1 year 9 months ago
以「影像灭霸」之名,再一次攀登高山
Pokémon Gaming Company Employee Info Leaked in Hack
1 year 9 months ago
The gaming company reports that the server has been rebuilt after the leak, but has not confirmed if its insider video game data was leaked.
Dark Reading Staff
U.S. CISA adds Fortinet products and Ivanti CSA bugs to its Known Exploited Vulnerabilities catalog
1 year 9 months ago
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Fortinet products and Ivanti CSA bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog: Last week, Ivanti warned of three new security vulnerabilities (CVE-2024-9379, CVE-2024-9380, and CVE-2024-9381) in its Cloud Service Appliance (CSA) […]
Pierluigi Paganini
CVE-2003-0128 | Ximian Evolution up to 1.2.2 Uuencoded Header mail-format.c try_uudecoding memory corruption (EDB-22370 / Nessus ID 14029)
1 year 9 months ago
A vulnerability classified as critical was found in Ximian Evolution up to 1.2.2. Affected by this vulnerability is the function try_uudecoding of the file mail-format.c of the component Uuencoded Header Handler. The manipulation leads to memory corruption.
This vulnerability is known as CVE-2003-0128. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-36059 | matrix-js-sdk 12.4.1 prototype pollution (GHSA-rfv9-x7hh-xc32 / Nessus ID 208589)
1 year 9 months ago
A vulnerability has been found in matrix-js-sdk 12.4.1 and classified as critical. This vulnerability affects unknown code. The manipulation leads to improperly controlled modification of object prototype attributes ('prototype pollution').
This vulnerability was named CVE-2022-36059. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-45740 | Splunk Enterprise/Cloud Platform up to 9.1.5/9.2.2 cross site scripting (SVD-2024-1010 / Nessus ID 208942)
1 year 9 months ago
A vulnerability, which was classified as problematic, was found in Splunk Enterprise and Cloud Platform up to 9.1.5/9.2.2. This affects an unknown part. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-45740. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-45739 | Splunk Enterprise up to 9.1.5/9.2.2/9.3.0 information disclosure (SVD-2024-1009 / Nessus ID 208940)
1 year 9 months ago
A vulnerability was found in Splunk Enterprise up to 9.1.5/9.2.2/9.3.0 and classified as problematic. This issue affects some unknown processing. The manipulation leads to information disclosure.
The identification of this vulnerability is CVE-2024-45739. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2008-4549 | ImageShack ImageShack Toolbar 4.5.7 ActiveX Control ImageShackToolbar.dll URI input validation (EDB-4981 / XFDB-39921)
1 year 9 months ago
A vulnerability was found in ImageShack ImageShack Toolbar 4.5.7. It has been classified as problematic. This affects an unknown part in the library ImageShackToolbar.dll of the component ActiveX Control. The manipulation of the argument URI leads to improper input validation.
This vulnerability is uniquely identified as CVE-2008-4549. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-0465 | Seagull 0.6.3 Optimizer optimizer.php files path traversal (EDB-4980 / XFDB-39902)
1 year 9 months ago
A vulnerability classified as problematic has been found in Seagull 0.6.3. Affected is an unknown function of the file optimizer.php of the component Optimizer. The manipulation of the argument files leads to path traversal.
This vulnerability is traded as CVE-2008-0465. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-0464 | absofort Aconon Mail Enterprise Sql 11.7.0 archiv.cgi template path traversal (EDB-4977 / BID-27427)
1 year 9 months ago
A vulnerability was found in absofort Aconon Mail Enterprise Sql 11.7.0. It has been rated as problematic. This issue affects some unknown processing of the file archiv.cgi. The manipulation of the argument template leads to path traversal.
The identification of this vulnerability is CVE-2008-0464. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-0477 | Move Networks Inc Move Media Player 1.0.0.1 ActiveX Control qmpupgrade.dll first memory corruption (EDB-4979 / XFDB-39913)
1 year 9 months ago
A vulnerability classified as very critical has been found in Move Networks Inc Move Media Player 1.0.0.1. This affects an unknown part in the library qmpupgrade.dll of the component ActiveX Control. The manipulation of the argument first leads to memory corruption.
This vulnerability is uniquely identified as CVE-2008-0477. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-0729 | Apple iPhone 1.1.2 Safari resource management (EDB-4978 / XFDB-39998)
1 year 9 months ago
A vulnerability has been found in Apple iPhone 1.1.2 and classified as critical. This vulnerability affects unknown code of the component Safari. The manipulation leads to improper resource management.
This vulnerability was named CVE-2008-0729. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com