关键字 的搜索结果 (15108)

CVE-2018-5479(发布:2018-01-15 11:29:00)NMP
CVSSN/A

[原文]FoxSash ImgHosting 1.5 (according to footer information) is vulnerable to XSS attacks. The affected function is its search engine via the search parameter to the default URI. Since there is an user/admin login interface, it's possible for attackers to steal sessions of users and thus admin(s). By sending users an infected URL, code will be executed.

CVE-2018-0486(发布:2018-01-13 13:29:00)NMP
CVSSN/A

[原文]Shibboleth XMLTooling-C before 1.6.3, as used in Shibboleth Service Provider before 2.6.0 on Windows and other products, mishandles digital signatures of user attribute data, which allows remote attackers to obtain sensitive information or conduct impersonation attacks via a crafted DTD.

CVE-2018-5262(发布:2018-01-12 12:29:01)NMP
CVSSN/A

[原文]A stack-based buffer overflow in Flexense DiskBoss 8.8.16 and earlier allows unauthenticated remote attackers to execute arbitrary code in the context of a highly privileged account.

CVE-2018-5315(发布:2018-01-12 12:29:01)NMP
CVSSN/A

[原文]The Wachipi WP Events Calendar plugin 1.0 for WordPress has SQL Injection via the event_id parameter to event.php.

CVE-2014-7952(发布:2018-01-12 12:29:00)NMCP
CVSSN/A

[CNNVD]Google Android 安全绕过漏洞--Google Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。 Google Android中存在安全绕过漏洞。攻击者可利用该漏洞绕过安全限制,执行未授权操作。

CVE-2018-5359(发布:2018-01-12 00:00:00)MP
CVSSN/A

[原文]** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

12345678下一页尾页 第1页 / 共2518页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站