|
255401
|
9.8 |
CRITICAL
Network
|
smart_related_articles_project
|
smart_related_articles
|
The "Smart related articles" extension 1.1 for Joomla! has SQL injection in dialog.php (attacker must use search_cats variable in POST method to exploit this vulnerability).
|
CWE-89
SQL Injection
|
CVE-2017-7628
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255402
|
5.3 |
MEDIUM
Network
|
smart_related_articles_project
|
smart_related_articles
|
The "Smart related articles" extension 1.1 for Joomla! does not prevent direct requests to dialog.php (there is a missing _JEXEC check).
|
NVD-CWE-noinfo
|
CVE-2017-7627
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255403
|
6.1 |
MEDIUM
Network
|
smart_related_articles_project
|
smart_related_articles
|
The "Smart related articles" extension 1.1 for Joomla! has XSS in dialog.php (n_art,type in GET Method).
|
CWE-79
Cross-site Scripting
|
CVE-2017-7626
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255404
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WSP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/pac…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7748
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255405
|
7.5 |
HIGH
Network
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the PacketBB dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-packetbb.c…
|
CWE-20
Improper Input Validation
|
CVE-2017-7747
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255406
|
7.5 |
HIGH
Network
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SLSK dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/pa…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7746
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255407
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SIGCOMP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7745
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255408
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/diss…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7705
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255409
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7704
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255410
|
7.5 |
HIGH
Network
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the IMAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-imap.c by calc…
|
CWE-74
Injection
|
CVE-2017-7703
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
