|
247761
|
6.1 |
MEDIUM
Network
|
gamepanelx
|
gamepanelx-v3
|
A Cross-Site Scripting (XSS) was discovered in GamePanelX-V3 3.0.12. The vulnerability exists due to insufficient filtration of user-supplied data (a) passed to the "GamePanelX-V3-master/ajax/ajax.ph…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7205
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247762
|
6.1 |
MEDIUM
Network
|
imdbphp_project
|
imdbphp
|
A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. The vulnerability exists due to insufficient filtration of user-supplied data (name) passed to the "imdbphp-master/demo/search.php" URL. …
|
CWE-79
Cross-site Scripting
|
CVE-2017-7204
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247763
|
6.1 |
MEDIUM
Network
|
zoneminder
|
zoneminder
|
A Cross-Site Scripting (XSS) was discovered in ZoneMinder before 1.30.2. The vulnerability exists due to insufficient filtration of user-supplied data (postLoginQuery) passed to the "ZoneMinder-maste…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7203
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247764
|
6.1 |
MEDIUM
Network
|
slims
|
slims7_cendana
|
Multiple Cross-Site Scripting (XSS) were discovered in SLiMS 7 Cendana before 2017-03-16. The vulnerabilities exist due to insufficient filtration of user-supplied data (id) passed to the 'slims7_cen…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7202
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247765
|
5.8 |
MEDIUM
Network
|
openstack
|
glance
|
An SSRF issue was discovered in OpenStack Glance before Newton. The 'copy_from' feature in the Image Service API v1 allowed an attacker to perform masked network port scans. With v1, it is possible t…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2017-7200
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247766
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7187
|
2024-11-21 12:31 |
2017-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247767
|
7.5 |
HIGH
Network
|
pcre
|
pcre2
pcre
|
libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service (segmentation violation for read access, and application crash) by triggering an invalid Unicode …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7186
|
2024-11-21 12:31 |
2017-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247768
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRM_MSG_NEWAE update, which allows local users to obtain r…
|
NVD-CWE-noinfo
|
CVE-2017-7184
|
2024-11-21 12:31 |
2017-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247769
|
8.8 |
HIGH
Network
|
deluge-torrent
debian
|
deluge
debian_linux
|
CSRF was discovered in the web UI in Deluge before 1.3.14. The exploitation methodology involves (1) hosting a crafted plugin that executes an arbitrary program from its __init__.py file and (2) caus…
|
CWE-352
Origin Validation Error
|
CVE-2017-7178
|
2024-11-21 12:31 |
2017-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247770
|
7.5 |
HIGH
Network
|
openinfosecfoundation
|
suricata
|
Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching.
|
CWE-358
Improperly Implemented Security Check for Standard
|
CVE-2017-7177
|
2024-11-21 12:31 |
2017-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
