|
250171
|
6.1 |
MEDIUM
Network
|
sterc
|
google_analytics_dashboard_for_modx
|
A vulnerability was found in Sterc Google Analytics Dashboard for MODX up to 1.0.5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file core/co…
|
-
|
CVE-2017-20155
|
2024-11-21 12:22 |
2022-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250172
|
7.5 |
HIGH
Network
|
phoenixcoin_project
|
phoenixcoin
|
A vulnerability was found in ghostlander Phoenixcoin. It has been classified as problematic. Affected is the function CTxMemPool::accept of the file src/main.cpp. The manipulation leads to denial of …
|
-
|
CVE-2017-20154
|
2024-11-21 12:22 |
2022-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250173
|
9.8 |
CRITICAL
Network
|
itextpdf
|
rups
|
A vulnerability classified as problematic was found in iText RUPS. This vulnerability affects unknown code of the file src/main/java/com/itextpdf/rups/model/XfaFile.java. The manipulation leads to xm…
|
-
|
CVE-2017-20151
|
2024-11-21 12:22 |
2022-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250174
|
6.1 |
MEDIUM
Network
|
imageserve_project
|
imageserve
|
A vulnerability has been found in aerouk imageserve and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument REQUEST_URI leads to cr…
|
-
|
CVE-2017-20153
|
2024-11-21 12:22 |
2022-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250175
|
7.5 |
HIGH
Network
|
imageserve_project
|
imageserve
|
A vulnerability, which was classified as problematic, was found in aerouk imageserve. Affected is an unknown function of the file public/viewer.php of the component File Handler. The manipulation of …
|
-
|
CVE-2017-20152
|
2024-11-21 12:22 |
2022-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250176
|
8.8 |
HIGH
Network
|
challenge_website_project
|
challenge_website
|
A vulnerability was found in challenge website. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The name of the patch is f1644b1d35…
|
CWE-89
SQL Injection
|
CVE-2017-20150
|
2024-11-21 12:22 |
2022-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250177
|
9.8 |
CRITICAL
Network
|
gorillatoolkit
|
handlers
|
Usage of the CORS handler may apply improper CORS headers, allowing the requester to explicitly control the value of the Access-Control-Allow-Origin header, which bypasses the expected behavior of th…
|
CWE-346
Origin Validation Error
|
CVE-2017-20146
|
2024-11-21 12:22 |
2022-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250178
|
9.8 |
CRITICAL
Network
|
mikrotik
|
routeros
|
The Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sen…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-20149
|
2024-11-21 12:22 |
2022-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250179
|
9.8 |
CRITICAL
Network
|
debian
|
logcheck
|
In the ebuild package through logcheck-1.3.23.ebuild for Logcheck on Gentoo, it is possible to achieve root privilege escalation from the logcheck user because of insecure recursive chown calls.
|
NVD-CWE-noinfo
|
CVE-2017-20148
|
2024-11-21 12:22 |
2022-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250180
|
6.5 |
MEDIUM
Network
|
smokeping
|
smokeping
|
In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript uses a PID file that is writable by the smokeping user. By writing arbitrary PIDs to that file, the smokeping …
|
NVD-CWE-noinfo
|
CVE-2017-20147
|
2024-11-21 12:22 |
2022-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
