|
249321
|
6.1 |
MEDIUM
Network
|
imageserve_project
|
imageserve
|
A vulnerability has been found in aerouk imageserve and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument REQUEST_URI leads to cr…
|
-
|
CVE-2017-20153
|
2024-11-21 12:22 |
2022-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249322
|
7.5 |
HIGH
Network
|
imageserve_project
|
imageserve
|
A vulnerability, which was classified as problematic, was found in aerouk imageserve. Affected is an unknown function of the file public/viewer.php of the component File Handler. The manipulation of …
|
-
|
CVE-2017-20152
|
2024-11-21 12:22 |
2022-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249323
|
8.8 |
HIGH
Network
|
challenge_website_project
|
challenge_website
|
A vulnerability was found in challenge website. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The name of the patch is f1644b1d35…
|
CWE-89
SQL Injection
|
CVE-2017-20150
|
2024-11-21 12:22 |
2022-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249324
|
9.8 |
CRITICAL
Network
|
gorillatoolkit
|
handlers
|
Usage of the CORS handler may apply improper CORS headers, allowing the requester to explicitly control the value of the Access-Control-Allow-Origin header, which bypasses the expected behavior of th…
|
CWE-346
Origin Validation Error
|
CVE-2017-20146
|
2024-11-21 12:22 |
2022-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249325
|
9.8 |
CRITICAL
Network
|
mikrotik
|
routeros
|
The Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sen…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-20149
|
2024-11-21 12:22 |
2022-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249326
|
9.8 |
CRITICAL
Network
|
debian
|
logcheck
|
In the ebuild package through logcheck-1.3.23.ebuild for Logcheck on Gentoo, it is possible to achieve root privilege escalation from the logcheck user because of insecure recursive chown calls.
|
NVD-CWE-noinfo
|
CVE-2017-20148
|
2024-11-21 12:22 |
2022-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249327
|
6.5 |
MEDIUM
Network
|
smokeping
|
smokeping
|
In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript uses a PID file that is writable by the smokeping user. By writing arbitrary PIDs to that file, the smokeping …
|
NVD-CWE-noinfo
|
CVE-2017-20147
|
2024-11-21 12:22 |
2022-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249328
|
9.8 |
CRITICAL
Network
|
tecrail
|
responsive_filemanager
|
A vulnerability was found in Tecrail Responsive Filemanger up to 9.10.x and classified as critical. The manipulation leads to path traversal. The attack may be launched remotely. The exploit has been…
|
CWE-22
Path Traversal
|
CVE-2017-20145
|
2024-11-21 12:22 |
2022-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249329
|
7.8 |
HIGH
Local
|
anvsoft
|
pdf_converter
|
A vulnerability has been found in Anvsoft PDFMate PDF Converter Pro 1.7.5.0 and classified as critical. The manipulation leads to memory corruption. The attack can be launched remotely. The exploit h…
|
-
|
CVE-2017-20144
|
2024-11-21 12:22 |
2022-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249330
|
9.8 |
CRITICAL
Network
|
ambit
|
movie_portal_script
|
A vulnerability, which was classified as critical, has been found in Itech Movie Portal Script 7.36. This issue affects some unknown processing of the file /film-rating.php. The manipulation of the a…
|
-
|
CVE-2017-20143
|
2024-11-21 12:22 |
2022-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
