|
255161
|
4.9 |
MEDIUM
Network
|
pragyan_cms_project
|
pragyan_cms
|
Pragyan CMS v3.0 is vulnerable to a Boolean-based SQL injection in cms/admin.lib.php via $_GET['forwhat'], resulting in Information Disclosure.
|
CWE-89
SQL Injection
|
CVE-2017-14601
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255162
|
4.9 |
MEDIUM
Network
|
pragyan_cms_project
|
pragyan_cms
|
Pragyan CMS v3.0 is vulnerable to an Error-Based SQL injection in cms/admin.lib.php via $_GET['del_black'], resulting in Information Disclosure.
|
CWE-89
SQL Injection
|
CVE-2017-14600
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255163
|
4.8 |
MEDIUM
Network
|
afterlogic
|
webmail
aurora
|
AdminPanel in AfterLogic WebMail 7.7 and Aurora 7.7.5 has XSS via the txtDomainName field to adminpanel/modules/pro/inc/ajax.php during addition of a domain.
|
CWE-79
Cross-site Scripting
|
CVE-2017-14597
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255164
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.41 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at jbig2dec+0x000000…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14580
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255165
|
7.8 |
HIGH
Local
|
stdutility
|
stdu_viewer
|
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "Read Access Violation on Control Flow starting at STDUJBIG2File!DllG…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14579
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255166
|
7.8 |
HIGH
Local
|
irfanview
|
irfanview
|
IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ani file, related to "Data from Faulting Address controls Branch Selectio…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14578
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255167
|
7.8 |
HIGH
Local
|
stdutility
|
stdu_viewer
|
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "Read Access Violation on Control Flow starting at Unknown Symbol @ 0…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14577
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255168
|
7.8 |
HIGH
Local
|
stdutility
|
stdu_viewer
|
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to a "Possible Stack Corruption starting at Unknown Symbol…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14576
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255169
|
7.8 |
HIGH
Local
|
stdutility
|
stdu_viewer
|
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to an "Illegal Instruction Violation starting at Unknown Symbol @ 0x000000…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14575
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255170
|
7.8 |
HIGH
Local
|
stdutility
|
stdu_viewer
|
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV starting at Unknown Symbol @ 0x0000000004940490."
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14574
|
2024-11-21 12:13 |
2017-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
