|
259041
|
6.1 |
MEDIUM
Network
|
rspamd_project
|
rspamd
|
interface/js/app/history.js in WebUI in Rspamd before 1.6.3 allows XSS via the Subject and Message-Id headers, which are mishandled in the history page.
|
CWE-79
Cross-site Scripting
|
CVE-2017-11737
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259042
|
8.8 |
HIGH
Network
|
bigtreecms
|
bigtree_cms
|
SQL injection vulnerability in core\admin\auto-modules\forms\process.php in BigTree 4.2.18 allows remote authenticated users to execute arbitrary SQL commands via the tags array parameter.
|
CWE-89
SQL Injection
|
CVE-2017-11736
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259043
|
5.5 |
MEDIUM
Local
|
libming
|
ming
|
A heap-based buffer over-read was found in the function decompileCALLFUNCTION in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11734
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259044
|
5.5 |
MEDIUM
Local
|
libming
debian
|
ming
debian_linux
|
A null pointer dereference vulnerability was found in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service vi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-11733
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259045
|
5.5 |
MEDIUM
Local
|
libming
debian
|
ming
debian_linux
|
A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service vi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11732
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259046
|
5.5 |
MEDIUM
Local
|
libming
|
ming
|
An invalid memory read vulnerability was found in the function OpCode (called from isLogicalOp and decompileIF) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11731
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259047
|
5.5 |
MEDIUM
Local
|
libming
|
ming
|
A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11730
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259048
|
5.5 |
MEDIUM
Local
|
libming
|
ming
|
A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11729
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259049
|
5.5 |
MEDIUM
Local
|
libming
|
ming
|
A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted fi…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11728
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259050
|
5.4 |
MEDIUM
Network
|
thycotic
|
secret_server
|
The share function in Thycotic Secret Server before 10.2.000019 mishandles the Back Button, leading to unintended redirections.
|
CWE-601
Open Redirect
|
CVE-2017-11725
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
