|
248111
|
7.8 |
HIGH
Local
|
audiofile
|
audiofile
|
Heap-based buffer overflow in the readValue function in FileHandle.cpp in audiofile (aka libaudiofile and Audio File Library) 0.3.6 allows remote attackers to have unspecified impact via a crafted WA…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6828
|
2024-11-21 12:30 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248112
|
7.8 |
HIGH
Local
|
audiofile
|
audiofile
|
Heap-based buffer overflow in the MSADPCM::initializeCoefficients function in MSADPCM.cpp in audiofile (aka libaudiofile and Audio File Library) 0.3.6 allows remote attackers to have unspecified impa…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6827
|
2024-11-21 12:30 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248113
|
6.1 |
MEDIUM
Network
|
shishnet
|
shimmie
|
An issue was discovered in Shimmie <= 2.5.1. The vulnerability exists due to insufficient filtration of user-supplied data (log) passed to the "shimmie2-master/ext/chatbox/history/index.php" URL. An …
|
CWE-79
Cross-site Scripting
|
CVE-2017-6909
|
2024-11-21 12:30 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248114
|
6.1 |
MEDIUM
Network
|
concrete5
|
concrete5
|
An issue was discovered in concrete5 <= 5.6.3.4. The vulnerability exists due to insufficient filtration of user-supplied data (fID) passed to the "concrete5-legacy-master/web/concrete/tools/files/se…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6908
|
2024-11-21 12:30 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248115
|
6.1 |
MEDIUM
Network
|
open.gl_project
|
open.gl
|
An issue was discovered in Open.GL before 2017-03-13. The vulnerability exists due to insufficient filtration of user-supplied data (content) passed to the "Open.GL-master/index.php" URL. An attacker…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6907
|
2024-11-21 12:30 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248116
|
6.1 |
MEDIUM
Network
|
siberiancms
|
siberiancms
|
An issue was discovered in SiberianCMS before 4.10.0. The vulnerability exists due to insufficient filtration of user-supplied data (log) passed to the "SiberianCMS-master/errors/500.php" URL. An a…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6906
|
2024-11-21 12:30 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248117
|
6.1 |
MEDIUM
Network
|
concrete5
|
concrete5
|
An issue was discovered in concrete5 <= 5.6.3.4. The vulnerability exists due to insufficient filtration of user-supplied data (disable_choose) passed to the "concrete5-legacy-master/web/concrete/too…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6905
|
2024-11-21 12:30 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248118
|
7.8 |
HIGH
Local
|
ioquake3
|
ioquake3
|
In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 (aka Quake 3 engin…
|
NVD-CWE-noinfo
|
CVE-2017-6903
|
2024-11-21 12:30 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248119
|
8.8 |
HIGH
Network
|
digisol
|
dg-hr1400_router_firmware
|
Privilege escalation vulnerability on the DIGISOL DG-HR1400 1.00.02 wireless router enables an attacker to escalate from user privilege to admin privilege just by modifying the Base64-encoded session…
|
CWE-565
Reliance on Cookies without Validation and Integrity Checking
|
CVE-2017-6896
|
2024-11-21 12:30 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248120
|
4.7 |
MEDIUM
Local
|
foxitsoftware
|
foxit_reader
phantompdf
|
The ConvertToPDF plugin in Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read a…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-6883
|
2024-11-21 12:30 |
2017-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
