Source |
Titre |
Date |
2021-01-25 12:05:31
|
Vigil@nce - WildFly: password leak in log file, analyzed on 25/11/2020
|
|
2021-01-25 06:04:35
|
mutt: Denial of service - Remote with user interaction
|
|
2021-01-25 06:04:35
|
hawk2: Execute arbitrary code/commands - Remote/unauthenticated
|
|
2021-01-25 06:04:35
|
wavpack: Multiple vulnerabilities
|
|
2021-01-25 06:04:35
|
permissions: Reduced security - Remote/unauthenticated
|
|
2021-01-25 06:04:35
|
ImageMagick: Multiple vulnerabilities
|
|
2021-01-25 06:04:35
|
salt: Multiple vulnerabilities
|
|
2021-01-25 06:04:35
|
openvswitch: Multiple vulnerabilities
|
|
2021-01-25 06:04:35
|
tomcat9: Multiple vulnerabilities
|
|
2021-01-25 06:04:35
|
vlc: Multiple vulnerabilities
|
|
2021-01-25 06:04:35
|
stunnel: Reduced security - Existing account
|
|
2021-01-25 06:04:35
|
python-bottle: Provide misleading information - Remote with user interaction
|
|
2021-01-25 00:06:00
|
DSA-4837 salt
|
|
2021-01-24 18:05:47
|
Vigil@nce - MongoDB Server: assertion error, analyzed on 24/11/2020
|
|
2021-01-24 18:05:47
|
Vigil@nce - MongoDB Server: information disclosure, analyzed on 24/11/2020
|
|
2021-01-24 18:05:47
|
Vigil@nce - MongoDB Server: denial of service via RoleName-parseFromBSON, analyzed on 24/11/2020
|
|
2021-01-24 18:05:47
|
Vigil@nce - IBM Spectrum Protect Operations Center: information disclosure via Websocket, analyzed on 24/11/2020
|
|
2021-01-24 18:05:02
|
Backdoor.Win32.Wollf.16 / Weak Hardcoded Password
|
|
2021-01-24 12:03:05
|
Vigil@nce - SPIP: Cross Site Scripting via prive/formulaires/configurer_preferences.php, analyzed on 24/11/2020
|
|
2021-01-24 12:03:05
|
Vigil@nce - WinSCP: denial of service via long filenames, analyzed on 24/11/2020
|
|
2021-01-24 12:03:05
|
Vigil@nce - WebKitGTK, WPE WebKit: use after free, analyzed on 24/11/2020
|
|
2021-01-24 00:04:44
|
mutt -- denial of service
|
|
2021-01-24 00:04:44
|
MySQL -- Multiple vulnerabilities
|
|
2021-01-23 18:03:38
|
Vigil@nce - php-pear: two vulnerabilities, analyzed on 23/11/2020
|
|
2021-01-23 18:03:38
|
Vigil@nce - pngcheck: buffer overflow via check_chunk_name, analyzed on 23/11/2020
|
|
2021-01-23 12:01:38
|
DSA-4836 openvswitch
|
|
2021-01-23 12:01:38
|
DSA-4835 tomcat9
|
|
2021-01-23 12:01:38
|
DSA-4834 vlc
|
|
2021-01-23 12:01:23
|
Vigil@nce - CImg: buffer overflow, analyzed on 23/11/2020
|
|
2021-01-23 12:01:23
|
Vigil@nce - FasterXML Jackson Databind: code execution via br.com.anteros-Anteros-DBC, analyzed on 23/11/2020
|
|
2021-01-23 12:01:23
|
Vigil@nce - Node.js jquery: Cross Site Scripting via Script Whitespace, analyzed on 23/11/2020
|
|
2021-01-23 12:00:35
|
Oracle WebLogic Server 14.1.1.0 Remote Code Execution
|
|
2021-01-23 12:00:35
|
Selea Targa IP OCR-ANPR Camera Stream Disclosure
|
|
2021-01-23 12:00:35
|
Selea Targa IP OCR-ANPR Camera Server-Side Request Forgery
|
|
2021-01-23 12:00:35
|
Backdoor.Win32.Kraimer.11 / Missing Authentication
|
|
2021-01-23 12:00:35
|
Backdoor.Win32.Noknok.60 / Insecure Permissions
|
|
2021-01-23 12:00:35
|
Backdoor.Win32.Noknok.50 / Insecure Permissions
|
|
2021-01-23 12:00:35
|
Backdoor.Win32.Jokerdoor (TDC Mail Spy 1.0) / Insecure Permissions
|
|
2021-01-23 00:05:42
|
chromium -- multiple vulnerabilities
|
|
2021-01-23 00:01:48
|
Selea Targa IP OCR-ANPR Camera Directory Traversal
|
|
2021-01-23 00:01:48
|
Selea Targa IP OCR-ANPR Camera Developer Backdoor Config Overwrite
|
|
2021-01-23 00:01:48
|
Selea Targa IP OCR-ANPR Camera Cross Site Scripting
|
|
2021-01-23 00:01:48
|
CASAP Automated Enrollment System 1.0 Authentication Bypass
|
|
2021-01-23 00:01:48
|
Simple JobBoard Authenticated File Read
|
|
2021-01-22 18:01:15
|
Vigil@nce - GNU binutils: multiple vulnerabilities, analyzed on 22/04/2020
|
|
2021-01-22 18:01:15
|
Vigil@nce - Exim: code execution via Sort Expansion Operator, analyzed on 22/07/2019
|
|
2021-01-22 18:01:14
|
CERTFR-2021-ACT-004 : Bulletin d’actualité CERTFR-2021-ACT-004 (22 janvier 2021)
|
|
2021-01-22 18:01:14
|
CERTFR-2021-AVI-055 : Multiples vulnérabilités dans VLC media player (22 janvier 2021)
|
|
2021-01-22 18:01:14
|
CERTFR-2021-AVI-054 : Multiples vulnérabilités dans Microsoft Edge (22 janvier 2021)
|
|
2021-01-22 18:01:14
|
CERTFR-2021-AVI-053 : Vulnérabilité dans Xen (22 janvier 2021)
|
|
2021-01-22 18:00:51
|
Selea CarPlateServer 4.0.1.6 Remote Program Execution
|
|
2021-01-22 18:00:51
|
Selea CarPlateServer 4.0.1.6 Local Privilege Escalation
|
|
2021-01-22 18:00:51
|
Atlassian Confluence 6.12.1 Template Injection
|
|
2021-01-22 18:00:51
|
Selea Targa IP OCR-ANPR Camera Remote Code Execution
|
|
2021-01-22 18:00:51
|
ERPNext 12.14.0 SQL Injection
|
|
2021-01-22 18:00:51
|
Backdoor.Win32.Hupigon.adef Remote Stack Buffer Overflow
|
|
2021-01-22 18:00:51
|
Selea Targa IP OCR-ANPR Camera Stream Disclosure
|
|
2021-01-22 18:00:51
|
Selea Targa IP OCR-ANPR Camera Cross Site Request Forgery
|
|
2021-01-22 18:00:51
|
Selea Targa IP OCR-ANPR Camera Server-Side Request Forgery
|
|
2021-01-22 18:00:51
|
Selea Targa IP OCR-ANPR Camera Directory Traversal
|
|
2021-01-22 18:00:51
|
CASAP Automated Enrollment System 1.0 Authentication Bypass
|
|
2021-01-22 18:00:51
|
Selea Targa IP OCR-ANPR Camera Developer Backdoor Config Overwrite
|
|
2021-01-22 18:00:51
|
Selea Targa IP OCR-ANPR Camera Cross Site Scripting
|
|
2021-01-22 18:00:51
|
Oracle WebLogic Server 14.1.1.0 Remote Code Execution
|
|
2021-01-22 18:00:43
|
Gentoo Linux Security Advisory 202101-11
|
|
2021-01-22 18:00:30
|
Nagios XI 5.7.5 Multiple Persistent Cross-Site Scripting
|
|
2021-01-22 18:00:30
|
ERPNext 12.14.0 SQL Injection (Authenticated)
|
|
2021-01-22 18:00:30
|
Atlassian Confluence Widget Connector Macro SSTI
|
|
2021-01-22 18:00:30
|
Backdoor.Win32.Zxman Missing Authentication
|
|
2021-01-22 18:00:30
|
Apartment Visitors Management System 1.0 SQL Injection
|
|
2021-01-22 18:00:30
|
Ainpex Solutions Sql Injection Vulnerability
|
|
2021-01-22 18:00:30
|
Designed by GN DIGITAL - Admin Login Bypass
|
|
2021-01-22 12:04:12
|
chocolate-doom -- Arbitrary code execution
|
|
2021-01-22 12:04:02
|
IBM SDK Java Technology Edition for WebSphere Cast Iron Solution & App Connect Professional: Multiple vulnerabilities
|
|
2021-01-22 12:04:02
|
gdk-pixbuf: Denial of service - Remote with user interaction
|
|
2021-01-22 12:04:02
|
perl-Convert-ASN1: Denial of service - Remote/unauthenticated
|
|
2021-01-22 12:02:53
|
Vigil@nce - binutils: NULL pointer dereference via bfd_pef_scan_start_address, analyzed on 07/01/2021
|
|
2021-01-22 12:02:53
|
Vigil@nce - binutils: NULL pointer dereference via bfd_pef_parse_symbols, analyzed on 07/01/2021
|
|
2021-01-22 12:02:53
|
Vigil@nce - binutils: information disclosure via tic4x_print_cond, analyzed on 07/01/2021
|
|
2021-01-22 06:03:08
|
nokogiri -- Security vulnerability
|
|
2021-01-22 06:03:00
|
libssh2_org: Multiple vulnerabilities
|
|
2021-01-22 06:03:00
|
binutils: Multiple vulnerabilities
|
|
2021-01-22 06:02:57
|
samba: Multiple vulnerabilities
|
|
2021-01-22 06:02:57
|
yast2-multipath: Overwrite arbitrary files - Existing account
|
|
2021-01-22 06:02:57
|
MISP: Multiple vulnerabilities
|
|
2021-01-22 06:02:57
|
Xen: Denial of service - Existing account
|
|
2021-01-22 06:02:57
|
WAGO M&M Software fdtCONTAINER: Execute arbitrary code/commands - Existing account
|
|
2021-01-22 06:02:57
|
Mitsubishi Electric MELFA : Denial of service - Remote/unauthenticated
|
|
2021-01-22 06:02:57
|
Honeywell OPC UA Tunneller: Multiple vulnerabilities
|
|
2021-01-22 06:02:57
|
Delta Electronics TPEditor: Execute arbitrary code/commands - Remote with user interaction
|
|
2021-01-22 06:02:57
|
Delta Electronics ISPSoft: Execute arbitrary code/commands - Existing account
|
|
2021-01-22 06:02:57
|
drupal7: Multiple vulnerabilities
|
|
2021-01-21 18:01:04
|
CERTFR-2021-AVI-052 : Multiples vulnérabilités dans les produits Cisco (21 janvier 2021)
|
|
2021-01-21 18:01:04
|
CERTFR-2021-AVI-051 : Multiples vulnérabilités dans les produits Stormshield (21 janvier 2021)
|
|
2021-01-21 18:01:04
|
CERTFR-2021-AVI-050 : Vulnérabilité dans Drupal Core (21 janvier 2021)
|
|
2021-01-21 18:01:04
|
CERTFR-2021-AVI-049 : Vulnérabilité dans IBM WebSphere (21 janvier 2021)
|
|
2021-01-21 18:01:04
|
Vigil@nce - OpenSSL: NULL pointer dereference via SSL_check_chain, analyzed on 21/04/2020
|
|
2021-01-21 18:00:39
|
Simple JobBoard Authenticated File Read
|
|
2021-01-21 18:00:39
|
Backdoor.Win32.Xel Remote Authentication Buffer Overflow
|
|
2021-01-21 18:00:39
|
Anchor CMS 0.12.7 Cross Site Request Forgery
|
|
2021-01-21 18:00:39
|
Backdoor.Win32.Verify.f Missing Authentication
|
|
2021-01-21 18:00:39
|
Nagios XI 5.7.5 Cross Site Scripting
|
|
2021-01-21 18:00:39
|
Backdoor.Win32.WinShell.30 Remote Stack Buffer Overflow / Missing Authentication
|
|
2021-01-21 18:00:39
|
Apartment Visitors Management System 1.0 SQL Injection
|
|
2021-01-21 18:00:39
|
Online Documents Sharing Platform 1.0 SQL Injection
|
|
2021-01-21 18:00:39
|
Backdoor.Win32.Onalf Missing Authentication
|
|
2021-01-21 18:00:39
|
Backdoor.Win32.Zxman Missing Authentication
|
|
2021-01-21 18:00:31
|
Ubuntu Security Notice USN-4689-4
|
|
2021-01-21 18:00:31
|
Red Hat Security Advisory 2021-0079-01
|
|
2021-01-21 18:00:16
|
Anchor CMS 0.12.7 CSRF (Delete user)
|
|
2021-01-21 18:00:16
|
Backdoor.Win32.Verify.f / Missing Authentication
|
|
2021-01-21 18:00:16
|
Backdoor.Win32.Xel / Remote Authentication Buffer Overflow
|
|
2021-01-21 18:00:16
|
Alumni Management System 1.0 "Last Name field in Registration page" Stored XSS
|
|
2021-01-21 18:00:16
|
E-Learning System 1.0 Authentication Bypass & RCE POC
|
|
2021-01-21 12:02:25
|
firefox: Multiple vulnerabilities
|
|
2021-01-21 12:02:21
|
perl-Convert-ASN1: Denial of service - Remote/unauthenticated
|
|
2021-01-21 12:02:21
|
postgresql and postgresql13: Multiple vulnerabilities
|
|
2021-01-21 12:02:21
|
xstream: Multiple vulnerabilities
|
|
2021-01-21 12:02:21
|
Cisco StarOS: Denial of service - Remote/unauthenticated
|
|
2021-01-21 12:02:21
|
Cisco Unified Communications Products: Multiple vulnerabilities
|
|