Writeup Exploits
60,754 exploits tracked across all sources.
Wireshark 3.6.0-3.6.8 - Denial of Service via OPUS Protocol Dissector
Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file
CVSS 6.3
libtiff < 4.5.0 - Integer Overflow in TIFFReadRGBATileExt
A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tif_getimage.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 227500897dfb07fb7d27f7aa570050e62617e3be. It is recommended to apply a patch to fix this issue. The identifier VDB-213549 was assigned to this vulnerability.
CVSS 6.3
QEMU - Buffer Overflow in ACPI ERST Device via read_erst_record() and write_erst_record()
An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table (ERST) device of QEMU in the read_erst_record() and write_erst_record() functions. Both issues may allow the guest to overrun the host buffer allocated for the ERST memory device. A malicious guest could use these flaws to crash the QEMU process on the host.
CVSS 6.5
maku-boot 1.3.0-2.2.0 - SQL Injection in Scheduled Task Handler
A vulnerability, which was classified as critical, was found in maku-boot up to 2.2.0. This affects the function doExecute of the file AbstractScheduleJob.java of the component Scheduled Task Handler. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 446eb7294332efca2bfd791bc37281cedac0d0ff. It is recommended to apply a patch to fix this issue. The identifier VDB-215013 was assigned to this vulnerability.
CVSS 6.3
Wireshark 3.6.0-3.6.9 and 4.0.0-4.0.1 - Denial of Service via Kafka Protocol Dissector Memory Exhaustion
Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file
CVSS 6.3
Wireshark 3.6.0-3.6.9 - Denial of Service via BPv6, OpenFlow, and Kafka Dissector Infinite Loop
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file
CVSS 6.3
GitLab <15.9.6, <15.10.5, <15.11.1 - Info Disclosure
An issue has been discovered in GitLab affecting all versions before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. Under certain conditions, an attacker may be able to map a private email of a GitLab user to their GitLab account on an instance.
CVSS 3.1
LibTIFF 4.4.0 - DoS
LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.
CVSS 6.8
LibTIFF 4.4.0 - DoS
LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.
CVSS 6.8
libtiff < 4.5.0 - Heap-Based Buffer Overflow in processCropSelections
processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.
CVSS 5.5
GitLab CE/EE <15.8.5-15.10.1 - Open Redirect
An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1. Open redirects was possible due to framing arbitrary content on any page allowing user controlled markdown
CVSS 5.4
Wireshark 3.6.0-3.6.10 - Denial of Service via Excessive Iteration in Packet Dissectors
Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
CVSS 6.3
Wireshark 3.6.0-3.6.10 and 4.0.0-4.0.2 - Denial of Service via TIPC Dissector
TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
CVSS 6.3
Wireshark 3.6.0-3.6.10 - Denial of Service via Packet Injection or Crafted Capture File
Dissection engine bug in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
CVSS 6.3
Wireshark 4.0.0-4.0.2 - Denial of Service in EAP Dissector
Crash in the EAP dissector in Wireshark 4.0.0 to 4.0.2 allows denial of service via packet injection or crafted capture file
CVSS 6.3
Wireshark 3.6.0-3.6.10 - Denial of Service via iSCSI Dissector
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
CVSS 6.3
Wireshark 3.6.0-3.6.10 - Denial of Service via GNW Dissector Packet Injection
GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
CVSS 6.3
Wireshark 3.6.0-3.6.10 - Denial of Service via NFS Dissector Memory Leak
Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
CVSS 6.3
GitLab 13.11-15.8.4, 15.9-15.9.3, 15.10 - Unauthorized Project Update Access via Fork Diff
An issue has been discovered in GitLab affecting all versions starting from 13.11 before 15.8.5, all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. It was possible that a project member demoted to a user role to read project updates by doing a diff with a pre-existing fork.
CVSS 6.5
Isoftforce Dreamer CMS <4.0.1 - Info Disclosure
Permissions vulnerability found in isoftforce Dreamer CMS v.4.0.1 allows local attackers to obtain sensitive information via the AttachmentController parameter.
CVSS 5.3
Dreamer CMS <4.1.3 - Info Disclosure
A vulnerability was found in Dreamer CMS up to 4.1.3. It has been declared as problematic. This vulnerability affects the function updatePwd of the file UserController.java of the component Password Hash Calculation. The manipulation leads to inefficient algorithmic complexity. The attack can be initiated remotely. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-227860.
CVSS 4.3
Dreamer CMS <= 4.0.1 - Cross-Site Scripting
A vulnerability has been found in isoftforce Dreamer CMS up to 4.0.1 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 4.1.3 is able to address this issue. It is recommended to upgrade the affected component. VDB-219334 is the identifier assigned to this vulnerability.
CVSS 3.5
Dreamer CMS <= 4.0.1 - Cross-Site Scripting
A vulnerability has been found in isoftforce Dreamer CMS up to 4.0.1 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 4.1.3 is able to address this issue. It is recommended to upgrade the affected component. VDB-219334 is the identifier assigned to this vulnerability.
CVSS 3.5
Dreamer CMS 4.0.01 - SQL Injection
Dreamer CMS 4.0.01 is vulnerable to SQL Injection.
CVSS 9.8
Dreamer CMS 4.0.0 - SQL Injection via tableName Parameter
An SQL Injection vulnerability exists in Dreamer CMS 4.0.0 via the tableName parameter.
CVSS 9.8
By Source