Latest CVE Feed
-
2.1
LOWCVE-2024-51753
The AuthKit library for Remix provides convenient helpers for authentication and session management using WorkOS & AuthKit with Remix. In affected versions refresh tokens are logged to the console when the disabled by default `debug` flag, is enabled. Thi... Read more
Affected Products :- Published: Nov. 05, 2024
- Modified: Nov. 06, 2024
-
2.1
LOWCVE-2011-0797
Unspecified vulnerability in the Applications Install component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote authenticated users to affect confidentiality via unknown vectors.... Read more
Affected Products : e-business_suite- EPSS Score: %0.17
- Published: Apr. 20, 2011
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2012-1660
Multiple cross-site scripting (XSS) vulnerabilities in components/select.inc in the Webform module 6.x-3.x before 6.x-3.17 and 7.x-3.x before 7.x-3.17 for Drupal, when the "Select (or other)" module is enabled, allow remote authenticated users with the cr... Read more
- EPSS Score: %0.46
- Published: Sep. 18, 2012
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2006-5724
Heap-based buffer overflow the "Answering Service" function in ICQ 2003b Build 3916 allows local users to cause a denial of service (application crash) via a long string in the "AwayMsg Presets" value in the ICQ\ICQPro\DefaultPrefs\Presets registry key.... Read more
Affected Products : icq- EPSS Score: %0.17
- Published: Nov. 04, 2006
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2013-1786
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Company theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors.... Read more
- EPSS Score: %0.23
- Published: Mar. 27, 2013
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2007-1448
The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service (disabled interface) by calling an unspecified RPC function.... Read more
- EPSS Score: %1.35
- Published: Mar. 16, 2007
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2005-1914
CenterICQ 4.20.0 and earlier creates temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack on the gg.token.PID temporary file.... Read more
Affected Products : centericq- EPSS Score: %0.18
- Published: Jul. 18, 2005
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2005-2765
The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for attackers with administrator privileges to hide activities if the administrator only uses the Windows Firewal... Read more
- EPSS Score: %0.40
- Published: Sep. 01, 2005
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2007-3024
libclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files.... Read more
- EPSS Score: %0.06
- Published: Jun. 07, 2007
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2025-2574
Out-of-bounds array write in Xpdf 4.05 and earlier, due to incorrect integer overflow checking in the PostScript function interpreter code.... Read more
Affected Products : xpdf- Published: Mar. 20, 2025
- Modified: Mar. 20, 2025
- Vuln Type: Memory Corruption
-
2.1
LOWCVE-2010-1536
Cross-site scripting (XSS) vulnerability in the AddThis Button module 5.x before 5.x-2.2 and 6.x before 6.x-2.9 for Drupal allows remote authenticated users, with administer addthis privileges, to inject arbitrary web script or HTML via unspecified vector... Read more
- EPSS Score: %0.23
- Published: Apr. 26, 2010
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2006-2334
The RtlDosPathNameToNtPathName_U API function in NTDLL.DLL in Microsoft Windows 2000 SP4 and XP SP2 does not properly convert DOS style paths with trailing spaces into NT style paths, which allows context-dependent attackers to create files that cannot be... Read more
- EPSS Score: %3.43
- Published: May. 12, 2006
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2008-0993
Podcast Capture in Podcast Producer for Apple Mac OS X 10.5.2 invokes a subtask with passwords in command line arguments, which allows local users to read the passwords via process listings.... Read more
- EPSS Score: %0.07
- Published: Mar. 18, 2008
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2001-0071
gpg (aka GnuPG) 1.0.4 and other versions does not properly verify detached signatures, which allows attackers to modify the contents of a file without detection.... Read more
Affected Products : privacy_guard- EPSS Score: %0.14
- Published: Feb. 12, 2001
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2005-0318
useredit_account.wdm in Alt-N WebAdmin 3.0.4 does not properly validate account edits by the logged in user, which allows remote authenticated users to edit other users' account information via a modified user parameter.... Read more
Affected Products : webadmin- EPSS Score: %0.13
- Published: Jan. 28, 2005
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2007-0751
A cleanup script in crontabs in Apple Mac OS X 10.3.9 and 10.4.9 might delete filesystems that have been mounted in /tmp, which might allow local users to cause a denial of service, related to the find command.... Read more
- EPSS Score: %0.07
- Published: May. 24, 2007
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2005-0119
helvis 1.8h2_1 and earlier allows local users to recover and read the files of other users via the elvrec setuid program.... Read more
Affected Products : helvis- EPSS Score: %0.06
- Published: May. 02, 2005
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2000-0309
The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service.... Read more
Affected Products : openbsd- EPSS Score: %0.08
- Published: Mar. 12, 2001
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2008-6191
Conductor.exe in Intrinsic Swimage Encore before 5.0.1.21 contains a hardcoded password, which might allow local users to decrypt certain .bin files. NOTE: it is not clear whether this issue crosses privilege boundaries.... Read more
Affected Products : swimage_encore- EPSS Score: %0.10
- Published: Feb. 19, 2009
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2009-1680
Safari in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly clear the search history when it is cleared from the Settings application, which allows physically proximate attackers to obtain the search histor... Read more
- EPSS Score: %0.07
- Published: Jun. 19, 2009
- Modified: Apr. 09, 2025