Vulnerability Category — Other

Chinese name:
其他类型

Related Vulnerabilities

SSV ID Name
SSV-92948 Windows Kernel stack memory disclosure in win32kfull!SfnINLPUAHDRAWMENUITEM (CVE-2017-0167)
SSV-92947 Windows Kernel win32k.sys multiple bugs in the NtGdiGetDIBitsInternal system call (CVE-2017-0058)
SSV-92942 Nintendo: 3DS DNS Client Resolver Library Uses Predictable TXID
SSV-92937 XSS Auditor bypass with link + SVG animations
SSV-92927 Xen: broken check in memory_exchange() permits PV guest breakout(CVE-2017-7228)
SSV-92918 QNAP QTS multiple RCE vulnerabilities (CVE-2017-6361, CVE-2017-6360, CVE-2017-6359)
SSV-92917 Wordpress Plugin Firewall 2 CSRF/储存型XSS漏洞
SSV-92914 AMF3 Java implementations Improper Control of Dynamically-Managed Code Resources
SSV-92911 PHP Server Side Request Forgery Security Bypass Vulnerability(CVE-2017-7272)
SSV-92908 WebKit: Negative-size memmove in HTMLFormElement (CVE-2017-2459)
SSV-92903 Broadcom: Heap overflow in "wlc_tdls_cal_mic_chk" due to large RSN IE in TDLS Setup Confirm frame (CVE-2017-0561)
SSV-92902 Android: Ashmem race conditions in android.util.MemoryIntArray (CVE-2017-0412)
SSV-92901 Broadcom: Heap overflow in "wl_run_escan" when handling WLC_GET_VALID_CHANNELS ioctl results(CVE-2017-0568)
SSV-92900 Broadcom: Heap overflow in "dhd_handle_swc_evt"(CVE-2017-0569)
SSV-92899 Broadcom: Heap overflow in "wl_iw_get_essid" when handling WLC_GET_SSID ioctl results(CVE-2017-0570)
SSV-92896 Broadcom: Stack buffer overflow when handling 802.11r (FT) authentication response (CVE-2017-6975)
SSV-92894 Broadcom: Heap overflow in TDLS Teardown Request while handling Fast Transition IE (CVE-2017-0561)
SSV-92893 macOS/IOS: mach_msg doesn't copy memory in a certain case(CVE-2017-2456)
SSV-92892 MacOS kernel code execution due to lack of bounds checking in AppleIntelCapriController::GetLinkConfig (CVE-2017-2443)
SSV-92890 MacOS/iOS kernel memory corruption due to off-by-one in SIOCGIFORDER socket ioctl (CVE-2017-2474)
SSV-92889 MacOS/iOS kernel uaf due to bad locking in necp_open (CVE-2017-2478)
SSV-92887 MacOS kernel memory disclosure due to lack of bounds checking in AppleIntelCapriController::getDisplayPipeCapability(CVE-2017-2489)
SSV-92886 MacOS/iOS kernel memory corruption due to bad bounds checking in necp_client_copy_interface(CVE-2017-2473)
SSV-92885 MacOS kernel memory corruption due to off-by-one in audit_sdev_open (CVE-2017-2483)
SSV-92884 MacOS/iOS kernel double free due to bad locking in fsevents device(CVE-2017-2490)
SSV-92878 WebKit: Type confusion in constructJSReadableStreamDefaultReader(CVE-2017-2457)
SSV-92871 Microsoft Windows PowerShell Security Feature Bypass Vulnerability (CVE-2017-0007)
SSV-92859 Adobe Acrobat Force-Installed Vulnerable Chrome Extension
SSV-92841 Safari Browser: Builtin JavaScript allows Function.caller to be used in strict mode(CVE-2017-2446)
SSV-92840 Samba: symlink race permits opening files outside share directory (CVE-2017-2619)
SSV-92839 Samsung: RKP Memory Corruption via "rkp_set_init_page_ro"
SSV-92837 QEMU: user-to-root privesc inside VM via bad translation caching
SSV-92823 LastPass: domain regex doesn't handle data and other pseudo-url schemes
SSV-92819 74cms Home\Controller\PersonalController.class.php 任意文件删除
SSV-92816 Microsoft Windows Code injection vulnerability
SSV-92813 Check Box 2016 Q2 Survey - Multiple Vulnerabilities
SSV-92812 iball Baton 150M Wireless 路由器密码泄露漏洞
SSV-92809 LastPass websiteConnector.js content script allows proxying internal RPC commands
SSV-92806 Microsoft IE: textarea.defaultValue memory disclosure (CVE-2017-0059)
SSV-92803 OnePlus 3/3T OxygenOS Unauthorized Boot Mode Changing (CVE-2017-5623)
SSV-92795 Oracle Knowledge Management XXE Leading to a RCE
SSV-92793 PHPCMS 'phpcms\modules\member\index.php '存在任意密码重置漏洞
SSV-92783 Adobe Flash: Heap overflow in AVC header slicing(CVE-2017-2935)
SSV-92778 Microsoft Edge Fetch API allows setting of arbitrary request headers (CVE-2017-0140)
SSV-92777 MS17-012:Windows COM Session Moniker EoP(CVE-2017-0100)
SSV-92752 NETGEAR DGN2200 Remote Command Execution
SSV-92750 VMPanel cybervm 登录处 参数username 反射型XSS漏洞
SSV-92748 The Wireless IP Camera (P2P) WIFICAM Multiple vulnerabilities
SSV-92732 Wordpress < 4.7.1 - Username Enumeration (CVE-2017-5487)
SSV-92730 Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0
SSV-92724 DokuWiki fetch.php SSRF 漏洞
SSV-92723 DokuWiki SSRF Security Bypass Vulnerability(CVE-2016-7964 )
SSV-92722 用友FE协作办公系统 file_publish_open.jsp 参数id 时间延迟注入
SSV-92718 Chrome: bypass for download filetype blacklist, extension->native privesc
SSV-92716 Android: pointer leak via insufficient binder message verification
SSV-92714 MS16-104: Internet Explorer URL files Security Feature Bypass (CVE-2016-3353)
SSV-92711 Cisco Firepower Management Console 6.0 - Post Authentication UserAdd (CVE-2016-6433)
SSV-92709 Adobe Flash: Use-after-free in applying bitmapfilter (CVE-2017-2985)
SSV-92707 QEMU: virtfs permits guest to access entire host filesystem (CVE-2016-9602)
SSV-92705 Apple WebKit: Bypass pop-up blocker via cross-origin or sandboxed iframe (CVE-2017-2371)
SSV-92701 Android Arbitrary class loading and instantiation in protobuf parcelable "javanano" compiler
SSV-92699 Axessh 4.2 - Denial Of Service
SSV-92696 D-Link ADSL Router DSL-2730U/2750U/2750E - Remote File Disclosure
SSV-92694 FTPShell Client 5.24 - 'PWD' Remote Buffer Overflow
SSV-92692 SSL 3.0 POODLE(CVE-2014-3566)
SSV-92690 RVM automatically does "bundle install" on a Gemfile specified by .versions.conf in $PWD
SSV-92689 RVM automatically installs gems as specified by files in $PWD
SSV-92686 RVM automatically loads environment variables from files in $PWD
SSV-92681 FUDforum 3.0.6 - Local File Inclusion
SSV-92679 D-link DIR Routers - Unauthenticated HNAP Login Stack Buffer Overflow
SSV-92677 Apache Tomcat 拒绝服务漏洞(CVE-2016-6817)
SSV-92662 PEAR HTML_AJAX <= 0.5.7 (PHP Serializer) PHP 对象注入漏洞
SSV-92647 HP Printers Wi-Fi - Improper Access Control
SSV-92606 WinaXe 7.7 'FTP client' - Remote Buffer Overflow
SSV-92604 Microsoft Internet Explorer jscript9 - Java­Script­Stack­Walker Memory Corruption (MS15-056)
SSV-92603 Wordpress Twentyfourteen Theme 路径泄露漏洞
SSV-92600 Plone - 'in_portal.py' <= 4.1.3 Session Hijacking
SSV-92574 Joomla! Core Remote Privilege Escalation Vulnerability (CVE-2016-9838)
SSV-92568 Firefox - SVG cross domain cookie vulnerability (CVE-2016-9078)
SSV-92526 Piwik <= 2.16.0 (saveLayout) PHP 对象注入漏洞
SSV-92498 WordPress Plugin KBoard /wp-content/plugins/kboard/board.php 参数keyword XSS漏洞
SSV-92497 De-randomizing Kernel ASLR 攻击漏洞
SSV-92496 Joomla 3.4.4 - 3.6.3 未授权创建用户漏洞
SSV-92492 AVTECH 监控产品无需登录 SSRF 漏洞
SSV-92489 Android Rowhammer 攻击漏洞
SSV-92477 Dswjcms3.2.1 install.php 重复安装
SSV-92470 Google Chrome MailboxManagerImpl 进程重复读取漏洞
SSV-92336 WordPress <4.5 SSRF
SSV-92331 TOPSEC Firewalls - Remote Exploit (ELIGIBLEBACHELOR)
SSV-92192 zzcms产品版 \install\index.php 重安装漏洞
SSV-92147 opensshd-7.2p2 用户枚举漏洞
SSV-92134 httpoxy远程代理感染漏洞
SSV-95338 欧朋一处blind xxe利用Cloudeye神器测试
SSV-91806 百度浏览器网站伪造漏洞
SSV-91776 Cisco Unified IP phones 内存块设备弱权限漏洞
SSV-93393 用友某系统SQL注入
SSV-93397 用友某重要站点Padding Oracle Vulnerability漏洞可登陆内部系统
SSV-93839 金蝶某系统存在远程命令执行
SSV-91696 DotNetNuke 07.04.00 重安装漏洞
SSV-93395 用友账户体系控制不严导致大量内部敏感数据泄露(涉及总裁个人资料/可深入)
京ICP备10040895号 京公网安备 11010502034610号 Copyright @ 404 Team from Knownsec. 简体中文