Show filters
13 Total Results
Displaying 1-10 of 13
Sort by:
Attacker Value
Unknown

CVE-2022-47167

Disclosure Date: May 22, 2023 (last updated October 08, 2023)
Cross-Site Request Forgery (CSRF) vulnerability in Aram Kocharyan Crayon Syntax Highlighter plugin <= 2.8.4 versions.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2020-35889

Disclosure Date: December 31, 2020 (last updated February 22, 2025)
An issue was discovered in the crayon crate through 2020-08-31 for Rust. A TOCTOU issue has a resultant memory safety violation via HandleLike.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2016-10893

Disclosure Date: August 20, 2019 (last updated December 23, 2023)
The crayon-syntax-highlighter plugin before 2.8.4 for WordPress has multiple XSS issues via AJAX requests.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2014-0748

Disclosure Date: December 27, 2014 (last updated October 05, 2023)
apinit on Cray devices with CLE before 4.2.UP02 and 5.x before 5.1.UP00 does not use alpsauth data to validate the UID in a launch message, which allows local users to gain privileges via a modified aprun program, aka ID FN5912.
0
0
Attacker Value
Unknown

CVE-2006-0177

Disclosure Date: January 11, 2006 (last updated October 04, 2023)
Multiple buffer overflows in Cray UNICOS 9.0.2.2 might allow local users to gain privileges by (1) invoking /usr/bin/script with a long command line argument or (2) setting the -c option of /etc/nu to the name of a file containing a long line.
0
0
Attacker Value
Unknown

CVE-2006-0178

Disclosure Date: January 11, 2006 (last updated October 04, 2023)
Format string vulnerability in /bin/ftp in UNICOS 9.0.2.2 allows local users to have an unknown impact via format string specifiers in the quote command. NOTE: because the program is not setuid and not normally called from remote programs, there may not be a typical attack vector for the issue that crosses privilege boundaries. Therefore this may not be a vulnerability.
0
0
Attacker Value
Unknown

CVE-2003-0028

Disclosure Date: March 25, 2003 (last updated February 22, 2025)
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different vulnerability than CVE-2002-0391.
0
0
Attacker Value
Unknown

CVE-2001-0891

Disclosure Date: January 31, 2002 (last updated February 22, 2025)
Format string vulnerability in NQS daemon (nqsdaemon) in NQE 3.3.0.16 for CRAY UNICOS and SGI IRIX allows a local user to gain root privileges by using qsub to submit a batch job whose name contains formatting characters.
0
0
Attacker Value
Unknown

CVE-1999-1300

Disclosure Date: December 31, 1999 (last updated February 22, 2025)
Vulnerability in accton in Cray UNICOS 6.1 and 6.0 allows local users to read arbitrary files and modify system accounting configuration.
0
0
Attacker Value
Unknown

CVE-1999-0692

Disclosure Date: July 19, 1999 (last updated February 22, 2025)
The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privileges.
0
0
View More Topics  Next >