Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

MariaDB - HackerOne Reports

View on HackerOne

18

Total Reports

0

Critical

1

High

12

Medium

5

Low

[downloads.mariadb.org] CRLF injection in case of encoded query mark

Reported by: s_p_q_r | Disclosed:

Medium

Weakness: CRLF Injection

smtp service vulnerable to POODLE SSLv3

Reported by: rudrahacks007 | Disclosed:

Low

Weakness: Cryptographic Issues - Generic

Path Traversal CVE-2021-26086 CVE-2021-26085

Reported by: kljunowsky | Disclosed:

Medium

Weakness: Path Traversal

CVEs: CVE-2021-26086 CVE-2021-26085

Path traversal in command line client

Reported by: lixtelnis | Disclosed:

Medium

Weakness: Path Traversal

Incorrect Permission Assignment for Critical Resource

Reported by: dhiraj-mishra | Disclosed:

Medium

Weakness: Privilege Escalation

scripts loader (denial of service) vulnerability

Reported by: badisman | Disclosed:

Low

Weakness: Uncontrolled Resource Consumption

CVEs: CVE-2018-6389

SSRF on jira.mariadb.org

Reported by: putsi | Disclosed:

Medium

Weakness: Server-Side Request Forgery (SSRF)

Named pipe connection inteception

Reported by: gabriel_sztejnworcel | Disclosed:

High

Weakness: Business Logic Errors

Git Config

Reported by: dtattoedhackers | Disclosed:

Medium

Exposed debug.log file leads to information disclosure

Reported by: muhammaddaffa | Disclosed:

Medium

Weakness: Information Disclosure

Ubuntu/Debian installation method allows key poisoning and code execution for network attacker

Reported by: hanno | Disclosed:

Medium

Weakness: Cryptographic Issues - Generic

vulnerable to Cross-site Request Forgery | Jira

Reported by: niteshkumarpandey | Disclosed:

Low

Weakness: Cross-Site Request Forgery (CSRF)

Grafana LFI on https://grafana.mariadb.org

Reported by: tess | Disclosed:

Medium

Weakness: Remote File Inclusion

xmlrpc.php on mariadb.org can lead to DDOS and brute force attacks

Reported by: indoappsec | Disclosed:

Low

Weakness: Uncontrolled Resource Consumption

CRLF injection on https://buildbot.mariadb.org

Reported by: mik317 | Disclosed:

Medium

Weakness: CRLF Injection

Vulnerability Report - Missing Certificate Authority Authorization rule

Reported by: spaced | Disclosed:

Low

Weakness: Cryptographic Issues - Generic

Github wiki is editable by anyone

Reported by: xiridium | Disclosed:

Medium

Weakness: Improper Access Control - Generic

CRLF injection at https://mariadb.org/.

Reported by: sergeybelove | Disclosed:

Medium

Weakness: CRLF Injection