36 matches found
EUVD-2023-2153
Malicious code in bioql PyPI...
EUVD-2023-1988
Malicious code in bioql PyPI...
CVE-2023-3822
Cross-site Scripting XSS - Reflected in GitHub repository pimcore/pimcore prior to 10.6.4...
CVE-2023-3820
SQL Injection in GitHub repository pimcore/pimcore prior to 10.6.4...
CVE-2023-3821
Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.6.4...
CVE-2023-3819
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pimcore/pimcore prior to 10.6.4...
CVE-2010-1801
Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PDF file...
OPENSUSE-SU-2024:11038-1 libmariadbd-devel-10.6.4-2.1 on GA media
These are all security issues fixed in the libmariadbd-devel-10.6.4-2.1 package on the GA media of openSUSE Tumbleweed...
Tenable Nessus Agent Multiple Vulnerabilities (TNS-2024-09)
Tenable Nessus Agent is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:tenable:nessusagent";...
[R1] Nessus Agent Version 10.6.4 Fixes Multiple Vulnerabilities
R1 Nessus Agent Version 10.6.4 Fixes Multiple Vulnerabilities Arnie Cabral Thu, 05/16/2024 - 10:37 Two separate vulnerabilities were discovered, reported and fixed: When installing Nessus Agent to a directory outside of the default location on a Windows host, Nessus Agent versions prior to 10.6.4...
CVE-2023-3821
Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.6.4...
Design/Logic Flaw
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pimcore/pimcore prior to 10.6.4...
CVE-2023-3822 Cross-site Scripting (XSS) - Reflected in pimcore/pimcore
Cross-site Scripting XSS - Reflected in GitHub repository pimcore/pimcore prior to 10.6.4...
CVE-2023-3819 Exposure of Sensitive Information to an Unauthorized Actor in pimcore/pimcore
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pimcore/pimcore prior to 10.6.4...
PT-2023-4112 · Pimcore · Pimcore
Name of the Vulnerable Software and Affected Versions: pimcore/pimcore versions prior to 10.6.4 pimcore/pimcore version 10.6.4 is not affected, the fixed version is 10.6.5 Description: The issue is related to SQL injection in the pimcore/pimcore GitHub repository. This is due to a lack of...
Pimcore 跨站脚本漏洞
Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce framework and product information management applications. A cross-site scripting vulnerability exists in...
PT-2023-26325 · Pimcore · Pimcore
Name of the Vulnerable Software and Affected Versions: pimcore/pimcore versions prior to 10.6.4 Description: The issue allows unauthorized users to obtain sensitive information about the system's runtime environment and features they have no permissions to access. Recommendations: For versions...
Pimcore 跨站脚本漏洞
Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce frameworks and product information management applications. A cross-site scripting vulnerability exists in...
PT-2023-4079 · Pimcore · Pimcore
Name of the Vulnerable Software and Affected Versions: pimcore/pimcore versions prior to 10.6.4 Description: The issue is related to Cross-site Scripting XSS - Reflected, which can be exploited by a remote attacker to conduct inter-site script attacks. This is due to the lack of protection measur...
SUSE CVE-2010-0541
Cross-site scripting XSS vulnerability in the WEBrick HTTP server in Ruby in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote attackers to inject arbitrary web script or HTML via a crafted URI that triggers a UTF-7 error page...