14 matches found
CVE-2025-15328
Tanium addressed an improper link resolution before file access vulnerability in Enforce...
CVE-2025-15328 Tanium addressed an improper link resolution before file access vulnerability in Enforce.
Tanium addressed an improper link resolution before file access vulnerability in Enforce...
CVE-2022-36972
This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. The specific flaw exists within the ProfileDaoImpl class. A crafted request can trigger execution of SQL queries composed from a user-supplied string. An attacker can...
CVE-2022-36972
This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. The specific flaw exists within the ProfileDaoImpl class. A crafted request can trigger execution of SQL queries composed from a user-supplied string. An attacker can...
CVE-2022-36972
This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. The specific flaw exists within the ProfileDaoImpl class. A crafted request can trigger execution of SQL queries composed from a user-supplied string. An attacker can...
Authentication flaw
This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. The specific flaw exists within the ProfileDaoImpl class. A crafted request can trigger execution of SQL queries composed from a user-supplied string. An attacker can...
CVE-2022-36972
CVE-2022-36972 concerns Ivanti Avalanche 6.3.2.3490. The vulnerability is a SQL injection in the ProfileDaoImpl class that allows a crafted request to assemble and execute SQL from user-supplied input, enabling an authentication bypass over the network. Related disclosures (ZDI-22-777) and vendor...
CVE-2020-15328
creationtimestamp| type| source ---|---|--- 2022-09-29 07:44:55+00:00| seen| https://t.me/cibsecurity/50674...
CVE-2020-15328
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has weak /opt/axess/var/blobstorage/ permissions...
CVE-2020-15328
Zyxel CloudCNM SecuManager (versions 3.1.0–3.1.1) is affected by a permissions weakness in the directory /opt/axess/var/blobstorage/. The issue stems from weak permissions on that path, which could allow unauthorized access to stored data. The available connected sources corroborate the affected ...
CVE-2019-15328
The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS...
CVE-2019-15328
The CVE-2019-15328 entry concerns the WordPress plugin import-users-from-csv-with-meta, vulnerable prior to version 1.14.0.3. The issue is a cross-site scripting (XSS) flaw in the plugin, allowing an attacker to execute client-side code. Documented impact indicates the vulnerability affects the p...
CVE-2018-15328
CVE-2018-15328 affects BIG-IP family, BIG-IQ, iWorkflow, and Enterprise Manager where SNMPv3 passphrases and trap destinations are not encrypted by the Secure Vault and are written in clear text to configuration files. Affected: BIG-IP components across 14.x (fix: 14.1.0), 13.x (13.0.0–13.1.1; “w...
Fedora Update for wireshark FEDORA-2011-15328
Check for the Version of wireshark OpenVAS Vulnerability Test Fedora Update for wireshark FEDORA-2011-15328 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...