CVE-2019-19837

Incorrect access control in the web interface in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote information disclosure of bin/web.conf via HTTP requests...

Mageia: Security Advisory (MGASA-2020-0049)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated libsass packages fix security vulnerabilities

Use-after-free vulnerability in sasscontext.cpp:handleerror CVE-2018-11499. Null pointer dereference in Sass::SelectorList::populateextends CVE-2018-19797. Use-after-free vulnerability exists in the SharedPtr class CVE-2018-19827. Stack overflow in Eval::operator CVE-2018-19837. Stack-overflow at...

CVE-2019-19837

CVE-2019-19837 affects Ruckus Wireless Unleashed firmware up to 200.7.10.102.64. Affected component: the web interface. Root cause: incorrect access control in the web interface, which permits remote disclosure of the bin/web.conf file via HTTP requests. Impact: information disclosure of configur...

openSUSE Security Update : libsass (openSUSE-2019-1791)

This update for libsass to version 3.6.1 fixes the following issues : Security issues fixed : - CVE-2019-6283: Fixed heap-buffer-overflow in Sass::Prelexer::parenthesescopechar const boo1121943. - CVE-2019-6284: Fixed heap-based buffer over-read exists in Sass:Prelexer:alternatives boo1121944. -...

openSUSE: Security Advisory for libsass (openSUSE-SU-2019:1791-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

UBUNTU-CVE-2018-19837

In LibSass prior to 3.5.5, Sass::Eval::operatorSass::BinaryExpression inside eval.cpp allows attackers to cause a denial-of-service resulting from stack consumption via a crafted sass file, because of certain incorrect parsing of '%' as a modulo operator in parser.cpp...

CVE-2018-19837

CVE-2018-19837 affects LibSass prior to 3.5.5, where Sass::Eval::operator() in eval.cpp can trigger a denial-of-service via stack consumption from parsing '%' as modulo in parser.cpp. Affected versions include.LibSass vulnerability details are corroborated by multiple advisories (e.g., openSUSE/l...

hokej.webnoviny.sk XSS vulnerability

Vulnerable URL: http://hokej.webnoviny.sk/clankysearch/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 19837 VIP website status:| Yes Check hokej.webnoviny.sk SSL connection:| Grad...