98 matches found
Security fix for the ALT Linux 7 package postgresql9.6-1C version 9.6.9-alt0.M70P.1
9.6.9-alt0.M70P.1 built May 22, 2018 Alexei Takaseev in task 205931 May 9, 2018 Alexei Takaseev - 9.6.9 - Fix CVE-2018-1115...
Security fix for the ALT Linux 7 package postgresql9.6-1C version 9.6.8-alt0.M70P.1
9.6.8-alt0.M70P.1 built March 4, 2018 Alexei Takaseev in task 201191 March 2, 2018 Alexei Takaseev - 9.6.8 - Re-applay patches from 1C: 00001-1cFULL96.patch 00004-postgresql-1c-9.6.patch 00005-existsopt-2.patch - Remove path 00001-1ccreateappendpath.patch fixed in 00001-1cFULL96.patch - Fix...
Security fix for the ALT Linux 8 package postgresql11-1C version 9.6.8-alt1
Feb. 28, 2018 Alexei Takaseev 9.6.8-alt1 - 9.6.8 - Re-applay patches from 1C: 00001-1cFULL96.patch 00004-postgresql-1c-9.6.patch 00005-existsopt-2.patch - Remove path 00001-1ccreateappendpath.patch fixed in 00001-1cFULL96.patch - Fix CVE-2018-1058...
solutions.1c.ru XSS vulnerability
Open Bug Bounty ID: OBB-454812 Description| Value ---|--- Affected Website:| solutions.1c.ru Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
Security fix for the ALT Linux 7 package postgresql9.6-1C version 9.6.4-alt0.M70P.1
9.6.4-alt0.M70P.1 built Aug. 9, 2017 Alexei Takaseev in task 186876 Aug. 9, 2017 Alexei Takaseev - 9.6.4 - fix CVE-2017-7547...
Security fix for the ALT Linux 8 package postgresql11-1C version 9.6.4-alt1
Aug. 9, 2017 Alexei Takaseev 9.6.4-alt1 - 9.6.4 - Fix CVE-2017-7547...
CVE-2017-6619
A vulnerability in the web-based GUI of Cisco Integrated Management Controller IMC 3.01c could allow an authenticated, remote attacker to execute arbitrary commands on an affected system. The vulnerability exists because the affected software does not sufficiently sanitize user-supplied HTTP inpu...
partners.1c-bitrix.ru Open Redirect vulnerability
Open Bug Bounty ID: OBB-178905 Description| Value ---|--- Affected Website:| partners.1c-bitrix.ru Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet...
1c-bitrix.ru Open Redirect vulnerability
Open Bug Bounty ID: OBB-175847 Description| Value ---|--- Affected Website:| 1c-bitrix.ru Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet Vulnerabl...
1c-bitrix.ua Open Redirect vulnerability
Vulnerable URL: https://www.1c-bitrix.ua/bitrix/rk.php?goto=https://www.xssposed.org Details: Description| Value ---|--- Patched:| Yes, at 10.04.2016 Latest check for patch:| 10.04.2016 05:25 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 206328 Googl...
PT-2015-18: XML External Entity Injection in 1С:Enterprise
The specialists of the Positive Research center have detected an XML External Entity Injection vulnerability in the 1C: Enterprise application. This vulnerability allows an attacker to access the internal network resources, file system, and cause a denial of service attack. All XML parsers are...
MailMax-4.6-POP3-
MailMax v4.6 POP3 "USER" Remote Buffer Overflow Exploit No Login Needed Newer version's not tested, maybe vulnerable too A hard one this, the shellcode MUST be lowercase. Plus there are many opcode's that break the payload and opcodes that gets changed, like "\xc3" gets converted to "\xe3", and...
1C: Arcadia Internet Store 1.0 Arbitrary File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2902/info 1C: Arcadia Internet Store is a online shopping utility for Microsoft Windows NT/2000 that is fully integratable with 1C: Enterprise, another popular Russian web-commerce utility. One of the components of this...
1C: Arcadia Internet Store 1.0 Show Path Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2904/info 1C: Arcadia Internet Store is a online shopping utility for Microsoft Windows NT/2000 that is fully integratable with 1C: Enterprise, another popular Russian web-commerce utility. One of the components of this...
[ONSEC-09-013] 1C Bitrix 8.0.5 Admin Console XSS
ONSEC-09-013 1C Bitrix 8.0.5 Admin Console XSS Цель: 1C Bitrix 8.0.5 Тип: Межсайтовый скриптинг Угроза: Средняя Дата обнаружения: 25.08.2009 Дата оповещения разработчика: 30.08.2009 Дата выхода исправления: 01.09.2009 Автор: Vladimir Vorontsov OnSec Russian Security Group onsec dot ru Описание:...
[ONSEC-09-014] 1C Bitrix WAF multiple XSS
Цель: 1C Bitrix WAF =8.0.5 Тип: Межсайтовый скриптинг Угроза: Средняя Дата обнаружения: 29.08.2009 Дата оповещения разработчика: 29.08.2009 Дата выхода исправления: 01.09.2009 Автор: Vladimir Vorontsov OnSec Russian Security Group onsec dot ru Описание: Проактивный фильтр WAF системы управления...
CVE-2007-4384
Multiple PHP remote file inclusion vulnerabilities in depouilg.php3 in Stephane Pineau VOTE 1c allow remote attackers to execute arbitrary PHP code via a URL in the 1 NomVote and 2 FilePalHex parameters...
CVE-2007-4384
CVE-2007-4384 refers to multiple PHP remote file inclusion vulnerabilities in depouilg.php3 of Stephane Pineau VOTE 1c. The issue allows a remote attacker to execute arbitrary PHP code by supplying a URL in the NomVote or FilePalHex parameters. This is documented across multiple sources (NVD/NVD-...