Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect eDiscovery Analyzer

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 used by eDiscovery Analyzer. These issues were disclosed as part of the IBM Java SDK updates in April 2018. Vulnerability Details CVEID: CVE-2018-2783 DESCRIPTION: An unspecified vulnerability in Oracle Jav...

Security Bulletin:Open Source Apache Poi Vulnerability in IBM eDiscovery Manager

Summary Apache POI could allow a remote attacker to obtain sensitive information, caused by an XML External Entity Injection XXE error when XLSX2CSV example uses Java's XML components to parse OpenXML files. An attacker could exploit this vulnerability using an XML document containing an external...

WordPress Appointments 2.2.2.2 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Credit Ricardo Sanchez Vulnerable Appointments Plugin 2.2.2.2 Appointments Plugin is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to...

IBM AIX 6.17.1 - Local Privilege Escalation

IBM AIX 6.17.1 - Local Privilege Escalation Exploit-DB Note: Screenshot provided by exploit author !/bin/sh Exploit Title: IBM AIX 6.1 / 7.1 local root privilege escalation Date: 2013-09-24 Exploit Author: Kristian Erik Hermansen Vendor Homepage: http://www.ibm.com Software Link:...

CVE-2013-4011

Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local users to gain privileges via vectors involving 1 arp.ib or 2 ibstat. Recent assessments: timb-machine at March 05, 2021 12:44am UTC reported: Assessed Attacker Value:...

Design/Logic Flaw

The IPv6 implementation in the inet subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allows remote attackers to cause a denial of service system hang via a crafted packet to an IPv6 interface...