CVE-2021-31904

In JetBrains TeamCity before 2020.2.2, XSS was potentially possible on the test history page...

EUVD-2021-26646

Malware in sbrugna...

CVE-2023-4539

Use of a hard-coded password for a special database account created during Comarch ERP XL installation allows an attacker to retrieve embedded sensitive data stored in the database. The password is same among all Comarch ERP XL installations. This issue affects ERP XL: from 2020.2.2 through 2023....

CVE-2023-4538

The database access credentials configured during installation are stored in a special table, and are encrypted with a shared key, same among all Comarch ERP XL client installations. This could allow an attacker with access to that table to retrieve plain text passwords. This issue affects ERP XL...

Code injection

The database access credentials configured during installation are stored in a special table, and are encrypted with a shared key, same among all Comarch ERP XL client installations. This could allow an attacker with access to that table to retrieve plain text passwords. This issue affects ERP XL...

CVE-2023-4538 Shared Key in Comarch ERP XL

The database access credentials configured during installation are stored in a special table, and are encrypted with a shared key, same among all Comarch ERP XL client installations. This could allow an attacker with access to that table to retrieve plain text passwords. This issue affects ERP XL...

CVE-2023-4538 Shared Key in Comarch ERP XL

The database access credentials configured during installation are stored in a special table, and are encrypted with a shared key, same among all Comarch ERP XL client installations. This could allow an attacker with access to that table to retrieve plain text passwords. This issue affects ERP XL...

Comarch ERP XL Security Vulnerability

Comarch ERP XL is an enterprise resource planning ERP software from Comarch Poland. A security vulnerability exists in Comarch ERP XL versions 2020.2.2 through 2023.2, which stems from a vulnerability that allows an attacker to retrieve plain text passwords...

PT-2024-13241

Name of the Vulnerable Software and Affected Versions Comarch ERP XL versions 2020.2.2 through 2023.2 Description The Comarch ERP XL client is vulnerable to an MS SQL protocol downgrade request from the server side, which could lead to unencrypted communication. This makes the communication...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 78.9.0 ESR +  196306) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF13 + CP4MCM 2020.2.2

Summary Synthetic Playback Agent has addressed the following vulnerabilities: 196306 Vulnerability Details Third Party Entry: 196306 DESCRIPTION: Mozilla Firefox depth pitch buffer overflow CVSS Base score: 9.8 CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/196306...

JetBrains TeamCity Cross-Site Scripting Vulnerability (CNVD-2021-35241)

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. A cross-site scripting vulnerability exists in...

CVE-2021-31906

In JetBrains TeamCity before 2020.2.2, audit logs were not sufficient when an administrator uploaded a file...

CVE-2021-31904

In JetBrains TeamCity before 2020.2.2, XSS was potentially possible on the test history page...

Cross site scripting

In JetBrains TeamCity before 2020.2.2, stored XSS on a tests page was possible...

CVE-2021-3315

CVE-2021-3315 is a stored XSS vulnerability in JetBrains TeamCity, present on the test page, affecting TeamCity server versions prior to 2020.2.2. The connected documents consistently describe a stored XSS on the test page but do not provide detailed technical specifics (e.g., exploit vectors, ex...

CVE-2021-31906

CVE-2021-31906 affects JetBrains TeamCity prior to 2020.2.2. The issue is that audit logs were not sufficient when an administrator uploaded a file, leading to potential information disclosure implied by insufficient logging. Exploitation details are not provided in the supplied documents, and th...

Jetbrains JetBrains TeamCity 安全漏洞

TeamCity is a Java-based build management and continuous integration server from JetBrains. A vulnerability exists in JetBrains TeamCity versions prior to 2020.2.2 in the implementation error of permission checking for plugin changes. No detailed vulnerability details are provided at this time...

Jetbrains JetBrains TeamCity 跨站脚本漏洞

TeamCity is a Java-based build management and continuous integration server from JetBrains. A stored cross-site scripting vulnerability exists in the test page of JetBrains TeamCity versions prior to 2020.2.2. No detailed vulnerability details are available at this time...

Jetbrains JetBrains TeamCity 跨站脚本漏洞

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. A cross-site scripting vulnerability exists in...

JetBrains TeamCity 安全漏洞

Jetbrains JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains Jetbrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. A security vulnerability exist...