32 matches found
EUVD-2023-38326
Malicious code in bioql PyPI...
EUVD-2023-38322
Malicious code in bioql PyPI...
EUVD-2023-38319
Malicious code in bioql PyPI...
CVE-2025-3476
CVE-2025-3476 targets OpenText Operations Bridge Manager with an Incorrect Authorization flaw that could allow privilege escalation by authenticated users. Affected versions include 2023.05, 23.4, 24.2, and 24.4. Root cause and impact: improper authorization controls enable elevated access for an...
OpenText Operations Bridge Manager 安全漏洞
OpenText Operations Bridge Manager is an enterprise activity and performance management software from OpenText Canada. A security vulnerability exists in OpenText Operations Bridge Manager versions 2023.05, 23.4, 24.2, and 24.4, which stems from improper authorization and could result in elevated...
OpenText Network Node Manager i 安全漏洞
OpenText Network Node Manager i is a performance monitoring and topology mapping software from OpenText Canada. A security vulnerability exists in OpenText Network Node Manager i versions 2022.11, 2023.05, 23.4, and 24.2, which originates from allowing URL redirection to untrusted sites...
OpenText Service Management Automation X Security Vulnerability
OpenText Service Management Automation X is advanced service management made easy by OpenText USA. Based on embedded machine learning and analytics, it provides a smarter approach to IT Service Management ITSM, IT Asset Management ITAM and Enterprise Service Management ESM. 2020.11, 2021.02,...
RStudio Connect < 2023.05 Open Redirect
RStudio Connect before version 2023.05 suffer from an open redirect vulnerability, allowing an attacker to craft a link and try redirecting target applications users to a malicious server. No source data...
CVE-2023-34218
In JetBrains TeamCity before 2023.05 bypass of permission checks allowing to perform admin actions was possible...
CVE-2023-34229
In JetBrains TeamCity before 2023.05 stored XSS in GitLab Connection page was possible...
CVE-2023-34227
In JetBrains TeamCity before 2023.05 a specific endpoint was vulnerable to brute force attacks...
Design/Logic Flaw
In JetBrains TeamCity before 2023.05 possible XSS in the Plugin Vendor URL was possible...
CVE-2023-34226
CVE-2023-34226 affects JetBrains TeamCity prior to version 2023.05, where a reflected cross-site scripting (XSS) flaw was disclosed on the Subscriptions page. The issue arises from improper input handling that allows untrusted input to be reflected in the UI, enabling potential user‑driven script...
CVE-2023-34224
In JetBrains TeamCity before 2023.05 open redirect during oAuth configuration was possible...
CVE-2023-34224
CVE-2023-34224 affects JetBrains TeamCity prior to 2023.05, with an open redirect vulnerability in the OAuth configuration flow. The issue allows an attacker to induce a redirect to a malicious URL during OAuth, potentially exposing victims to phishing or credential-stealing setups as part of the...
CVE-2023-34222
CVE-2023-34222 : Concrete details show a cross-site scripting (XSS) vulnerability in JetBrains TeamCity prior to version 2023.05, specifically in the Plugin Vendor URL. The available sources indicate an XSS risk but do not provide exploitation steps, affected environments beyond “TeamCity before ...
JetBrains TeamCity 跨站脚本漏洞
JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides features such as continuous unit testing, code quality analysis and build issue analysis reports. A cross-site scripting vulnerability exists in JetBrai...
JetBrains TeamCity 跨站脚本漏洞
JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides features such as continuous unit testing, code quality analysis and build issue analysis reports. A cross-site scripting vulnerability exists in JetBrai...
JetBrains TeamCity 跨站脚本漏洞
JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides features such as continuous unit testing, code quality analysis and build issue analysis reports. A cross-site scripting vulnerability exists in JetBrai...
PT-2023-24744 · Jetbrains · Teamcity
Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2023.05 Description: The issue allows users without appropriate permissions to edit Build Configuration settings via the REST API due to improper permission checks. Recommendations: For versions prior to...