142 matches found
CVE-2023-2181
Removed by vendor...
CVE-2023-2181
An issue has been discovered in GitLab affecting all versions before 15.9.8, 15.10.0 before 15.10.7, and 15.11.0 before 15.11.3. A malicious developer could use a git feature called refs/replace to smuggle content into a merge request which would not be visible during review in the UI...
CVE-2023-2181
GitLab vulnerability CVE-2023-2181 affects all versions before 15.9.8, 15.10.0 before 15.10.7, and 15.11.0 before 15.11.3. An attacker could abuse the git feature refs/replace to smuggle content into a merge request, which would not be visible during UI review. This is caused by improper handling...
CVE-2023-2181
An issue has been discovered in GitLab affecting all versions before 15.9.8, 15.10.0 before 15.10.7, and 15.11.0 before 15.11.3. A malicious developer could use a git feature called refs/replace to smuggle content into a merge request which would not be visible during review in the UI...
openssl security update
1.0.1e-59.0.4 - Backport fixes for CVE-2023-0286 Orabug: 35212597 1.0.1e-59.0.3 - Fix possible infinite loop in BNmodsqrt CVE-2022-0778Orabug: 33969800 1.0.1e-59.0.1 - Backport fixes for CVE-2020-1971 Orabug: 32654738 1.0.1e-58.0.1 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug...
Security Bulletin: Vulnerabilities in OpenSSL affect IBM Integrated Management Module (IMM) for System x & BladeCenter
Summary IBM Integrated Management Module IMM for System x & BladeCenter have addressed the following vulnerabilities in OpenSSL. Vulnerability Details Summary IBM Integrated Management Module IMM for System x & BladeCenter have addressed the following vulnerabilities in OpenSSL. Vulnerability...
Debian: Security Advisory (DLA-637-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2010-2181
Integer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2170 and CVE-2010-2183...
CVE-2022-2181
creationtimestamp| type| source ---|---|--- 2022-08-01 16:16:52+00:00| seen| https://t.me/cibsecurity/47315...
CVE-2022-2181
The Advanced WordPress Reset WordPress plugin before 1.6 does not escape some generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting...
CVE-2022-2181
The CVE-2022-2181 issue affects the WordPress plugin Advanced WordPress Reset, specifically versions prior to 1.6. The vulnerability arises because some generated URLs are not properly escaped before being output in href attributes on admin dashboard pages, enabling Reflected XSS. The documented ...
CVE-2022-2181 Advanced WordPress Reset < 1.6 - Reflected Cross-Site Scripting
The Advanced WordPress Reset WordPress plugin before 1.6 does not escape some generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting...
com.nirima:docker-plugin (>=0.17 <=1.0.4), com.testinium.jenkins:testinium (=1.0) +38 more potentially affected by CVE-2020-2181 via org.jenkins-ci.plugins:credentials-binding (>=1.10 <=1.18)
org.jenkins-ci.plugins:credentials-binding MAVEN version =1.10, =0.17, =1.0.43, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.1-preview-1, =1.2.7, =0.1.0, =0.1.1, =0.4.2 and more Source cves: CVE-2020-2181 Source advisory: OSV:GHSA-43J2-R4V3-M8JP...
Mageia: Security Advisory (MGASA-2016-0338)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:2181-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-2181
CVE-2021-2181 affects Oracle E-Business Suite’s Oracle Document Management and Collaboration, component Attachments. Affected versions are 12.1.3 and 12.2.3–12.2.10. The issue Allows networked attacker with HTTP access and high privileges to compromise data in Attachments and potentially impact o...
CVE-2021-2181
Vulnerability in the Oracle Document Management and Collaboration product of Oracle E-Business Suite component: Attachments. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...
Apache ZooKeeper Information Disclosure
Apache ZooKeeper server service runs on TCP 2181 and by default, it is accessible without any authentication. This module targets Apache ZooKeeper service instances to extract information about the system environment, and service statistics. Module Options msf use...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.3.40 jenkins-2-plugins security update
Red Hat OpenShift Container Platform release 4.3.40 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, whic...
RHEL 7 : OpenShift Container Platform 4.4.20 jenkins-2-plugins (RHSA-2020:3625)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3625 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...