CVE-2024-29883

CreateWiki is Miraheze's MediaWiki extension for requesting & creating wikis. Suppression of wiki requests does not work as intended, and always restricts visibility to those with the createwiki user right regardless of the settings one sets on a given wiki request. This may expose information to...

CVE-2024-29883 CreateWiki's wiki request suppression ignores the suppression settings set by the suppressor

CreateWiki is Miraheze's MediaWiki extension for requesting & creating wikis. Suppression of wiki requests does not work as intended, and always restricts visibility to those with the createwiki user right regardless of the settings one sets on a given wiki request. This may expose information to...

CVE-2024-29883 CreateWiki's wiki request suppression ignores the suppression settings set by the suppressor

CreateWiki is Miraheze's MediaWiki extension for requesting & creating wikis. Suppression of wiki requests does not work as intended, and always restricts visibility to those with the createwiki user right regardless of the settings one sets on a given wiki request. This may expose information to...

CVE-2022-29883

creationtimestamp| type| source ---|---|--- 2022-05-20 16:36:45+00:00| seen| https://t.me/cibsecurity/43053...

CVE-2022-29883

CVE-2022-29883 affects Siemens SICAM P850 and SICAM P855 (and related SICAM devices in some advisories) with an improper authentication flaw that allows unauthenticated access to parts of the web interface, potentially enabling deletion of log files. Connected sources reference affected versions ...

CVE-2021-29883

creationtimestamp| type| source ---|---|--- 2021-10-21 20:37:04+00:00| seen| https://t.me/cibsecurity/30958...

CVE-2021-29883

CVE-2021-29883 affects IBM Standards Processing Engine (IBM Transformation Extender Advanced) 9.0 and 10.0, where authorization tokens and session cookies are set without the Secure attribute. This allows cookie leakage when users visit or click links over HTTP, potentially exposing cookie values...

CVE-2021-29883

IBM Standards Processing Engine IBM Transformation Extender Advanced 9.0 and 10.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. T...

Security Bulletin: Session Cookie Vulnerablity Affects IBM Transformation Extender Advanced (CVE-2021-29883)

Summary IBM Standards Processing Engine, also known as IBM Transformation Extender Advanced, has addressed insecure attribute on authorization tokens or session cookies. Vulnerability Details CVEID: CVE-2021-29883 DESCRIPTION: IBM Standards Processing Engine does not set the secure attribute on...