Lucene search
K

67 matches found

securityvulns
securityvulns
added 2011/06/19 12:0 a.m.58 views

CORE-2010-1021: IBM WebSphere Application Server Cross-Site Request Forgery

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ IBM WebSphere Application Server Cross-Site Request Forgery 1. Advisory Information Title: IBM WebSphere Application Server Cross-Site Request Forgery Advisory ID:...

6.8CVSS6.5AI score0.02096EPSS
Exploits6
seebug.org
seebug.org
added 2011/06/16 12:0 a.m.58 views

IBM WebSphere Application Server 7.0.0.13 CSRF Vulnerability

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ IBM WebSphere Application Server Cross-Site Request Forgery 1. Advisory Information Title: IBM WebSphere Application Server Cross-Site...

6.8CVSS0.3AI score0.02096EPSS
Exploits6
Packet Storm
Packet Storm
added 2011/06/16 12:0 a.m.58 views

Core Security Technologies Advisory 2010.1021

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ IBM WebSphere Application Server Cross-Site Request Forgery 1. Advisory Information Title: IBM WebSphere Application Server Cross-Site Request Forgery Advisory ID:...

6.8CVSS0.4AI score0.02096EPSS
Exploits6
exploitpack
exploitpack
added 2011/06/15 12:0 a.m.106 views

IBM Websphere Application Server 7.0.0.13 - Cross-Site Request Forgery

IBM Websphere Application Server 7.0.0.13 - Cross-Site Request Forgery -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ IBM WebSphere Application Server Cross-Site Request Forgery 1. Advisory Information Title: IBM...

6.8CVSS6.6AI score0.02096EPSS
Exploits6
Circl
Circl
added 2011/06/15 12:0 a.m.5 views

CVE-2010-3271

creationtimestamp| type| source ---|---|--- 2011-06-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/17404...

6.8CVSS5.7AI score0.02096EPSS
Exploits6References1
0day.today
0day.today
added 2011/06/15 12:0 a.m.67 views

IBM WebSphere Application Server 7.0.0.13 CSRF Vulnerability

Exploit for php platform in category web applications IBM WebSphere Application Server Cross-Site Request Forgery 1. Advisory Information Title: IBM WebSphere Application Server Cross-Site Request Forgery Advisory ID: CORE-2010-1021 Advisory URL:...

7.1AI score0.02096EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2010/06/16 12:0 a.m.44 views

Apache Tomcat 5.x < 5.5.1 Information Disclosure

According to its self-reported version number, the instance of Apache Tomcat 5.x listening on the remote host is prior to 5.5.1. It is, therefore, affected by an information disclosure vulnerability. Specifically, it may allow requests from a non-permitted IP address to gain access to a context...

4.3CVSS5.5AI score0.04807EPSS
Exploits2References4
Circl
Circl
added 2010/04/28 12:0 a.m.8 views

CVE-2006-3271

creationtimestamp| type| source ---|---|--- 2010-04-28 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/12438...

7.5CVSS5.8AI score0.01313EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.35 views

SLES10: Security update for Tomcat 5

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: tomcat5 tomcat5-admin-webapps tomcat5-webapps More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at...

4.3CVSS6.4AI score0.04807EPSS
Exploits2
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.28 views

SLES10: Security update for Tomcat 5

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: tomcat5 tomcat5-admin-webapps tomcat5-webapps More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the...

4.3CVSS6.4AI score0.04807EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.29 views

SLES9: Security update for Tomcat

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: apache-jakarta-tomcat-connectors apache2-jakarta-tomcat-connectors jakarta-tomcat jakarta-tomcat-doc jakarta-tomcat-examples For more information, please vis...

4.3CVSS6.4AI score0.04807EPSS
Exploits2References1
CVE
CVE
added 2009/09/21 7:0 p.m.53 views

CVE-2009-3271

Apple Safari on iPhone OS 3.0.1 is reported vulnerable to a remote denial-of-service via a long tel: URL in the SRC attribute of an IFRAME element. The underlying issue is the handling of oversized tel: URIs in IFRAME SRCs, which can cause the browser to crash. The CVE is CVE-2009-3271. Affected ...

4.3CVSS6.1AI score0.04211EPSS
Exploits2References3Affected Software2
Circl
Circl
added 2009/09/14 12:0 a.m.6 views

CVE-2009-3271

creationtimestamp| type| source ---|---|--- 2009-09-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9666...

4.3CVSS5.8AI score0.04211EPSS
Exploits2References1
Prion
Prion
added 2009/08/17 4:30 p.m.14 views

Sql injection

SQL injection vulnerability in catproducts.php in SoftBiz Dating Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4...

7.5CVSS8.7AI score0.01313EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2008/12/08 9:2 a.m.61 views

Low: Red Hat Security Advisory: tomcat security update for Red Hat Network Satellite Server

Updated tomcat packages that fix multiple security issues are now available for Red Hat Network Satellite Server. This update has been rated as having low security impact by the Red Hat Security Response Team. This update corrects several security vulnerabilities in the Tomcat component shipped a...

5CVSS6.6AI score0.99708EPSS
Exploits29References7
Tenable Nessus
Tenable Nessus
added 2008/10/17 12:0 a.m.28 views

openSUSE 10 Security Update : tomcat5 (tomcat5-5684)

This update of tomcat fixes an information leak due to incorrect IP address filtering. CVE-2008-3271 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update tomcat5-5684. The text description of this...

4.3CVSS5.3AI score0.04807EPSS
Exploits2References1
seebug.org
seebug.org
added 2008/10/14 12:0 a.m.57 views

Apache Tomcat 'RemoteFilterValve'安全绕过漏洞

BUGTRAQ ID: 31698 CVE ID:CVE-2008-3271 CNCVE ID:CNCVE-20083271 Apache Tomcat是一款流行的开放源码的JSP应用服务器程序。 Apache Tomcat处理'RemoteFilterValve'扩展存在安全绕过问题,远程攻击者可以利用漏洞绕过访问限制,获得敏感信息。 在使用RemoteAddrValve允许部分地址访问引擎时: Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="a.b.c.d"/...

4.3CVSS6.4AI score0.04807EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2008/10/13 8:0 p.m.34 views

CVE-2008-3271

Apache Tomcat 5.5.0 and 4.1.0 through 4.1.31 allows remote attackers to bypass an IP address restriction and obtain sensitive information via a request that is processed concurrently with another request but in a different thread, leading to an instance-variable overwrite associated with a...

4.3CVSS5.9AI score0.04807EPSS
Exploits2References1
Cvelist
Cvelist
added 2008/10/13 6:0 p.m.34 views

CVE-2008-3271

Apache Tomcat 5.5.0 and 4.1.0 through 4.1.31 allows remote attackers to bypass an IP address restriction and obtain sensitive information via a request that is processed concurrently with another request but in a different thread, leading to an instance-variable overwrite associated with a...

6AI score0.04807EPSS
Exploits2References23
CVE
CVE
added 2008/10/13 6:0 p.m.79 views

CVE-2008-3271

CVE-2008-3271 affects Apache Tomcat 5.5.0 and Tomcat 4.1.0 through 4.1.31. The issue is a synchronization-related defect that allows a remote attacker to bypass IP address restrictions and obtain sensitive information when a request is processed concurrently with another in a different thread, re...

4.3CVSS5.9AI score0.04807EPSS
Exploits2References23Affected Software1
Rows per page
Query Builder