EUVD-2016-8351

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2022-3280

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An open redirect in GitLab CE/EE affecting all versions from 10.1 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows an attacker to trick...

CVE-2013-3280

EMC RSA Authentication Agent 7.1.x before 7.1.2 for Web for Internet Information Services has a fail-open design, which allows remote attackers to bypass intended access restrictions via vectors that trigger an agent crash...

RHEL 6 / 7 : openstack-nova (RHSA-2015:1898)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:1898 advisory. OpenStack Compute nova launches and schedules large networks of virtual machines, creating a redundant and scalable cloud computing...

WordPress Follow Us Badges Plugin <= 3.1.10 is vulnerable to Cross Site Scripting (XSS)

Software Follow Us Badges Type Plugin Vulnerable versions = 3.1.10 Fixed in 3.1.11 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3280 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID b115b59a801a Credits Lucio Sá Required...

CVE-2018-3280

creationtimestamp| type| source ---|---|--- 2023-11-15 16:53:23+00:00| published-proof-of-concept| https://t.me/BABATATASASA/5991...

CVE-2023-3280

creationtimestamp| type| source ---|---|--- 2023-09-13 20:23:46+00:00| seen| https://t.me/cibsecurity/70398...

CVE-2023-3280

CVE-2023-3280 – Cortex XDR Agent (Windows) : A protection mechanism flaw in the Palo Alto Networks Cortex XDR Agent for Windows allows a local user to disable the agent. The issue is described across multiple sources (including Palo Alto Networks advisory) as a protection mechanism problem; no wo...

RHEL 7 : rh-git227-git (RHSA-2023:3280)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3280 advisory. Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a...

K04320238: MySQL vulnerabilities CVE-2018-3276, CVE-2018-3277, CVE-2018-3278, CVE-2018-3279, and CVE-2018-3280

Security Advisory Description CVE-2018-3276 Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Memcached. Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attack...

Debian dla-3280 : libde265-0 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3280 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3280-1 [email protected]...

GitLab 10.1 < 15.3.5, 15.4 < 15.4.4, 15.5 < 15.5.2 Open Redirect Vulnerability

GitLab is prone to an open redirect vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if description...

CVE-2022-3280

creationtimestamp| type| source ---|---|--- 2022-11-10 02:41:23+00:00| seen| https://t.me/cibsecurity/52796...

CVE-2022-3280

An open redirect in GitLab CE/EE affecting all versions from 10.1 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows an attacker to trick users into visiting a trustworthy URL and being redirected to arbitrary content...

CVE-2022-3280

CVE-2022-3280 describes an open redirect in GitLab CE/EE. Affected versions are GitLab 10.1–14.x? specifically all versions from 10.1 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2. The vulnerability allows an attacker to trick users into visiting a trustworthy URL and be redirec...

FreeBSD : Gitlab -- Multiple vulnerabilities (16f7ec68-5cce-11ed-9be7-454b1dd82c64)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 16f7ec68-5cce-11ed-9be7-454b1dd82c64 advisory. - Gitlab reports: DAST analyzer sends custom request headers with every request Stored-XSS wit...

RHEL 7 : rh-nodejs14-nodejs and rh-nodejs14-nodejs-nodemon (RHSA-2021:3280)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3280 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The...

CentOS 8 : nss and nspr (CESA-2020:3280)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:3280 advisory. - nss: Use-after-free in sftkFreeSession due to improper refcounting CVE-2019-11756 - nss: Check length of inputs for cryptographic primitives...

Cisco Unified Contact Center Express Insecure Deserialization (CVE-2020-3280)

An insecure deserialization vulnerability exists in the Cisco Unified Contact Center Express. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Oracle Linux 8 : nss / and / nspr (ELSA-2020-3280)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-3280 advisory. nspr 4.25.0-2 - Rebuild 4.25.0-1 - Update to NSPR 4.25 nss 3.53.1-11 - Fix issue with upgradedb where upgradedb expects standard to generate dbm...