MINI-6374-79PM-468G

Bulletin has no description...

CGA-6374-99M2-WRW8

Bulletin has no description...

CVE-2023-6374

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200 all serial numbers allows a remote unauthenticated attacker to bypass authentication by capture-replay attack and illegally login to the affected module. As a result, the remote...

CVE-2024-6374 lahirudanushka School Management System Subject Page subject.php cross site scripting

A vulnerability was found in lahirudanushka School Management System 1.0.0/1.0.1 and classified as problematic. This issue affects some unknown processing of the file /subject.php of the component Subject Page. The manipulation of the argument Subject Title/Sybillus Details leads to cross site...

CVE-2024-6374 lahirudanushka School Management System Subject Page subject.php cross site scripting

A vulnerability was found in lahirudanushka School Management System 1.0.0/1.0.1 and classified as problematic. This issue affects some unknown processing of the file /subject.php of the component Subject Page. The manipulation of the argument Subject Title/Sybillus Details leads to cross site...

CVE-2024-6374

CVE-2024-6374 affects lahirudanushka School Management System 1.0.0/1.0.1. The vulnerability is a stored XSS in the Subject Page’s /subject.php, triggered by manipulating the Subject Title/Sybillus Details parameters. The issue is exploitable remotely and the exploit has been disclosed publicly. ...

CVE-2023-6374

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200 all serial numbers allows a remote unauthenticated attacker to bypass authentication by capture-replay attack and illegally login to the affected module. As a result, the remote...

CVE-2023-6374

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200 all serial numbers allows a remote unauthenticated attacker to bypass authentication by capture-replay attack and illegally login to the affected module. As a result, the remote...

CVE-2023-6374

The CVE-2023-6374 vulnerability affects Mitsubishi Electric MELSEC WS Series Ethernet Interface Module WS0-GETH00200 (all serial numbers). A remote unauthenticated attacker can bypass authentication via a capture-replay attack, enabling unauthorized login to the module and the potential disclosur...

Ubuntu 23.10 : Mutt vulnerabilities (USN-6374-2)

The remote Ubuntu 23.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6374-2 advisory. USN-6374-1 fixed vulnerabilities in Mutt. This update provides the corresponding updates for Ubuntu 23.10. Tenable has extracted the preceding description...

Ubuntu: Security Advisory (USN-6374-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 : Mutt vulnerabilities (USN-6374-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6374-1 advisory. It was discovered that Mutt incorrectly handled certain email header contents. If a user were tricked into...

SA43620 - 2018-01 Out-Of-Cycle Advisory : Pulse Secure Desktop Linux Client - SSL Certificate Validation Issue

Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. The Pulse Linux GUI component does not perform strict SSL certificate validation which allows the attacker to manipulate the Pulse connection set. This issue is applicable only Pulse...

CVE-2020-6374

CVE-2020-6374 affects SAP 3D Visual Enterprise Viewer (v9) with parsing of Jupiter Tessellations (.jt). The connected ZDI advisory documents a remote code execution vulnerability in JT file parsing caused by insufficient validation, leading to a read-before-allocation error. The issue can be trig...

tv.youtube.com.statuswebsite.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-990988 Security Researcher Hchabik Helped patch 2358 vulnerabilities Received 5 Coordinated Disclosure badges Received 2 recommendations , a holder of 5 badges for responsible and coordinated disclosure, found a security vulnerability affecting...

konskagrzywa.spanie.pl XSS vulnerability

Open Bug Bounty ID: OBB-563983 Description| Value ---|--- Affected Website:| konskagrzywa.spanie.pl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Pulse Secure Linux client GUI fails to validate SSL certificates

Overview The Pulse Secure Linux client GUI fails to validate SSL certificates, which can allow an attacker to modify connection settings. Description Pulse Secure is an SSL VPN solution. The Linux Pulse Secure client GUI is implemented using WebKit, and the actions taken using the GUI are...

CVE-2018-6374

CVE-2018-6374 affects Pulse Secure Desktop Linux clients where the GUI component (PulseUI) fails to perform strict SSL certificate validation, enabling manipulation of the Pulse Connection set. Affected versions include Pulse Secure Desktop Linux clients before PULSE5.2R9.2 and 5.3.x before PULSE...

CVE-2016-6374

CVE-2016-6374 affects Cisco Cloud Services Platform (CSP) 2100, specifically 2.x prior to 2.1.0, where an unauthenticated, remote attacker can exploit a web GUI input sanitization flaw to execute arbitrary code via a crafted dnslookup HTTP request. Root cause: improper sanitization of user-suppli...

CVE-2014-6374

Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."...