Cross site scripting

Cross Site Scripting vulnerability in Micro Focus Service Manager product. Affecting versions 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow remote attackers to inject arbitrary web script or HTML...

CVE-2020-11845

The CVE-2020-11845 entry concerns a Cross Site Scripting vulnerability in Micro Focus Service Manager. Affected versions include 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, and 9.63. The provided documents describe that remote attackers could inject arbitrary web script or HTML, but they do not specify t...

CVE-2020-9519

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

Design/Logic Flaw

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

CVE-2020-9519

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

CVE-2020-9519

The CVE-2020-9519 entry concerns Micro Focus Service Manager (server) with an exposure of configuration data. Affected versions are 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, and 9.63. The documents indicate the issue arises from handling HTTP methods in web services, enabling partial confid...

CVE-2014-4835

IBM ServerGuide before 9.63, UpdateXpress System Packs Installer UXSPI before 9.63, and ToolsCenter Suite before 9.63 place credentials in logs, which allows local users to obtain sensitive information by reading a file...

CVE-2014-4835

The CVE-2014-4835 issue affects IBM ServerGuide before 9.63, UpdateXpress System Packs Installer (UXSPI) before 9.63, and ToolsCenter Suite before 9.63. The root cause is credentials being written to log files, enabling a local user to read sensitive information. Impact is partial confidentiality...

Opera 'X.509' Certificates Spoofing Vulnerability (Mac OS X)

The host is installed with Opera and is prone to spoofing vulnerability OpenVAS Vulnerability Test $Id: gboperax509certspoofingvulnmacosx.nasl 5956 2017-04-14 09:02:12Z teissa $ Opera 'X.509' Certificates Spoofing Vulnerability Mac OS X Authors: Antu Sanadi Copyright: Copyright c 2012 Greenbone...

openSUSE Security Update : opera (opera-366)

Opera 9.63 fixes the following security problems : - Manipulating text input contents can allow execution of arbitrary code - HTML parsing flaw can cause Opera to execute arbitrary code. - Long hostnames in file: URLs can cause execution of arbitrary code. - Script injection in feed preview can...

Opera Web Browser Multiple Vulnerabilities - Dec08 (Linux)

The host is installed with Opera web browser and is prone to multiple Vulnerabilities. OpenVAS Vulnerability Test $Id: secpodoperamultvulndec08lin.nasl 6539 2017-07-05 12:02:14Z cfischer $ Opera Web Browser Multiple Vulnerabilities - Dec08 Linux Authors: Chandan S Copyright: Copyright c 2008...

Opera Web Browser Multiple Vulnerabilities - Dec08 (Windows)

The host is installed with Opera web browser and is prone to multiple Vulnerabilities. OpenVAS Vulnerability Test $Id: secpodoperamultvulndec08win.nasl 6519 2017-07-04 14:08:14Z cfischer $ Opera Web Browser Multiple Vulnerabilities - Dec08 Windows Authors: Chandan S Copyright: Copyright c 2008...

Opera Web Browser Multiple Vulnerabilities (Dec 2008) - Linux

Opera web browser is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2008-5683

Unspecified vulnerability in Opera before 9.63 allows remote attackers to "reveal random data" via unknown vectors...

Opera Web浏览器9.63版本修复多个安全漏洞

BUGTRAQ ID: 32864 Opera是一款流行的WEB浏览器，支持多种平台。 Opera的9.63之前版本中存在多个安全漏洞，可能允许恶意用户执行跨站脚本、泄露敏感信息或导致拒绝服务。 1 操控某些文本区内容可以触发缓冲区溢出，导致执行任意代码。 2 某些HTML construct可能导致DOM意外更改，触发崩溃。 3 file: URL中超长的主机名可以触发缓冲区溢出，导致执行任意代码。远程Web页面无法引用file: URL，因此攻击者必须诱骗用户手动打开URL或引用URL的本地文件才能利用这个漏洞。 4...

HTML parsing flaw can cause Opera to execute arbitrary code – Opera Security Advisories

HTML parsing flaw can cause Opera to execute arbitrary code – Opera Security Advisories OPCOM Team | December 15, 2008 Severity Extremely Severe Problem Description Certain HTML constructs can cause the resulting DOM to change unexpectedly, which triggers a crash. To inject code, additional...

Manipulating text input contents can allow execution of arbitrary code – Opera Security Advisories

Manipulating text input contents can allow execution of arbitrary code – Opera Security Advisories OPCOM Team | December 15, 2008 Severity Extremely Severe Problem Description Manipulating certain text-area contents can cause a buffer overflow, which may be exploited to execute arbitrary code...

Opera Web Browser Heap Based Buffer Overflow Vulnerability (Windows)

The host is installed with Opera Web Browser and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gboperafileheapbofvulnwin.nasl 6519 2017-07-04 14:08:14Z cfischer $ Opera Web Browser Heap Based Buffer Overflow Vulnerability Windows Authors: Chandan S Copyright: Copyrigh...