3 matches found
CVE-2020-29454
Editors/LogViewerController.cs in Umbraco through 8.9.1 allows a user to visit a logviewer endpoint even if they lack Applications.Settings access...
MERCURY leveraging Log4j 2 vulnerabilities in unpatched systems to target Israeli organizations
In recent weeks, the Microsoft Threat Intelligence Center MSTIC and Microsoft 365 Defender Research Team detected Iran-based threat actor MERCURY leveraging exploitation of Log4j 2 vulnerabilities in SysAid applications against organizations all located in Israel. MSTIC assesses with high...
HP Operations Orchestration Cross-Site Request Forgery Vulnerability
HP Operations Orchestration is a suite of IT process automation solutions. A cross-site request forgery vulnerability exists in HP Operations Orchestration. This vulnerability could be exploited by remote attackers to perform unauthorized operations or access affected applications...