EUVD-2014-3090

Malware in sbrugna...

CVE-2023-44172

SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component adminweixin.php...

CVE-2022-26324 Possible XSS in iManager URL for access Component

Possible XSS in iManager URL for access Component has been discovered in OpenText™ iManager 3.2.6.0000...

OpenText iManager 安全漏洞

OpenText iManager is a web-based management tool from OpenText Canada. A security vulnerability exists in OpenText iManager version 3.2.5.0000, which originates from a possible cross-site scripting vulnerability in the iManager access component URL...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a problem with the length checking of the RDMA/rxe component when processing UD request packets...

CVE-2023-43960

An issue in DLINK DPH-400SE FRU 2.2.15.8 allows a remote attacker to escalate privileges via the User Modify function in the Maintenance/Access function component...

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

...

Vmware Workspace One Command Injection Vulnerability

Vmware Vmware Workspace One is a platform for supporting cross-device applications for rapid delivery and management of applications from Vmware, USA. The platform, which includes VMware Horizon and VMware Horizon Cloud, integrates access control, application management, and multi-platform endpoi...

Unspecified Vulnerability in Oracle Hyperion Hyperion Data Relationship Management Component

Oracle Hyperion is a set of Oracle's financial modeling applications, which provides financial closure, report production, etc. Hyperion Data Relationship Management is one of the data relationship management components. A security vulnerability exists in the Access and security subcomponent of t...

Oracle Agile PLM Remote Vulnerability (CNVD-2017-26391)

Oracle Supply Chain Products Suite is a set of supply chain solutions from Oracle, which provides value chain planning, value chain execution, product lifecycle management, etc. Oracle Agile PLM Product Lifecycle Management is one of the lifecycle management components. Oracle Agile PLM Product...

Crlf injection

Multiple CRLF injection vulnerabilities in the Universal Access component in IBM Curam Social Program Management SPM 6.0.5.5, when WebSphere Application Server is not used, allow remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecifie...

Microsoft Windows Data Access Component DLL Loading Arbitrary Code Execution Vulnerability

Description Microsoft Windows is prone to an arbitrary-code-execution vulnerability that affects the Data Access Component. Attackers can exploit this vulnerability to execute arbitrary code in the context of the user running the vulnerable application. Technologies Affected Avaya Aura Conferenci...

Design/Logic Flaw

Unspecified vulnerability in the COREid Access component in Oracle Application Server 7.0.4.4 has unknown impact and attack vectors, aka AS02...

CVE-2007-2121

Unspecified vulnerability in the COREid Access component in Oracle Application Server 7.0.4.4 has unknown impact and attack vectors, aka AS02...

MS06-014: Vulnerability in MDAC Could Allow Code Execution (911562)

The remote Microsoft Data Access Component MDAC server is vulnerable to a flaw that could allow a local administrator to elevate his privileges to the 'system' level, thus gaining the complete control over the remote system. Tenable Network Security, Inc. include"compat.inc"; if description...

MS02-040 / MS03-033: Unchecked buffer in MDAC Function (326573 / 823718)

The remote Microsoft Data Access Component MDAC server is vulnerable to a flaw that could allow an attacker to execute arbitrary code on this host, provided he can load and execute a database query on this server. C Tenable Network Security, Inc. MS03-033 supercedes MS02-040 Note: The fix for thi...

CVE-2001-1254

Web Access component for COM2001 Alexis 2.0 and 2.1 in InternetPBX sends username and voice mail passwords in the clear via a Java applet that sends the information to port 8888 of the server, which could allow remote attackers to steal the passwords via sniffing...

CVE-2001-1254

The CVE-2001-1254 entry describes a vulnerability in the Web Access component for COM2001 Alexis 2.0/2.1 in InternetPBX where username and voice mail passwords are transmitted in the clear via a Java applet that communicates to port 8888 on the server, allowing remote attackers to sniff credentia...

CVE-2001-1254

Web Access component for COM2001 Alexis 2.0 and 2.1 in InternetPBX sends username and voice mail passwords in the clear via a Java applet that sends the information to port 8888 of the server, which could allow remote attackers to steal the passwords via sniffing...

EUVD-2001-0238

Microsoft Data Access Component Internet Publishing Provider 8.103.2519.0 and earlier allows remote attackers to bypass Security Zone restrictions via WebDAV requests...