Lucene search
K

5 matches found

Github Security Blog
Github Security Blog
added 2026/03/23 8:36 p.m.7 views

Connect CMS has SSRF in the External Page Migration Feature of its Page Management Plugin

Security Advisory — Page Management Plugin SSRF Summary A Server-Side Request Forgery SSRF issue exists in the external page migration feature of the Page Management Plugin. Affected Versions - 1.x series: = 1.41.0 - 2.x series: = 2.41.0 Patched Versions - 1.41.1 - 2.41.1 Description In the...

6.8CVSS5.8AI score0.00347EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2022/11/23 12:0 a.m.11 views

PT-2022-26153 · Grails · Grails Spring Security Core Plugin

Name of the Vulnerable Software and Affected Versions: Grails Spring Security Core plugin versions 1.x Grails Spring Security Core plugin versions 2.x Grails Spring Security Core plugin versions 3.0.0 through 3.3.1 Grails Spring Security Core plugin versions 4.0.0 through 4.0.4 Grails Spring...

9.8CVSS9.5AI score0.01693EPSS
Exploits0References9
OSV
OSV
added 2021/06/04 3:15 p.m.4 views

DEBIAN-CVE-2021-33054

SOGo 2.x before 2.4.1 and 3.x through 5.x before 5.1.1 does not validate the signatures of any SAML assertions it receives. Any actor with network access to the deployment could impersonate users when SAML is the authentication method. Only versions after 2.0.5a are affected...

7.5CVSS7.3AI score0.00987EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/01/31 12:0 a.m.10 views

PT-2020-5475 · Fasterxml +6 · Jackson-Databind +6

Name of the Vulnerable Software and Affected Versions: FasterXML jackson-databind versions 2.x before 2.9.10.4 Description: The issue is related to the interaction between serialization gadgets and typing, specifically with the org.apache.aries.transaction.jms.internal.XaPooledConnectionFactory...

10CVSS7.2AI score0.45205EPSS
Exploits31References360
Positive Technologies
Positive Technologies
added 2010/02/02 12:0 a.m.5 views

PT-2010-1023 · Debian · Lintian

Name of the Vulnerable Software and Affected Versions: Lintian versions 1.23.x through 1.23.28 Lintian versions 1.24.x through 1.24.2.1 Lintian versions 2.x before 2.3.2 Description: Multiple directory traversal vulnerabilities allow remote attackers to overwrite arbitrary files or obtain sensiti...

9.8CVSS9.6AI score0.05683EPSS
Exploits1References18
Rows per page
Query Builder