5 matches found
OESA-2024-1711 mariadb security update
MariaDB turns data into structured information in a wide array of applications, ranging from banking to websites. It is an enhanced, drop-in replacement for MySQL. MariaDB is used because it is fast, scalable and robust, with a rich ecosystem of storage engines, plugins and many other tools make ...
PT-2024-26130 · Unknown · Prestashop
Name of the Vulnerable Software and Affected Versions: PrestaShop versions 8.1.0 through 8.1.5 Description: A cross-site scripting XSS vulnerability is present in PrestaShop when the customer-thread feature flag is enabled. This allows a hacker to upload a malicious file containing an XSS that wi...
PT-2024-21289 · Unknown · Prestashop
Name of the Vulnerable Software and Affected Versions: PrestaShop versions 8.1.0 through 8.1.3 Description: The issue concerns path disclosure in a JavaScript variable. A patch is available to resolve this problem. Recommendations: For PrestaShop versions 8.1.0 through 8.1.3, update to version...
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
...
Security Bulletin: Vulnerability in the GSKit component of Tivoli Netcool/OMNIbus (CVE-2016-2183)
Summary Vulnerability has been addressed in the GSKit component of Tivoli Netcool/OMNIbus. Vulnerability Details CVEID: CVE-2016-2183 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the DES/3DES cipher, used as a part of the SSL/TLS...