Lucene search
K

7669 matches found

CVE
CVE
added 2017/04/05 6:0 p.m.49 views

CVE-2016-3031

Consolidated findings for CVE-2016-3031: IBM Cognos Analytics 11.0.x is affected by a cross-site scripting (XSS) vulnerability in the Web UI that can allow an attacker to inject arbitrary JavaScript and potentially disclose credentials within a trusted session. The IBM bulletins cite affected ver...

5.4CVSS5.2AI score0.00516EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/04/05 6:0 p.m.26 views

CVE-2016-3031

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference : 1998887...

5.3AI score0.00516EPSS
Exploits0References2
CNVD
CNVD
added 2017/04/05 12:0 a.m.2 views

IBM Cognos Analytics Cross-Site Scripting Vulnerability

IBM Cognos Analytics formerly known as Cognos BI is a suite of business intelligence software from the American company IBM. The software includes reports, dashboards and scorecards, and can assist companies in adjusting their decisions by analyzing key factors and key stakeholders. A cross-site...

5.4CVSS6.4AI score0.00516EPSS
Exploits0References1
CNVD
CNVD
added 2017/04/05 12:0 a.m.3 views

IBM Cognos Analytics Cross-Site Scripting Vulnerability (CNVD-2017-05154)

IBM Cognos Analytics formerly known as Cognos BI is a suite of business intelligence software from the American company IBM. The software includes reports, dashboards and scorecards, and can assist companies in adjusting their decisions by analyzing key factors and key stakeholders. A cross-site...

5.4CVSS6.4AI score0.00516EPSS
Exploits0References1
rapid7community
rapid7community
added 2017/04/04 7:55 p.m.19 views

Rapid7: Supporting the Community at BSides Boston

One of the things I love about working at Rapid7 is how deeply this company embodies the concept of giving back to the Security Community. Whether it be discussing research on adversary analytics, attack methods for breaking out of sandboxes, or simply breaking into the industry - Rapid7 encourag...

6.7AI score
Exploits0
MSRC
MSRC
added 2017/04/03 7:0 a.m.12 views

Advanced Threat Analytics プレイブックを使って攻撃をシミュレーションし検出する方法

本記事は、Microsoft Advanced Threat Analytics Team のブログ “How to simulate and detect attacks with the Advanced Threat Analytics Playbook” 2017 年 2 月 23...

2.2AI score
Exploits0
Hacker One
Hacker One
added 2017/03/16 3:25 p.m.12 views

Legal Robot: Token leakage by referrer

A security researcher discovered that password reset tokens were leaked to Intercom which provides our support chat interface and Google Analytics. While the time between a user clicking on a password reset link and actually resetting the password is typically quite low, there was still some risk...

1.7AI score
Exploits0
hackapp
hackapp
added 2017/03/13 8:29 p.m.26 views

Maximarkets Analytics - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Maximarkets Analytics published at the 'play' market has multiple vulnerabilities...

0.8AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2017/03/07 12:0 a.m.20 views

WP SlimStat <= 3.5.5 - Overview URI Stored XSS

The Slimstat Analytics WordPress plugin was affected by an Overview URI Stored XSS security vulnerability...

4.3CVSS2.3AI score0.02023EPSS
Exploits1References1Affected Software1
0day.today
0day.today
added 2017/03/04 12:0 a.m.31 views

WordPress Google Analytics Dashboard 2.1.1 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Cross-Site Scripting in Google Analytics Dashboard WordPress Plugin ------------------------------------------------------------------------ Yorick Koster, July 2016...

7.1AI score
Exploits0
0day.today
0day.today
added 2017/03/04 12:0 a.m.34 views

WordPress Google Analytics Dashboard 2.1.1 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Cross-Site Scripting in Google Analytics Dashboard WordPress Plugin ------------------------------------------------------------------------ Yorick Koster, July 2016...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2017/03/03 12:0 a.m.53 views

WordPress Google Analytics Dashboard 2.1.1 Cross Site Scripting

------------------------------------------------------------------------ Cross-Site Scripting in Google Analytics Dashboard WordPress Plugin ------------------------------------------------------------------------ Yorick Koster, July 2016...

Exploits0
Symantec
Symantec
added 2017/03/02 8:0 a.m.67 views

SA144 : OpenSSH Vulnerabilities January 2017

SUMMARY Blue Coat products using affected versions of OpenSSH are susceptible to several vulnerabilities. A remote attacker with access to an SSH server can exploit these vulnerabilities to execute arbitrary code on an SSH client. A local attacker can also exploit these vulnerabilities to obtain...

7.5CVSS2.5AI score0.37431EPSS
Exploits8Affected Software15
CNVD
CNVD
added 2017/03/02 12:0 a.m.1 views

WordPress Google Analytics Dashboard Plugin Cross-Site Scripting Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the Wordpress Google Analytics Dashboard plugin, which allows attackers to fra...

6.8AI score
Exploits0References1
CNVD
CNVD
added 2017/03/02 12:0 a.m.3 views

Multiple F5 BIG-IP Products Privilege Enhancement Vulnerability

F5 BIG-IP Analytics and others are products of F5 Corporation in the U.S. F5 BIG-IP Analytics is a suite of Web application performance analytics software. the APM is a suite of solutions that provide secure and unified access to business-critical applications and networks. and the LTM is a local...

7.5CVSS7AI score0.01041EPSS
Exploits0References1
CNVD
CNVD
added 2017/03/02 12:0 a.m.4 views

Denial of Service Vulnerability in Multiple F5 BIG-IP Products (CNVD-2017-02730)

F 5BIG-IP Analytics and others are products of F5 Corporation in the U.S. F5 BIG-IP Analytics is a suite of Web application performance analytics software. the APM is a suite of solutions that provide secure and unified access to business-critical applications and networks. and the LTM is a local...

5.9CVSS6.5AI score0.01377EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2017/03/01 12:0 a.m.6 views

Google Analytics Dashboard - Authenticated Cross-Site Scripting (XSS)

The google-analytics-dashboard WordPress plugin was affected by an Authenticated Cross-Site Scripting XSS security vulnerability...

1.9AI score
Exploits0References2Affected Software1
OSV
OSV
added 2017/02/28 7:59 p.m.4 views

CVE-2017-5682

Intel PSET Application Install wrapper of Intel Parallel Studio XE, Intel System Studio, Intel VTune Amplifier, Intel Inspector, Intel Advisor, Intel MPI Library, Intel Trace Analyzer and Collector, Intel Integrated Performance Primitives, Cryptography for Intel Integrated Performance Primitives,...

7.3CVSS5.8AI score0.00973EPSS
Exploits0References2
Prion
Prion
added 2017/02/28 7:59 p.m.14 views

Code injection

Intel PSET Application Install wrapper of Intel Parallel Studio XE, Intel System Studio, Intel VTune Amplifier, Intel Inspector, Intel Advisor, Intel MPI Library, Intel Trace Analyzer and Collector, Intel Integrated Performance Primitives, Cryptography for Intel Integrated Performance Primitives,...

9.3CVSS7.1AI score0.00973EPSS
Exploits0References2Affected Software12
Intel
Intel
added 2017/02/28 12:0 a.m.26 views

Intel PSET Application Install wrapper contains an escalation of privilege vulnerability.

Summary: Intel PSET Application Install wrapper contains an escalation of privilege vulnerability. Description: Intel PSET Application Install wrapper of Intel Parallel Studio XE, Intel System Studio, Intel VTune Amplifier, Intel Inspector, Intel Advisor, Intel MPI Library, Intel Trace Analyzer a...

7.3AI score
Exploits0
Rows per page
Query Builder