2505 matches found
Progress Sitefinity Authorization Issues Vulnerability
Progress Sitefinity is an open source platform for building corporate websites and intranets. An authorization issue vulnerability exists in Progress Sitefinity version 10.1.6536. The vulnerability stems from a lack of authentication measures or insufficient authentication strength in a web syste...
Phoenix Contact PLCNext AXC F 2152 Authorization Issues Vulnerability
Phoenix Contact PLCNext AXC F 2152 is a programmable logic controller from Phoenix Contact, Germany. An authorization issue vulnerability exists in the Phoenix Contact PLCNext AXC F 2152 2404267 and 1046568 Starterkit using firmware version 1.x, which can be exploited by an attacker to cause...
Percona Server Authorization Issues Vulnerability
Percona Server is an open source relational database management system . An authorization issue vulnerability exists in Percona Server version 5.6.44-85.0-1 Debian and Ubuntu. The vulnerability stems from a lack of authentication measures or insufficient authentication strength in a networked...
Fortinet FortiOS Authorization Issues Vulnerability
Fortinet FortiOS is a set of security operating system dedicated to FortiGate network security platform from American Fita Fortinet. The system provides users with firewall, antivirus, IPSec/SSLVPN, Web content filtering and anti-spam and other security features. An authorization issue...
Schneider Electric SoMachine Basic and Schneider Electric Modicon M221 License Issue Vulnerability
Schneider Electric SoMachine Basic and Schneider Electric Modicon M221 are both products of Schneider Electric, France.Schneider Electric SoMachine Basic is a suite of software for programming logic controllers. The Schneider Electric Modicon M221 is a programmable logic controller. An...
GitLab Authorization Issues Vulnerability
GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. An authorization issue vulnerability exists in GitLab...
Rockwell Automation/Allen-Bradley PanelView Plus 6 HMIs Missing Authorization
Binary data 720128.prm...
SAP BASIS Authorization Issues Vulnerability
SAP BASIS is a content management system. SAP BASIS is vulnerable to an authorization issue. An attacker could exploit this vulnerability to gain unauthorized access and obtain sensitive information...
IBM Security Privileged Identity Manager Authorization Issues Vulnerability
IBM Security Privileged Identity Manager ISPIM is an identity management product within the IBM Identity Governance and Management solution from IBM in the United States. The product is designed to protect, automate and audit the use of privileged identities to help defend against insider threats...
Apache HTTP Server Authorization Issues Vulnerability
Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. Apache HTTP Server is vulnerable to an authorization issue. The vulnerability stems from modsession detecting the expiration time ...
SAP Cloud Connector Authorization Issues Vulnerability
SAP Cloud Connector is a connector for connecting to the SAP Cloud Platform from SAP Germany. An authorization issue vulnerability exists in SAP Cloud Connector versions prior to 2.11.3, which stems from the program failing to perform any authentication and can be exploited by an attacker to...
QIWI: account takeover https://teamplay.qiwi.com
Здравствуйте. Нашел баг, как украсть аккаунт на данном сайте. Для того, чтобы это провернуть нам нужно знать эмайл вашего пользователя. Предположим что пользователь зашел на ваш сайт через аккаунт ВКонтакте, к его странице привязана почта [email protected] Мы идем на https://www.faceit.com и...
Intelbras NPLUG License Issue Vulnerability
Intelbras NPLUG is a wireless relay device from Intelbras Poland. Intelbras NPLUG is vulnerable to an authorization issue. An attacker could exploit this vulnerability to bypass authentication...
Micronet INplc-RT Authorization Issue Vulnerability (CNVD-2019-40825)
Micronet INplc-RT is a software-defined PLC Programmable Logic Controller from Micronet Japan. An authorization issue vulnerability exists in Micronet INplc-RT version 3.08 and earlier. A remote attacker could exploit this vulnerability to execute arbitrary commands...
ABB eSOMS Authorization Issues Vulnerabilities
ABB eSOMS is a plant operations management system from ABB Switzerland. An authorization issue vulnerability exists in ABB eSOMS version 6.0.2. An attacker could exploit this vulnerability to gain unauthorized access to the system...
Nextcloud Server Authorization Issues Vulnerability
Nextcloud is a client-server software suite for creating network hard disks. An authorization issue vulnerability exists in versions of Nextcloud Server prior to 12.0.3, which can be exploited by an attacker to obtain user credentials and bypass two-factor authentication...
PT-2018-16196 · Mosquitto · Aedes
Name of the Vulnerable Software and Affected Versions: aedes versions prior to 0.35.1 Description: The issue is related to improper authorization, where aedes does not respect its own authorization rules when a client sets a Last Will. This can lead to publishing a Last Will and Testament LWT in ...
Apple iCloud Security Updates (HT208853)
Apple iCloud is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:icloud"; ifdescription...
Apple iTunes Security Updates (HT208852)
Apple iTunes is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:itunes"; ifdescription...
Apple Mac OS X Security Updates (HT208849)-01
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...