CVE-2014-6105

IBM Security Identity Manager 6.x before 6.0.0.3 IF14 allows remote attackers to conduct clickjacking attacks via unspecified vectors...

CentOS 5 : samba3x (CESA-2013:1310)

Updated samba3x packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

clickjacking vulnerability of the mining and use-vulnerability and early warning-the black bar safety net

0x00 introduction 1 talking about clickjacking, a lot of people actually don't know what is. Compared toXSS, clickjacking becomes more mysterious, the clouds vulnerability database inside the related vulnerability is also less than 1 0 bar. 2 sleepy Dragon before hair through a clickjacking of...

CVE-2014-4828

IBM Security QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2 allows remote attackers to conduct clickjacking attacks via a crafted HTTP request...

Cross site request forgery (csrf)

IBM Security QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2 allows remote attackers to conduct clickjacking attacks via a crafted HTTP request...

CVE-2014-4828

The CVE-2014-4828 issue affects IBM QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2, where remote attackers can perform clickjacking via a crafted HTTP request. Root cause is improper handling of click actions in the web interface, enabling a malicious site to hijack user clicks. Affected products ar...

CVE-2014-4828

IBM Security QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2 allows remote attackers to conduct clickjacking attacks via a crafted HTTP request...

CVE-2014-2063

Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors...

CVE-2014-2063

Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors...

CVE-2014-2063

Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors...

Code injection

Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors...

CVE-2014-2063

Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors...

CVE-2014-2063

This CVE affects Jenkins: versions before 1.551 (non-LTS) and before 1.532.2 (LTS) are reported vulnerable. The issue is described as a clickjacking vulnerability with unspecified vectors. The connected sources confirm the affected product/version and the general impact (clickjacking), but do not...

CVE-2014-3149 - Reflected Cross-Site Scripting (XSS) in "Invision Power IP.Board"

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2014-3149 =================== "Reflected Cross-Site Scripting XSS" CWE-79 vulnerability in "Invision Power IP.Board" product Vendor =================== Invision Power Services Inc. Product =================== IP.Board "IP.Board is the leading...

jenkins: interface vulnerable to clickjacking attacks (SECURITY-80)

Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors...

HP/HPE System Management Homepage (SMH) Multiple Vulnerabilities (HPSBMU03112)

HP/HPE System Management Homepage SMH is prone to multiple vulnerabilities. Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

F5 Networks BIG-IP : BIG-IP APM clickjacking vulnerability (SOL14700)

The BIG-IP APM access policy logon page may be vulnerable to clickjacking. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution SOL14700. The text description of this plugin is C F5 Networks. include"compat.inc"; i...

HP System Management Homepage < 7.4 Multiple Vulnerabilities

According to the web server's banner, the version of HP System Management Homepage SMH hosted on the remote web server is affected by the following vulnerabilities : - A flaw exists within the included cURL that disables the 'CURLOPTSSLVERIFYHOST' check when the setting on 'CURLOPTSSLVERIFYPEER' ...

HP Systems Insight Manager < 7.4 Multiple Vulnerabilities

The version of HP Systems Insight Manager installed on the remote Windows host is affected by the following vulnerabilities : - An unspecified vulnerability exists that allows a remote authenticated attacker to gain limited elevated privileges. CVE-2014-2643 - A vulnerability exists that allows...

CVE-2014-2645

HP Systems Insight Manager SIM before 7.4 allows remote attackers to conduct clickjacking attacks via unknown vectors...