MyBB has multiple vulnerabilities (CNVD-2016-11625)

MyBB aka MyBulletinBoard is a free and web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. Multiple security vulnerabilities exist in versions of MyBB prior to 1.8.7, including: SQL injecti...

MyBB has multiple vulnerabilities (CNVD-2016-11603)

MyBB aka MyBulletinBoard is a free and web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. Multiple security vulnerabilities exist in versions of MyBB prior to 1.8.7, including: SQL injecti...

MyBB has multiple vulnerabilities (CNVD-2016-11607)

MyBB aka MyBulletinBoard is a free and web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. Multiple security vulnerabilities exist in versions of MyBB prior to 1.8.7, including: SQL injecti...

OWOX, Inc.: ClickJacking

hi there ! i have found clickjacking vulnerability in your website you should set the frames to fix the issue...

IBM Kenexa LMS on Cloud Clickjacking Vulnerability

IBM Kenexa LMS on Cloud is a full-featured, configurable, enterprise-grade, social Learning Management System LMS that integrates social networking, collaboration, and knowledge sharing capabilities. The software provides interactive elements that support users in evaluating learning content and...

IBM InfoSphere Information Server Framework and IBM InfoSphere Information Server on Cloud Clickjacking Vulnerability

IBM InfoSphere Information Server Framework ISF and IBM InfoSphere Information Server on Cloud are products of IBM Corporation, USA. The former is a set of data integration platform framework, the latter is a set of cloud-based data integration platform. A clickjacking vulnerability exists in IBM...

Yelp: ClickJacking

hi there i have found a clickjacking vulnerability in your site in the index home page: https://www.yelp.com/ Clickjacking, also known as a "UI redress attack", is when an attacker uses multiple transparent or opaque layers to trick a user into clicking on a button or link on another page when th...

CVE-2016-3060

Payments Director in IBM Financial Transaction Manager FTM for ACH Services, Check Services, and Corporate Payment Services CPS 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to conduct clickjacking attacks via a crafted web site...

CVE-2016-3060

Payments Director in IBM Financial Transaction Manager FTM for ACH Services, Check Services, and Corporate Payment Services CPS 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to conduct clickjacking attacks via a crafted web site...

CVE-2016-3060

IBM Financial Transaction Manager (FTM) exposes CVE-2016-3060 across multiple components (ACH, Check, CPS). The vulnerability allows remote authenticated attackers to hijack user click actions via a crafted site (clickjacking). Affected versions include FTM CPS v2.1.1.0–v2.1.1.3 and FTM 3.0.0.x u...

CVE-2016-3060

Payments Director in IBM Financial Transaction Manager FTM for ACH Services, Check Services, and Corporate Payment Services CPS 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to conduct clickjacking attacks via a crafted web site...

CVE-2016-6440

The Cisco Unified Communications Manager CUCM may be vulnerable to data that can be displayed inside an iframe within a web page, which in turn could lead to a clickjacking attack. More Information: CSCuz64683 CSCuz64698. Known Affected Releases: 11.01.10000.10, 11.51.10000.6, 11.50.99838.4. Know...

CVE-2016-6440

The Cisco Unified Communications Manager CUCM may be vulnerable to data that can be displayed inside an iframe within a web page, which in turn could lead to a clickjacking attack. More Information: CSCuz64683 CSCuz64698. Known Affected Releases: 11.01.10000.10, 11.51.10000.6, 11.50.99838.4. Know...

Information disclosure

The Cisco Unified Communications Manager CUCM may be vulnerable to data that can be displayed inside an iframe within a web page, which in turn could lead to a clickjacking attack. More Information: CSCuz64683 CSCuz64698. Known Affected Releases: 11.01.10000.10, 11.51.10000.6, 11.50.99838.4. Know...

CVE-2016-6440

The Cisco Unified Communications Manager CUCM may be vulnerable to data that can be displayed inside an iframe within a web page, which in turn could lead to a clickjacking attack. More Information: CSCuz64683 CSCuz64698. Known Affected Releases: 11.01.10000.10, 11.51.10000.6, 11.50.99838.4. Know...

CVE-2016-6440

CVE-2016-6440 affects Cisco Unified Communications Manager (CUCM). Root cause: lack of input sanitization for iframe data in HTTP requests, enabling an attacker to display data inside an iframe and trigger clickjacking (phishing) without user interaction. Affected releases include CUCM 11.0(1.100...

Atlassian Confluence Server 5.8.x < 5.8.15 Clickjacking

Binary data 9646.prm...

Cisco Unified Communications Manager iFrame Data Clickjacking Vulnerability (cisco-sa-20161012-ucm)

The Cisco Unified Communications Manager CUCM may be vulnerable to data that can be displayed inside an iframe within a web page, which in turn could lead to a clickjacking attack. Protection mechanisms should be used to prevent this type of attack. Copyright C 2016 Greenbone Networks GmbH Some...

Cisco Unified Communications Manager Clickjacking Vulnerability

Cisco Unified Communications Manager CUCM, Unified CM is a call-processing component of a unified communications system from Cisco. The component provides a scalable, distributable and highly available enterprise IP telephony call processing solution. A clickjacking vulnerability has been...

Cisco Unified Communications Manager iFrame Data Clickjacking Vulnerability

The Cisco Unified Communications Manager CUCM may be vulnerable to data that can be displayed inside an iframe within a web page, which in turn could lead to a clickjacking attack. Protection mechanisms should be used to prevent this type of attack. The vulnerability is due to a lack of proper...