CVE-2025-8855

Authorization Bypass Through User-Controlled Key, Weak Password Recovery Mechanism for Forgotten Password, Authentication Bypass by Assumed-Immutable Data vulnerability in Optimus Software Brokerage Automation allows Exploiting Trust in Client, Authentication Bypass, Manipulate Registry...

CVE-2025-7702 Open Redirect in PUSULA's Manageable Email Sending System

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Pusula Communication Information Internet Industry and Trade Ltd. Co. Manageable Email Sending System allows Exploiting Trust in Client.This issue affects Manageable Email Sending System: from =2025.06 before 2025.08.06...

PT-2025-38516

Name of the Vulnerable Software and Affected Versions Pusula Communication Information Internet Industry and Trade Ltd. Co. Manageable Email Sending System versions prior to 2025.08.06 Description A URL Redirection to Untrusted Site 'Open Redirect' vulnerability exists in Pusula Communication...

CVE-2021-41794

ogsfqdnparse in Open5GS 1.0.0 through 2.3.3 inappropriately trusts a client-supplied length value, leading to a buffer overflow. The attacker can send a PFCP Session Establishment Request with "internet" as the PDI Network Instance. The first character is interpreted as a length value to be used ...

CVE-2024-23332 Client configured with permissive trust policies susceptible to rollback attack in Notary Project

The Notary Project is a set of specifications and tools intended to provide a cross-industry standard for securing software supply chains by using authentic container images and other OCI artifacts. An external actor with control of a compromised container registry can provide outdated versions o...

CVE-2022-38125

Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Secomea SiteManager FTP Agent modules allows Exploiting Trust in Client...

PT-2023-13594 · Secomea · Secomea Sitemanager

Name of the Vulnerable Software and Affected Versions: Secomea SiteManager affected versions not specified Description: The issue is related to an Improper Restriction of Communication Channel to Intended Endpoints, which allows exploiting trust in the client. This is specifically concerning the...

NEC ISM Client Trust Management Issue Vulnerability

NEC ISM Client is a client software from NEC Corporation that is used to manage NEC storage systems. NEC ISM Client has a trust management issue vulnerability that stems from the vulnerability of NEC ISM Client running on NEC Storage Manager or NEC Storage Manager Express to incorrect server...

How to Add StoreFront Site to Client Trust Site Zone

This article explains how to add StoreFront site to client trust site zone, via group policy...

How to configure Google Chrome for Citrix WebHelper invoked mode

Citrix WebHelper for Google chrome can work as invoked mode or Non-invoked mode toaccess XenApp/XenDesktop resource. The article describes configuration steps for Citrix WebHelper invoked mode. It is essential to have access to back-end application via NetScaler Gateway when Receiver Client...

Wordpress 1.2 Wp-login.PHP HTTP Response Splitting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11348/info Wordpress is reported prone to a HTTP response splitting vulnerability. The issue presents itself due to a flaw in the affected script that allows an attacker to manipulate how GET requests are handled. A remot...

WebCalendar 1.0.1 Layers_Toggle.PHP HTTP Response Splitting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15673/info WebCalendar is prone to an HTTP response-splitting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. A remote attacker may exploit this vulnerability to...

Novell BorderManager Client Trust进程堆溢出漏洞

BUGTRAQ ID: 26285 CVECAN ID: CVE-2007-5767 Novell BorderManager是Internet防火墙、VPN等安全工具套件。 Novell BorderManager的Client Trust应用实现上存在堆溢出漏洞，远程攻击者可能利用此漏洞控制服务器。 Novell BorderManager中默认监听于UDP 3024 端口的Client Trust应用（clntrust.exe）没有正确的验证用户请求，Client...

Novel Border Manager Client Trust buffer overflow

Buffer overflow on UDP/3024 data parsing...

Novell Client Trust Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell software which utilize the Novell Client Trust. Authentication is not required to exploit this vulnerability. The specific flaw exists in the Novell Client Trust application, clntrust.exe,...

Perforce client: security hole by design

= Abstract = The Perforce client has a huge gapping security hole by design. It totally trusts the Perforce server and does whatever the server tells it, writing arbitrary files. = Disclaimer = This is so terribly obvious that I'd be surprised that this is news, but I couldn't find anything. Or I...