SAP NetWeaver Knowledge Management Code Issue Vulnerability

SAP Netweaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform provides a development and runtime environment for SAP applications. A code issue vulnerability exists in SAP NetWeaver Knowledge Management, which can be exploited by attackers to...

Grandstream HT800 series code issue vulnerability

The Grandstream HT800 series is an HT800 series analog phone adapter from Grandstream. A code issue vulnerability exists in the Grandstream HT800 series using firmware version 1.0.17.5 and earlier. An attacker could exploit this vulnerability to cause a denial of service...

CVE-2020-15658

The code for downloading files did not properly take care of special characters, which led to an attacker being able to cut off the file ending at an earlier position, leading to a different file type being downloaded than shown in the dialog. This vulnerability affects Firefox ESR 78.1, Firefox...

psc-techproject.com Cross Site Scripting vulnerability OBB-1239264

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

3sprouts.pl Cross Site Scripting vulnerability OBB-1237059

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Description of the security update for Outlook 2010: July 14, 2020

Description of the security update for Outlook 2010: July 14, 2020 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Outlook software if it does not correctly handle objects in memory. To learn more about the vulnerability, see Microsoft Common...

in.coimgroup.com Cross Site Scripting vulnerability OBB-1221211

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CVE-2020-15000

A PIN management problem was discovered on Yubico YubiKey 5 devices 5.2.0 to 5.2.6. OpenPGP has three passwords: Admin PIN, Reset Code, and User PIN. The Reset Code is used to reset the User PIN, but it is disabled by default. A flaw in the implementation of OpenPGP sets the Reset Code to a known...

CVE-2020-15001

CVE-2020-15001 affects Yubico YubiKey 5 NFC, specifically firmware versions 5.0.0–5.2.6 and 5.3.0–5.3.1. The OTP application allows optional access codes on OTP slots, but the access code is not checked when updating NFC-specific OTP configurations. As a result, an attacker could read configured ...

pandasecurity.com Cross Site Scripting vulnerability OBB-1218243

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CloudBees Jenkins ElasticBox Jenkins Kubernetes CI/CD Plugin Code Issue Vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based development of continuous integration tools from the U.S. company CloudBees. The product is mainly used to monitor continuous software version release/testing projects and some timed tasks.ElasticBox Jenkins Kubernetes CI/CD Plugin is used in...

Industrial Light and Magic OpenEXR Code Issue Vulnerability

Industrial Light and Magic LIM OpenEXR is an image file format from Industrial Light and Magic LIM, USA, for high dynamic range HDR images. A code problem exists in the 'TiledInputFile::TiledInputFile' function of the IlmImf/ImfTiledInputFile.cpp file in versions of Industrial Light and Magic...

Tendenci Code Issue Vulnerability

Tendenci is an association management software primarily for nonprofit organizations and associations from Tendenci USA. The software supports features such as membership management, content management, event management and online donation management. A code issue vulnerability exists in the...

Open-Xchange OX App Suite code issue vulnerability (CNVD-2020-52699)

Open-Xchange OX App Suite is a set of Web-based cloud desktop environments from Open-Xchange USA. The environment allows users to manage email, tasks, files, etc. more intuitively. A code issue vulnerability exists in Open-Xchange OX App Suite 7.10.3 and prior versions. An attacker can exploit th...

baystatept.com Cross Site Scripting vulnerability OBB-1193713

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

harvesthosts.com Cross Site Scripting vulnerability OBB-1191766

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

IBM WebSphere Application Server Network Deployment Code Issue Vulnerability

IBM WebSphere Application Server Network Deployment provides a flexible, secure server runtime environment for large-scale and mission-critical application deployments. A code issue vulnerability exists in IBM WebSphere Application Server Network Deployment. An attacker could exploit this...

Foxit Reader and PhantomPDF code issue vulnerability (CNVD-2020-32452)

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A code issue vulnerability exists in Foxit Reader versions prior to 9.6 and PhantomPDF versions prior to 9.6. An attacker could exploit this vulnerability to cause the application to crash...

Foxit Reader and PhantomPDF code issue vulnerability (CNVD-2020-32437)

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A code issue vulnerability exists in Foxit Reader versions prior to 9.7 and PhantomPDF versions prior to 9.7. An attacker could exploit this vulnerability to cause a denial of service...

Foxit PhantomPDF Code Issue Vulnerability (CNVD-2020-32086)

Foxit PhantomPDF is China's Foxit Foxit company a PDF document reader. A code issue vulnerability exists in Foxit PhantomPDF versions prior to 8.3.12. An attacker could exploit this vulnerability to cause a denial of service...