Lucene search
K

557 matches found

Prion
Prion
added 2013/12/14 10:55 p.m.12 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in IBM Cognos Command Center before 10.2 allow remote attackers to hijack the authentication of administrators for requests that 1 start or 2 stop services...

6.8CVSS7.7AI score0.0057EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2013/12/14 10:55 p.m.11 views

Session fixation

Session fixation vulnerability in IBM Cognos Command Center before 10.2 allows remote attackers to hijack web sessions via an authorization cookie...

4.3CVSS7AI score0.00976EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2013/12/14 10:0 p.m.21 views

CVE-2013-4000

Multiple cross-site request forgery CSRF vulnerabilities in IBM Cognos Command Center before 10.2 allow remote attackers to hijack the authentication of administrators for requests that 1 start or 2 stop services...

7.1AI score0.0057EPSS
Exploits1References2
Cvelist
Cvelist
added 2013/12/14 10:0 p.m.20 views

CVE-2013-4001

Session fixation vulnerability in IBM Cognos Command Center before 10.2 allows remote attackers to hijack web sessions via an authorization cookie...

6.5AI score0.00976EPSS
Exploits1References2
CVE
CVE
added 2013/12/14 10:0 p.m.43 views

CVE-2013-4001

CVE-2013-4001 affects IBM Cognos Command Center (before 10.2) with a session/fixation vulnerability that lets an attacker hijack web sessions via an authorization cookie. The issue is confirmed across multiple sources (NVD/NVD-related entries and IBM security bulletin); IBM states that Cognos Com...

4.3CVSS6.7AI score0.00976EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2013/12/14 10:0 p.m.37 views

CVE-2013-4000

The CVE-2013-4000 entry concerns IBM Cognos Command Center with multiple CSRF vulnerabilities that allow remote attackers to hijack the administrator session for requests that start or stop services. Affected product: IBM Cognos Command Center prior to version 10.2. The core issue is CSRF in the ...

6.8CVSS7.3AI score0.0057EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2013/07/25 11:59 a.m.9 views

CVE-2013-3979

Multiple cross-site scripting XSS vulnerabilities in the help pages in Web\Content\Help\ in the Web Client in IBM Cognos Command Center aka Star Command Center or Star Analytics before 10.1, when Internet Explorer is used, allow remote authenticated users to inject arbitrary web script or HTML vi...

3.5CVSS5.3AI score0.00946EPSS
Exploits0References5
Prion
Prion
added 2013/07/25 11:59 a.m.11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the help pages in Web\Content\Help\ in the Web Client in IBM Cognos Command Center aka Star Command Center or Star Analytics before 10.1, when Internet Explorer is used, allow remote authenticated users to inject arbitrary web script or HTML vi...

3.5CVSS5.5AI score0.00946EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2013/07/24 2:0 p.m.45 views

CVE-2013-3979

CVE-2013-3979: Multiple XSS vulnerabilities in the Web Client’s help pages (Web\Content\Help) of IBM Cognos Command Center (Star Command Center/Star Analytics) prior to version 10.1, triggered when using Internet Explorer. Exploitation is via unspecified vectors by remote authenticated users; imp...

3.5CVSS5.3AI score0.00946EPSS
Exploits0References5Affected Software1
securityvulns
securityvulns
added 2012/04/24 12:0 a.m.29 views

Astaro Command Center crossite scripting

Multiple crossite scripting vulnerabilities...

2AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/04/24 12:0 a.m.45 views

Astaro Command Center v2.x - Multiple Web Vulnerabilities

Title: ====== Astaro Command Center v2.x - Multiple Web Vulnerabilities Date: ===== 2012-04-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=4 VL-ID: ===== 4 Introduction: ============= We are pleased to announce the General Availability of the Astaro Command Center...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2012/04/09 12:0 a.m.55 views

Astaro Command Center v2.x - Multiple Web Vulnerabilities

Title: ====== Astaro Command Center v2.x - Multiple Web Vulnerabilities Date: ===== 2012-04-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=4 VL-ID: ===== 4 Introduction: ============= We are pleased to announce the General Availability of the Astaro Command Center...

7.5AI score
Exploits0
Packet Storm
Packet Storm
added 2012/04/04 12:0 a.m.30 views

Astaro Command Center 2.x Cross Site Scripting

Title: ====== Astaro Command Center v2.x - Multiple Web Vulnerabilities Date: ===== 2012-04-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=4 VL-ID: ===== 4 Introduction: ============= We are pleased to announce the General Availability of the Astaro Command Center...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/04/02 12:0 a.m.48 views

Astaro Command Center v2.x - Multiple Web Vulnerabilities

Document Title: =============== Astaro Command Center v2.x - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=4 Release Date: ============= 2012-04-02 Vulnerability Laboratory ID VL-ID: ==================================== 4...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/04/02 12:0 a.m.16 views

Astaro Command Center v2.x - Multiple Web Vulnerabilities

Document Title: =============== Astaro Command Center v2.x - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=4 Release Date: ============= 2012-04-02 Vulnerability Laboratory ID VL-ID: ==================================== 4...

0.1AI score
Exploits0
ThreatPost
ThreatPost
added 2012/01/31 6:15 p.m.8 views

Game On: Gamma Ray Scanners To Guard 'Most Technologically Secure' Super Bowl Ever

Gamma ray scanners? Night vision cameras? bomb-proof manhole covers? G-Men? It must be Super Bowl time again, and Marion County, Indiana says that they’ve gone where no other municipality has gone before: a permanent, $18 million regional operation center yes – ROC that will manage security at th...

0.4AI score
Exploits0References4
Vulnerability Lab
Vulnerability Lab
added 2011/10/27 12:0 a.m.34 views

GateProtect CC v3.0.1 - Memory Corruption Vulnerability

Document Title: =============== GateProtect CC v3.0.1 - Memory Corruption Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=53 Release Date: ============= 2011-10-27 Vulnerability Laboratory ID VL-ID: ==================================== 53...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2011/10/26 12:0 a.m.17 views

GateProtect CC v3.0.1 - Memory Corruption Vulnerability

Document Title: =============== GateProtect CC v3.0.1 - Memory Corruption Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=53 Release Date: ============= 2011-10-26 Vulnerability Laboratory ID VL-ID: ==================================== 53...

7.4AI score
Exploits0
NVD
NVD
added 2008/09/11 9:6 p.m.10 views

CVE-2008-4040

Directory traversal vulnerability in the Kyocera Command Center in Kyocera FS-118MFP allows remote attackers to read arbitrary files via a .. dot dot in the URI...

7.8CVSS6.7AI score0.0183EPSS
Exploits1References4
Prion
Prion
added 2008/09/11 9:6 p.m.9 views

Directory traversal

Directory traversal vulnerability in the Kyocera Command Center in Kyocera FS-118MFP allows remote attackers to read arbitrary files via a .. dot dot in the URI...

7.8CVSS7.2AI score0.0183EPSS
Exploits1References4
Rows per page
Query Builder