64 matches found
ManageEngine ServiceDesk Plus Multiple XSS Vulnerabilities
This host is running ManageEngine ServiceDesk Plus and is prone to multiple cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbmanageengineservicedeskplusmultxssvuln.nasl 7024 2017-08-30 11:51:43Z teissa $ ManageEngine ServiceDesk Plus Multiple XSS Vulnerabilities Authors: An...
CVE-2005-4755
The CVE-2005-4755 issue affects BEA WebLogic Server and WebLogic Express 8.1 SP3 and earlier, where the SSL private key passphrase (CustomTrustKeyStorePassPhrase) is stored in cleartext in nodemanager.config, or rendered in cleartext during domain creation via the Configuration Wizard, visible on...
BEA WebLogic Server configuration wizard stores administrative credentials in clear text log files
Overview There is a vulnerability in BEA WebLogic Server in which a user with access to log files generated by the configuration wizard could obtain the administrative username and password. Description BEA Systems describes WebLogic Server as "an industrial-strength application infrastructure fo...
Security update 1970-01-01
...