29 matches found
WordPress Plugin Gutenberg Blocks by Kadence Blocks 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
The vulnerability of the VMware Workspace ONE Access application management platform, the VMware vRealize Automation virtual infrastructure management tool, the VMware Identity Manager (vIDM) administration consoles, the VMware Cloud Foundation virtualization platform, and the vRealize Suite Lifecycle Manager software for application lifecycle management, is related to deficiencies in the deserialization mechanism, allowing an attacker to execute arbitrary code.
The vulnerabilities of the VMware Workspace ONE Access application management platform, the VMware vRealize Automation virtual infrastructure management tool, the VMware Identity Manager vIDM administration consoles, the VMware Cloud Foundation virtualization platform, and the vRealize Suite...
IBM WebSphere Application Server Information Disclosure Vulnerability (CNVD-2019-07366)
IBM WebSphere Application Server WAS is an application server product from IBM in the United States. The product is a platform for JavaEE and Web services applications and is the foundation of the IBM WebSphere software platform. A security vulnerability exists in IBM WAS. A remote attacker could...
Design/Logic Flaw
In Rapid7 Komand version 0.41.0 and prior, certain endpoints that are able to list the always encrypted-at-rest connection data could return some configurations of connection data without obscuring sensitive data from the API response sent over an encrypted channel. This issue does not affect...
Ekiga < 4.0.0 Invalid UTF-8 Character Connection Data Parsing DoS
According to the version in its SIP banner, the version of Ekiga running on the remote host is potentially affected by a vulnerability that could allow a remote, unauthenticated attacker to cause a denial of service via invalid UTF-8 characters in the remote user's connection data. %NASLMINLEVEL...
Windows Gather Terminal Server Client Connection Information Dumper
This module dumps MRU and connection data for RDP sessions This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows Gather Terminal Server Client Connection Information Dumper', 'Description' = ...
DEBIAN-CVE-2009-4145
nm-connection-editor in NetworkManager NM 0.7.x exports connection objects over D-Bus upon actions in the connection editor GUI, which allows local users to obtain sensitive information by reading D-Bus signals, as demonstrated by using dbus-monitor to discover the password for the WiFi network...
CVE-2002-1579
SAP GUI Sapgui 4.6D allows remote attackers to cause a denial of service crash via a connection to a high-numbered port, which generates an "unknown connection data" error...
Sapgui 4.6D for Windows
The Sapgui 4.6D for Windows that we use at work, open a port listen on a port 1024, wenn you connect to this port, maybee with nmap or nc or something else, the sapgui crashed with "unknown connection data". Can you reproduce this? Or is it a local Problem? Greetings Falk -- Falk Siemonsmeier /"...