178 matches found
CVE-2020-9737
AEM versions 6.5.5.0 and below, 6.4.8.1 and below, 6.3.3.8 and below and 6.2 SP1-CFP20 and below are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scripts in certain node fields. These scripts may be...
CVE-2020-9736
AEM versions 6.5.5.0 and below, 6.4.8.1 and below, 6.3.3.8 and below and 6.2 SP1-CFP20 and below are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scripts in certain node fields. These scripts may be...
CVE-2020-9736
AEM versions 6.5.5.0 and below, 6.4.8.1 and below, 6.3.3.8 and below and 6.2 SP1-CFP20 and below are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scripts in certain node fields. These scripts may be...
Cross site scripting
AEM versions 6.5.5.0 and below, 6.4.8.1 and below, 6.3.3.8 and below and 6.2 SP1-CFP20 and below are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scripts in certain node fields. These scripts may be...
Cross site scripting
AEM versions 6.5.5.0 and below, 6.4.8.1 and below, 6.3.3.8 and below and 6.2 SP1-CFP20 and below are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scripts in certain node fields. These scripts may be...
Cross site scripting
AEM versions 6.5.5.0 and below, 6.4.8.1 and below, 6.3.3.8 and below and 6.2 SP1-CFP20 and below are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scripts in certain node fields. These scripts may be...
ALEA-2020:3054 new module: eclipse:rhel8
Eclipse is an integrated development environment IDE. This enhancement update adds the eclipse:rhel8 module to AlmaLinux The eclipse:rhel8 module provides Eclipse version 4.15, which is based on the Eclipse Foundation's 2020-03 release train. BZ1786637 For detailed information on changes in this...
new module: eclipse:rhel8
An update is available for icu4j, glassfish-annotation-api. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Eclipse is an integrated development environment IDE...
new module: eclipse:rhel8
Eclipse is an integrated development environment IDE. This enhancement update adds the eclipse:rhel8 module to AlmaLinux The eclipse:rhel8 module provides Eclipse version 4.15, which is based on the Eclipse Foundation's 2020-03 release train. BZ1786637 For detailed information on changes in this...
GReAT thoughts: Awesome IDA Pro plugins
The Global Research & Analysis Team here at Kaspersky has a tradition of meeting up once a month and sharing cutting-edge research, interesting techniques and useful tools. We recently took the unprecedented decision to make our internal meetings public for a few months and present them as a seri...
The vulnerability of the Codehaus development environment of the JBoss Enterprise Application Platform allows a perpetrator to execute arbitrary code.
The vulnerability of the Codehaus development environment on the JBoss Enterprise Application Platform is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
Zelos - A Comprehensive Binary Emulation Platform
Zelos Z eropoint E mulated L ightweight O perating S ystem is a python-based binary emulation platform. One use of zelos is to quickly assess the dynamic behavior of binaries via command-line or python scripts. All syscalls are emulated to isolate the target binary. Linux x8664 32- and 64-bit, AR...
Mail.ru: Access to Tarantool
An access to admin interface of Tarantool host in development/stage environment was not properly restricted, allowing LUA code execution...
Stack Overflow Vulnerability in Devs Files of Turing Open Object Development Environment
Beijing Turing Kaiwu Technology Co., Ltd. is a company that deals with technology development; computer system services; data processing; basic software services; application software services and other items. A stack overflow vulnerability exists in the Devs file of the Turing Kaiwu development...
Cheat Engine - A Development Environment Focused On Modding
Cheat Engine is an open source tool designed to help you with modifying single player games running under window so you can make them harder or easier depending on your preferencee.g: Find that 100hp is too easy, try playing a game with a max of 1 HP, but also contains other usefull tools to help...
SQL Injection Vulnerability in Fully Graphical Application Development Environment V2010
The full graphical application system development environment is developed by Jiangsu Lianbang Information Technology Co., Ltd. and is mainly used in the government, education industry, medical industry website. A SQL injection vulnerability exists in Full Graphical Application Development...
Eclipse IDE Eclipse XML Parser External Entity Injection Vulnerability
Eclipse IDE is the Eclipse Foundation's set of integrated development environment . Eclipse XML parser is one of the XML parser . A security vulnerability exists in the Eclipse XML parser in Eclipse IDE 2017.2.5 and earlier versions. An attacker can exploit this vulnerability to perform an XML...
Envizon - Network Visualization Tool With Focus On Red / Blue Team Requirements
This tool is designed, developed and supported by evait security. In order to give something back to the security community, we publish our internally used and developed, state of the art network visualization and organization tool, 'envizon'. We hope your feedback will help to improve and hone i...
The vulnerability of the development environment for CX-Programmers and microprogramming software of PLC Omron CJ2M and Omron CJ2H, related to the transmission of passwords in an open manner, allows attackers to intercept the passwords.
The vulnerability of the development environment CX-Programmer, which is part of the CX-One software suite designed for programming and configuring Omron PLCs, as well as Omron microcontrollers like CJ2M and CJ2H, stems from the transmission of passwords in an open manner. Exploiting this...
Oracle JDeveloper IDE Directory Traversal Vulnerability
Exploit for java platform in category web applications + Credits: John Page aka hyp3rlinx Vendor: ============= www.oracle.com Product: =========== JDeveloper IDE Oracle JDeveloper is a free integrated development environment that simplifies the development of Java-based applications addressing...