Lucene search
K

197 matches found

Positive Technologies
Positive Technologies
added 2021/10/25 12:0 a.m.3 views

PT-2021-23153 · Nextcloud +1 · Nextcloud +1

Name of the Vulnerable Software and Affected Versions: Nextcloud versions prior to 20.0.13 Nextcloud versions prior to 21.0.5 Nextcloud versions prior to 22.2.0 Description: A file traversal vulnerability in Nextcloud allows an attacker to download arbitrary SVG images from the host system,...

8.8CVSS6.6AI score0.01727EPSS
Exploits0References22
CNVD
CNVD
added 2021/10/07 12:0 a.m.5 views

Command Execution Vulnerability in Apache HTTP Server 2.4.49

Apache HTTP Server is the United States Apache Apache Software Foundation, an open source web server. The server is fast, reliable and can be expanded through a simple API. A command execution vulnerability exists in Apache HTTP Server 2.4.49 due to a flaw in the changes made to path normalizatio...

7.3AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/08/14 3:30 a.m.30 views

Security Bulletin: IBM Transparent Cloud Tiering is affected by a vulnerability in Apache Commons IO ( CVE-2021-29425)

Summary apache commons IO is used by IBM Spectrum Scale Transparent Cloud Tiering. IBM Spectrum Scale Transparent Cloud Tiering has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2021-29425 DESCRIPTION: Apache Commons IO could allow a remote attacker to traverse directories on the...

5.8CVSS1.8AI score0.10608EPSS
Exploits1Affected Software1
CVE
CVE
added 2020/11/02 5:12 p.m.39 views

CVE-2020-9368

The CVE-2020-9368 issue affects PrestaShop’s Olea Gift On Order module up to version 5.0.8. The vulnerability is a directory traversal in getfile.php that allows an unauthenticated attacker to read arbitrary server files by requesting getfile.php?file=../../… The root cause is a path-traversal fl...

7.5CVSS7.5AI score0.02014EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/10/19 12:0 a.m.35 views

IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.17 / 9.0.x < 9.0.5.1 File Traversal (CVE-2019-4268)

The IBM WebSphere Application Server running on the remote host is version 7.0.0.x prior to 7.0.0.45, 8.0.0.x prior to 8.0.0.15, 8.5.0.x prior to 8.5.5.17 or 9.0.x prior to 9.0.5.1. It is, therefore, affected by a directory traversal vulnerability. A remote, unauthenticated attacker can exploit...

5.3CVSS6.3AI score0.02665EPSS
Exploits0References2
CNVD
CNVD
added 2020/10/15 12:0 a.m.1 views

Arbitrary File Read Vulnerability in ZZCMS

ZZCMS is a content management system for Webmaster Merchants. ZZCMS has an arbitrary file reading vulnerability, which can be exploited by an attacker to traverse website files to obtain sensitive information...

6.9AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/12 12:28 p.m.22 views

Security Bulletin: Content Collector for Email is affected by a File traversal vulnerability in WebSphere Application Server Admin Console

Summary There is a file traversal vulnerability in the Admin Console of WebSphere Application Server. Vulnerability Details CVEID: CVE-2019-4268 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker...

5.3CVSS1.9AI score0.02665EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/28 3:18 a.m.17 views

Security Bulletin: File traversal vulnerability in WebSphere Application Server Admin Console which is shipped with Jazz for Service Management (CVE-2019-4268)

Summary There is a file traversal vulnerability in the Admin Console of WebSphere Application Server. Vulnerability Details CVEID: CVE-2019-4268 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker...

5.3CVSS0.8AI score0.02665EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/14 2:6 p.m.14 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is shipped with, or a required product for, IBM Tivoli Network Manager IP Edition (CVE-2019-4268).

Summary IBM WebSphere Application Server is shipped with IBM Tivoli Network Manager IP Edition versions 3.9 and 4.1.1; IBM WebSphere Application Server is a required product for IBM Tivoli Network Manager IP Edition version 4.2. Information about a security vulnerability affecting IBM WebSphere...

5.3CVSS2.3AI score0.02665EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/14 1:31 p.m.11 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is shipped with, or a required product for, IBM Tivoli Netcool Configuration Manager (CVE-2019-4268).

Summary IBM WebSphere Application Server is shipped with IBM Tivoli Netcool Configuration Manager version 6.4.1; IBM WebSphere Application Server is a required product for IBM Tivoli Netcool Configuration Manager version 6.4.2. Information about a security vulnerability affecting IBM WebSphere...

5.3CVSS2.3AI score0.02665EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/01/27 10:3 p.m.11 views

Security Bulletin: A Security Vulnerability Has Been Identified In WebSphere Application Server Admin Console shipped with IBM Tivoli Access Manager for e-business (CVE-2019-4268)

Summary WebSphere Application Server Admin Console is shipped with IBM Tivoli Access Manager for e-business. Information about a security vulnerability affecting WebSphere Application Server Admin Console has been published in a security bulletin. Vulnerability Details Refer to the security...

5.3CVSS2.7AI score0.02665EPSS
Exploits0Affected Software1
Gitee
Gitee
added 2019/12/28 11:7 a.m.3 views

POC-T

This is a Python-based penetration testing framework called POC-T. It is designed to facilitate concurrent testing of multiple targets and supports various features such as multi-threading, URL parsing, and user agent management. The framework includes a range of scripts for testing different...

8.4AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 8:47 a.m.34 views

Security Bulletin: Multiple Security Vulnerabilities Affect IBM WebSphere Application Server in IBM Cloud

Summary There are multiple security vulnerabilities that affect the IBM WebSphere Application Server in the IBM Cloud. There is a file traversal vulnerability in the Admin Console of WebSphere Application Server. There is a path traversal vulnerability in the Admin Console of WebSphere Applicatio...

9.1CVSS0.5AI score0.87806EPSS
Exploits8Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/11/15 10:31 a.m.19 views

Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM Tivoli System Automation Application Manager (CVE-2019-4268)

Summary WebSphere Application Server is shipped with IBM Tivoli System Automation Application Manager. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

5.3CVSS2.7AI score0.02665EPSS
Exploits0Affected Software1
Gitee
Gitee
added 2019/10/28 11:22 a.m.7 views

POC-T

This is a Python-based penetration testing framework called POC-T. It is designed to facilitate concurrent testing and provides a variety of features for vulnerability scanning and exploitation. The framework includes a range of built-in scripts for testing various vulnerabilities, including SQL...

7.9AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/24 12:5 p.m.11 views

Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise (CVE-2019-4268)

Summary WebSphere Application Server is shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details CVEID: CVE-2019-4268 DESCRIPTION: I...

5.3CVSS0.8AI score0.02665EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/14 7:26 p.m.15 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Security Key Lifecycle Manager (SKLM) (CVE-2019-4268)

Summary IBM WebSphere Application Server is shipped as a component of IBM Security Key Lifecycle Manager SKLM. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulleti...

5.3CVSS2.8AI score0.02665EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/14 2:45 p.m.21 views

Security Bulletin: Security vulnerabilities have been identified in IBM WebSphere Application Server used by IBM Rational ClearQuest

Summary IBM WebSphere Application Server WAS is used by the IBM Rational ClearQuest server and web components. Information about security vulnerabilities affecting WAS have been published in multiple security bulletins. Vulnerability Details Refer to the security bulletins listed in the...

6.5CVSS0.3AI score0.02665EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/08 7:27 p.m.21 views

Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Rational ClearCase

Summary IBM WebSphere Application Server WAS is shipped as a component of IBM Rational ClearCase. Information about security vulnerabilities affecting WAS have been published in security bulletins. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

6.5CVSS6.2AI score0.02665EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/01 10:9 p.m.16 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Case Manager (CVE-2019-4268)

Summary IBM WebSphere Application Server is shipped as a component of IBM Case Manager. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin Security Bulletin: Fi...

5.3CVSS2.9AI score0.02665EPSS
Exploits0Affected Software1
Rows per page
Query Builder