enviro.epa.gov Cross Site Scripting vulnerability OBB-2382669

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| enviro.epa.gov ---|--- Open Bug Bounty...

Cisco NX-OS Software 操作系统命令注入漏洞

Cisco NX-OS Software is a suite of data center-grade operating system software for switches from Cisco. An operating system command injection vulnerability exists in Cisco NX-OS Software, which arises from the product's failure to validate the contents of user-initiated HTTP POST request data. An...

enviro.epa.gov Cross Site Scripting vulnerability OBB-2381440

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| enviro.epa.gov ---|--- Open Bug Bounty...

baclieu.gov.vn Cross Site Scripting vulnerability OBB-2377367

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| baclieu.gov.vn ---|--- Open Bug Bounty...

All Vulnerabilities for togyszr.szgyf.gov.hu Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| togyszr.szgyf.gov.hu ---|--- Open Bug...

All Vulnerabilities for zk.arbitr.gov.ua Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| zk.arbitr.gov.ua ---|--- Open Bug Bount...

All Vulnerabilities for bancodetalentos.angra.rj.gov.br Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| bancodetalentos.angra.rj.gov.br ---|---...

entptest.hud.gov Cross Site Scripting vulnerability OBB-2376867

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| entptest.hud.gov ---|--- Open Bug Bount...

Design/Logic Flaw

ESXi contains a slow HTTP POST denial-of-service vulnerability in rhttpproxy. A malicious actor with network access to ESXi may exploit this issue to create a denial-of-service condition by overwhelming rhttpproxy service with multiple requests...

CVE-2021-22050

ESXi contains a slow HTTP POST denial-of-service vulnerability in rhttpproxy. A malicious actor with network access to ESXi may exploit this issue to create a denial-of-service condition by overwhelming rhttpproxy service with multiple requests...

All Vulnerabilities for bancodetalentos.angra.rj.gov.br Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| bancodetalentos.angra.rj.gov.br ---|---...

ovr.akleg.gov Cross Site Scripting vulnerability OBB-2373067

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| ovr.akleg.gov ---|--- Open Bug Bounty...

ictraining.adfs.alabama.gov Cross Site Scripting vulnerability OBB-2373033

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| ictraining.adfs.alabama.gov ---|--- Ope...

PHPUnit Command Injection Vulnerability

PHPUnit allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "?php " substring, as demonstrated by an attack on a site with an exposed /vendor folder, i.e., external access to the /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php URI...

All Vulnerabilities for e-muraciet.insanalveri.gov.az Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| e-muraciet.insanalveri.gov.az ---|---...

All Vulnerabilities for lv.arbitr.gov.ua Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| lv.arbitr.gov.ua ---|--- Open Bug Bount...

All Vulnerabilities for ko.arbitr.gov.ua Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| ko.arbitr.gov.ua ---|--- Open Bug Bount...

All Vulnerabilities for pl.arbitr.gov.ua Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| pl.arbitr.gov.ua ---|--- Open Bug Bount...

All Vulnerabilities for rv.arbitr.gov.ua Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| rv.arbitr.gov.ua ---|--- Open Bug Bount...

VMSA-2022-0004:VMware ESXi, Workstation, and Fusion updates address multiple security vulnerabilities

Advisory ID: VMSA-2022-0004 CVSSv3 Range: 5.3-8.4 Issue Date:2022-02-15 Updated On: 2022-02-15 Initial Advisory CVEs: CVE-2021-22040, CVE-2021-22041, CVE-2021-22042, CVE-2021-22043, CVE-2021-22050 Synopsis: VMware ESXi, Workstation, and Fusion updates address multiple security vulnerabilities...