Gitlab vulnerable to server-side request forgery

Overview Gitlab contains a server-side request forgery vulnerability CWE-918 through the Project Import feature. Kanta Nishitani of GMO Cybersecurity by Ierae, Inc. reported this vulnerability to the developer and coordinated. After coordination was completed, this case was reported to IPA, and...

OPENSUSE-SU-2021:0895-1 Security update for htmldoc

This update for htmldoc fixes the following issues: Update to version 1.9.12 Fixed buffer-overflow CVE-2021-20308 boo1184424 Fixed a crash bug with 'data:' URIs and EPUB output Fixed several other crash bugs Fixed JPEG error handling Fixed some minor issues Removed the bundled libjpeg, libpng, an...

Android Package Inspector: Inspeckage

Inspeckage is a tool developed to offer dynamic analysis of Android applications. By applying hooks to functions of the Android API, Inspeckage will help you understand what an Android application is doing at runtime. Inspeckage will let you interact with some elements of the app, such as...

IBM Tealeaf Customer Experience Information Disclosure Vulnerability (CNVD-2016-11558)

IBM Tealeaf Customer Experience is a SaaS Software-as-a-Service based analytics solution for web and mobile applications from IBM, USA. The solution helps clients improve the overall user experience by analyzing and understanding data, and supports the adoption of advanced user interfaces for ric...

extjs Arbitrary File Read

Hi all£º Baidu Security Team found a vulnerability in extjs,with this vulnerability we can read arbitrary file and request internal http services File: /examples/feed-viewer/feed-proxy.php line:3-line:6 $feed = $REQUEST'feed'; if$feed != '' && strpos$feed, 'http' === 0 header'Content-Type:...

Fedora Core 10 FEDORA-2009-2758 (mldonkey)

The remote host is missing an update to mldonkey announced via advisory FEDORA-2009-2758. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

Fedora Core 9 FEDORA-2009-2703 (mldonkey)

The remote host is missing an update to mldonkey announced via advisory FEDORA-2009-2703. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

CVE-1999-1527

Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edition 1.0 Beta does not properly restrict access to IP addresses as specified in its configuration, which allows arbitrary remote attackers to access the server...

CVE-1999-1527

Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edition 1.0 Beta does not properly restrict access to IP addresses as specified in its configuration, which allows arbitrary remote attackers to access the server...

netbeans.java.txt

Reply-To: Halcyon Skinner Vulnerable Application: Sun Microsystems NetBeans recently renamed to Forte' Java IDE Versions tested: Netbeans Developer 3.0 Beta Forte Community Edition 1.0 Beta unknown if earlier versions have vulnerability Platform tested: Windows NT 4.0 unknown if other platforms...