18 matches found
WordPress plugin WP 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...
NuGet Package 'Microsoft.Bot.Builder.Azure' Detection
The remote host has a 'Microsoft.Bot.Builder.Azure' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...
NuGet Package 'Microsoft.Bot.Builder.Integration.AspNet.Core' Detection
The remote host has a 'Microsoft.Bot.Builder.Integration.AspNet.Core' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc...
NuGet Package 'Microsoft.Bot.Builder.Dialogs.Declarative' Detection
The remote host has a 'Microsoft.Bot.Builder.Dialogs.Declarative' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc...
NuGet Package 'Microsoft.Bot.Configuration' Detection
The remote host has a 'Microsoft.Bot.Configuration' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...
NuGet Package 'Microsoft.Bot.Builder' Detection
The remote host has a 'Microsoft.Bot.Builder' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...
NuGet Package 'Microsoft.Bot.Builder.Dialogs' Detection
The remote host has a 'Microsoft.Bot.Builder.Dialogs' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc...
NuGet Package 'Microsoft.Bot.Builder.AI.Luis' Detection
The remote host has a 'Microsoft.Bot.Builder.AI.Luis' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc...
NuGet Package 'Microsoft.Bot.Builder.AI.QnA' Detection
The remote host has a 'Microsoft.Bot.Builder.AI.QnA' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc...
NuGet Package 'Microsoft.Bot.Connector' Detection
The remote host has a 'Microsoft.Bot.Connector' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...
NuGet Package 'Microsoft.Bot.Schema' Detection
The remote host has a 'Microsoft.Bot.Schema' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...
Microsoft Bot Framework SDK 代码注入漏洞
The Microsoft Bot Framework SDK is a powerful framework for constructing bots that can handle free-form interactions and more guided conversations.The Microsoft Bot Framework SDK is vulnerable to remote code execution. An attacker could exploit this vulnerability to execute code on the target hos...
GHSA-CQFF-FX2X-P86V botframework-connector vulnerable to Improper Authentication
Impact A maliciously crafted claim may be incorrectly authenticated by the bot. Impacts bots that are not configured to be used as a Skill. This vulnerability requires an attacker to have internal knowledge of the bot. Patches The problem has been patched in all affected versions. Please see the...
botframework-connector vulnerable to Improper Authentication
Impact A maliciously crafted claim may be incorrectly authenticated by the bot. Impacts bots that are not configured to be used as a Skill. This vulnerability requires an attacker to have internal knowledge of the bot. Patches The problem has been patched in all affected versions. Please see the...
GHSA-QXX8-292G-2W66 Improper Authentication
Impact A maliciously crafted claim may be incorrectly authenticated by the bot. Impacts bots that are not configured to be used as a Skill. This vulnerability requires an an attacker to have internal knowledge of the bot. Patches The problem has been patched in all affected versions. Please see t...
Improper Authentication
Impact A maliciously crafted claim may be incorrectly authenticated by the bot. Impacts bots that are not configured to be used as a Skill. This vulnerability requires an an attacker to have internal knowledge of the bot. Patches The problem has been patched in all affected versions. Please see t...
botframework-connector vulnerable to Improper Authentication
Impact A maliciously crafted claim may be incorrectly authenticated by the bot. Impacts bots that are not configured to be used as a Skill. This vulnerability requires an attacker to have internal knowledge of the bot. Patches The problem has been patched in all affected versions. Please see the...
Microsoft Bot Framework Information Disclosure Vulnerability
Microsoft Bot Framework is a development framework for building intelligent bot applications from Microsoft USA. The framework supports bots to seamlessly connect to text/messaging, Office 365 email, Skype, Slack and other services. An information disclosure vulnerability exists in the Microsoft...