6 matches found
PT-2026-1875
Name of the Vulnerable Software and Affected Versions TIM BPM Suite & TIM FLOW versions prior to 9.1.2 Description The application stores password hashes in MD5 format, which allows a remote attacker to escalate privileges. Recommendations Update to version 9.1.2 or later...
CVE-2024-37776
Sunbird DCIM dcTrack v9.1.2 is affected by a cross-site scripting (XSS) vulnerability that allows an attacker to execute arbitrary web scripts or HTML through a crafted payload on certain admin screens. The CVE entry notes the issue exists in the reported product/version, but the provided connect...
PortlandLabs Concrete CMS 授权问题漏洞
PortlandLabs Concrete CMS is a team-oriented open source content management system from PortlandLabs, Inc. in the United States. A security vulnerability exists in Concrete CMS concrete5 versions prior to 8.5.10 and versions 9.0.0 through 9.1.2, which stems from a new session ID not being issued...
OPENSUSE-SU-2021:0567-1 Security update for chromium
This update for chromium fixes the following issues: - Chromium 89.0.4389.128 boo1184700: CVE-2021-21206: Use after free in blink CVE-2021-21220: Insufficient validation of untrusted input in v8 for x8664...
CITSmart SQL Injection Vulnerability
CITSmart is an application from CITSmart Portugal. It provides all the processes for designing an organization. A SQL injection vulnerability exists in CITSmart versions prior to 9.1.2.28, which stems from the incorrect handling of "filtro de autocomplete...". No details of the vulnerability are...
IBM BigFix Remote Control Information Disclosure Vulnerability (CNVD-2016-11868)
IBM BigFix Remote Control is a set of remote control systems from IBM in the United States. A security vulnerability exists in IBM BigFix Remote Control 9.1.2 and earlier versions, which stems from the program failing to properly set account lockout. A remote attacker can exploit this vulnerabili...