Lucene search
K

2647 matches found

Tenable Nessus
Tenable Nessus
added 2010/08/14 12:0 a.m.18 views

Fedora 12 : drupal-6.19-1.fc12 (2010-12742)

DRUPAL-SA-CORE-2010-002 Remember to log in to your site as the admin user before upgrading this package. After upgrading the package, browse to http://host/drupal/update.php to run the upgrade script, for each site. Advisory ID: DRUPAL-SA-CORE-2010-002 Project: Drupal core Version: 5.x, 6.x Date:...

5.3AI score
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2010/08/14 12:0 a.m.9 views

Fedora 13 : drupal-6.19-1.fc13 (2010-12753)

DRUPAL-SA-CORE-2010-002 Remember to log in to your site as the admin user before upgrading this package. After upgrading the package, browse to http://host/drupal/update.php to run the upgrade script, for each site. Advisory ID: DRUPAL-SA-CORE-2010-002 Project: Drupal core Version: 5.x, 6.x Date:...

5.3AI score
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2010/08/12 12:0 a.m.9 views

Drupal OpenID module < 5.x-1.5 Authentication Bypass Vulnerability

Binary data 5632.prm...

5CVSS7.3AI score0.02372EPSS
Exploits0References4
Drupal
Drupal
added 2010/08/11 12:0 a.m.15 views

SA-CONTRIB-2010-084 - OpenID - Authentication bypass

The OpenID module provides users the ability to login to sites using an OpenID account. The OpenID module doesn't implement the all required verifications from the OpenID 2.0 protocol and is vulnerable to a number of attacks. Specifically: - OpenID should verify that a "openid.responsenonce" has...

7.1AI score
Exploits0References9
Drupal
Drupal
added 2010/08/11 12:0 a.m.501 views

SA-CORE-2010-002 - Drupal core - Multiple vulnerabilities

Multiple vulnerabilities and weaknesses were discovered in Drupal. OpenID authentication bypass The OpenID module provides users the ability to login to sites using an OpenID account. The OpenID module doesn't implement all the required verifications from the OpenID 2.0 protocol and is vulnerable...

6.7AI score
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2010/03/15 12:0 a.m.36 views

Debian DSA-2014-1 : moin - several vulnerabilities

Several vulnerabilities have been discovered in moin, a python clone of WikiWiki. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-0668 Multiple security issues in MoinMoin related to configurations that have a non-empty superuser list, the xmlrpc...

7.5CVSS5.4AI score0.03001EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2010/03/05 12:0 a.m.34 views

MoinMoin Wiki Superuser Lists Unspecified Vulnerability

MoinMoin Wiki is prone to unspecified vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moinmo:moinmoin";...

6.8CVSS6.4AI score0.02181EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2010/03/05 12:0 a.m.22 views

MoinMoin Wiki Superuser Lists Unspecified Vulnerability

This host is running MoinMoin Wiki and is prone to unspecified vulnerabilities. OpenVAS Vulnerability Test $Id: gbmoinmoinwikisulistunspecifiedvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ MoinMoin Wiki Superuser Lists Unspecified Vulnerability Authors: Veerendra GG Copyright: Copyright c 2010...

6.8CVSS0.4AI score0.02181EPSS
Exploits0References5
NVD
NVD
added 2010/02/26 7:30 p.m.19 views

CVE-2010-0668

Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured...

6.8CVSS6.3AI score0.02181EPSS
Exploits0References19
Prion
Prion
added 2010/02/26 7:30 p.m.13 views

Code injection

Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured...

6.8CVSS6.8AI score0.02181EPSS
Exploits0References19Affected Software1
PyPA
PyPA
added 2010/02/26 7:30 p.m.7 views

PYSEC-2010-15

Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured...

6.8CVSS6.9AI score0.02181EPSS
Exploits0References20Affected Software1
OSV
OSV
added 2010/02/26 7:30 p.m.26 views

PYSEC-2010-15

Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured...

6.8CVSS7.6AI score0.02181EPSS
Exploits0References20
Debian CVE
Debian CVE
added 2010/02/26 7:0 p.m.53 views

CVE-2010-0668

Removed by vendor...

6.8CVSS6.6AI score0.02181EPSS
Exploits0
CVE
CVE
added 2010/02/26 7:0 p.m.71 views

CVE-2010-0668

CVE-2010-0668 affects MoinMoin 1.5.x–1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2. The vulnerability relates to configurations with a non-empty superuser list, enabled xmlrpc, enabled SyncPages, or configured OpenID, leading to unknown impact per the initial description but with multiple coo...

6.8CVSS6.2AI score0.02181EPSS
Exploits0References19Affected Software1
Cvelist
Cvelist
added 2010/02/26 7:0 p.m.37 views

CVE-2010-0668

Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured...

6.1AI score0.02181EPSS
Exploits0References19
UbuntuCve
UbuntuCve
added 2010/02/26 12:0 a.m.32 views

CVE-2010-0668

Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured...

6.8CVSS5.9AI score0.02181EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.24 views

Debian DSA-1930-1 : drupal6 - several vulnerabilities

Several vulnerabilities have been found in drupal6, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-2372 Gerhard Killesreiter discovered a flaw in the way user signatures are handled. It is possible for...

6.5CVSS5.6AI score0.02308EPSS
Exploits1References9
NVD
NVD
added 2010/02/22 1:26 p.m.22 views

CVE-2010-0286

Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack vectors in which both the attacker and victim have an OpenID provider that discards identities...

5.1CVSS6.9AI score0.01303EPSS
Exploits0References5
Prion
Prion
added 2010/02/22 1:26 p.m.19 views

Authentication flaw

Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack vectors in which both the attacker and victim have an OpenID provider that discards identities...

5.1CVSS7.5AI score0.01303EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2010/02/22 1:26 p.m.31 views

CVE-2010-0286

Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack vectors in which both the attacker and victim have an OpenID provider that discards identities...

5.1CVSS5.9AI score0.01303EPSS
Exploits0References2
Rows per page
Query Builder