18 matches found
EUVD-2018-7484
Malware in sbrugna...
EUVD-2020-28169
Malware in sbrugna...
Avaya Aura Orchestration Designer XML External Entity Injection Vulnerability
Aura Orchestration Designer is a full-featured graphical development environment for creating applications that run on Avaya Aura-related products. An XML external entity injection vulnerability exists in the web user interface of Avaya Aura Orchestration Designer. An attacker could use this...
CVE-2020-7035
An XML External Entities XXEvulnerability in the web-based user interface of Avaya Aura Orchestration Designer could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system. The affected versions of Orchestration Designer includes all 7.x...
CVE-2020-7035
An XML External Entities XXEvulnerability in the web-based user interface of Avaya Aura Orchestration Designer could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system. The affected versions of Orchestration Designer includes all 7.x...
Xxe
An XML External Entities XXEvulnerability in the web-based user interface of Avaya Aura Orchestration Designer could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system. The affected versions of Orchestration Designer includes all 7.x...
CVE-2020-7035 XXE in Avaya Aura Orchestration Designer
An XML External Entities XXEvulnerability in the web-based user interface of Avaya Aura Orchestration Designer could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system. The affected versions of Orchestration Designer includes all 7.x...
CVE-2020-7035
CVE-2020-7035 describes an XML External Entities (XXE) vulnerability in the web-based user interface of Avaya Aura Orchestration Designer. An authenticated, remote attacker can gain read access to information stored on an affected system. Affected are Avaya Aura Orchestration Designer 7.x version...
Avaya Aura Orchestration Designer 代码问题漏洞
Aura Orchestration Designer is a full-featured graphical development environment for creating applications that run on Avaya Aura-related products. An XML external entity injection vulnerability exists in the web user interface of Avaya Aura Orchestration Designer. An attacker could use this...
Avaya Aura Orchestration Designer Runtime Config Component Cross-Site Request Forgery Vulnerability
Avaya Aura Orchestration Designer is a suite of full-featured graphical development environments from Avaya, Inc. It is used to develop applications that run on media processing servers, voice portals, and interactive response software platforms.Runtime Config is one of the runtime environment...
CVE-2018-15612
CSRF vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could allow an attacker to add, change, or remove administrative settings. Affected versions include all up to 7.2.1. Available references corroborate the CSRF issue across multiple sources; no explicit mitiga...
CVE-2018-15612 Orchestration Designer Runtime Config CSRF
A CSRF vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could allow an attacker to add, change, or remove administrative settings. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1...
CVE-2018-15613 Orchestration Designer Runtime Config XSS
A cross-site scripting XSS vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could result in malicious content being returned to the user. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1...
CVE-2018-15613
Affected software: Avaya Aura Orchestration Designer (Runtime Config component). Vulnerability: Cross-site scripting (XSS) that could cause malicious content to be returned to the user. Root cause / affected version range: Any affected versions up to 7.2.1. Impact (as stated): Potential exposure ...
CVE-2018-15613
A cross-site scripting XSS vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could result in malicious content being returned to the user. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1...
CVE-2018-15612
A CSRF vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could allow an attacker to add, change, or remove administrative settings. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1...
CVE-2018-15613
A cross-site scripting XSS vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could result in malicious content being returned to the user. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1...
Cross site scripting
A cross-site scripting XSS vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could result in malicious content being returned to the user. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1...