Ascensio System ONLYOFFICE Document Server 安全漏洞

Ascensio System ONLYOFFICE Document Server is an online office collaboration suite from Ascensio System, Latvia. The product supports viewing and editing of text, spreadsheets and presentations. A security vulnerability exists in versions 6.1.x through 6.3.0.71 of the Translate plug-in for...

Atlassian Jira 跨站脚本漏洞

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A security vulnerability exists in the Editor plug-in for Atlassian Jira Server and Data Center versions prior to 8.5.18, 8.6.0 ...

Win10 Admin Rights Tossed Off by Yet Another Plug-In

It’s not just Razer’s mice and keyboards that gobble up Windows 10’s tip-top, admin-level SYSTEM privileges: A SteelSeries bug also tosses off Windows 10 admin rights if you just plug in a device. … Or, then again, you can save yourself some cash by simply tricking an Android phone into thinking ...

Release Information for HPE XP Plug-In for Veeam Backup & Replication

This plug-in leverages the Veeam Universal Storage API, which enables storage OEMs to allow Veeam Backup & Replication integration to the arrays for backup and replication jobs. Requirements Before installing HPE XP Plug-In v2.2.271, ensure that you are running Veeam Backup & Replication version...

Error: "SSL Error 61: You have not chosen to trust Certificate Authority.." with Online Plug-in

Error: "SSL Error 61: You have not chosen to trust 'Certificate Authority'..." When Launching Apps with Citrix Online Plug-in Users may be unable to launch apps with the Citrix Online Plug-in. The following error message appears: "Unable to launch your application. Contact your Helpdesk with the...

How to Deploy Citrix Gateway Plug-in and Endpoint Analysis Installer Packages for Windows by Using Active Directory Group Policy

This article contains information about deploying the Citrix Gateway Plug-in and Endpoint Analysis EPA Microsoft Installer MSI packages for Windows by using an Active Directory Group Policy. If users do not have administrative privileges to install the Citrix Gateway Plug-in and EPA Plug-in on th...

Release Information for Hitachi Plug-In for Veeam Backup & Replication

This plug-in leverages the Veeam Universal Storage API, which enables storage OEMs to allow Veeam Backup & Replication integration to the arrays for backup and replication jobs. Requirements Before installing Hitachi Plug-In v2.2.271, make sure that you are running Veeam Backup & Replication buil...

Hurricane (Shenzhen) Software Limited Hurricane CMS file upload vulnerability

Hurricane CMS is an open source CMS system, characterized by all open source, efficient and convenient secondary development, simple background, plug-ins categorized in detail, adapted to various types of websites to expand the construction. Hurricane Shenzhen Software Co., Ltd. Hurricane CMS fil...

WordPress Admin Columns Plugin Cross Site Scripting Vulnerability

Product: Admin Columns WordPress Plug-In Manufacturer: Codepress Affected Versions: 5.5.2 Pro version, 4.3.2 Free version Tested Versions: 5.5.1 Pro version, 4.3 Free version Vulnerability Type: Cross-Site Scripting CWE-79 Risk Level: High Solution Status: Fixed Manufacturer Notification:...

CVE-2021-20488

IBM Security Identity Manager 6.0.2 could allow an authenticated malicious user to change the passwords of other users in the Windows AD environment when IBM Security Identity Manager Windows Password Synch Plug-in is deployed and configured. IBM X-Force ID: 197789...

CVE-2021-20488

IBM Security Identity Manager 6.0.2 could allow an authenticated malicious user to change the passwords of other users in the Windows AD environment when IBM Security Identity Manager Windows Password Synch Plug-in is deployed and configured. IBM X-Force ID: 197789...

iOS Malicious Bit Hunter - A Malicious Plug-In Detection Eng ine For iOS Applications

iOS Malicious Bit Hunter is a malicious plug-in detection engine for iOS applications. It can analyze the head of the macho file of the injected dylib dynamic library based on runtime, and can perform behavior analysis through interface input characteristics to determine the behavior of the dynam...

Samsung Mobile Galaxy Watch PlugIn 日志信息泄露漏洞

The Samsung Galaxy Watch3 is the 3rd generation smartwatch in the Samsung Galaxy Watch series. The Samsung Galaxy Watch3 plug-in has a security vulnerability that allows an attacker with logging privileges to exploit the vulnerability to disclose the Wi-Fi password connected to the user's...

"Citrix gateway plug-in for java is not supported" on all web browsers except IE

After upgrading ADCsoftware to 13.0 7+ The following isthe error message users will see on web browsers: Citrix Gateway Plug-in for Java is not supported. For further help or information, contact your help desk or system administrator."...

PT-2021-3176

Name of the Vulnerable Software and Affected Versions vSphere Client HTML5 affected versions not specified VMware vCenter Server affected versions not specified Description The issue exists due to insufficient input validation in the Virtual SAN Health Check plug-in, which is enabled by default i...

Vulnerability of the Server component: The Audit Plug-in of the Oracle MySQL Server database management system, which allows attackers to modify, add, or delete data.

The vulnerability of the Server component: The Audit Plug-in of the Oracle MySQL Server database management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to modify, add, or delete data using the MySQL network protoco...

Important: Red Hat Security Advisory: slapi-nis security and bug fix update

An update for slapi-nis is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

Ubuntu 18.04 LTS / 20.04 LTS : MySQL vulnerabilities (USN-4952-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4952-1 advisory. Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been...

Veeam CDP service does not start after the installation of the storage integration plug-in

Challenge Certain primary storage integration plug-in setup programs leave the Veeam Continuous Data Protection Veeam CDP service stopped after the installation. The following plug-ins are affected: Dell EMC SC Compellent Plug-In for Veeam Backup & Replication Tintri IntelliFlash Plug-In for Veea...

CVE-2021-21429

OpenAPI Generator allows generation of API client libraries, server stubs, documentation and configuration automatically given an OpenAPI Spec. Using File.createTempFile in JDK will result in creating and using insecure temporary files that can leave application and system data vulnerable to...