776 matches found
CVE-2010-3534
Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 6.21.3.0 and 7.0.1.0 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the Project Management Module...
Collabtive v0.65 Multiple Vulnerabilities
Exploit for php platform in category web applications ========================================= Collabtive v0.65 Multiple Vulnerabilities ========================================= VULNERABLE PRODUCT + Description: "Collabtive provides a web based platform to bring the project management process a...
Collabtive Detection
This host is running Collabtive, a Project Management and Open Source Groupware. OpenVAS Vulnerability Test $Id: gbcollabtivedetect.nasl 5723 2017-03-24 15:46:34Z cfi $ Collabtive Detection Authors: Michael Meyer Copyright: Copyright c 2010 Greenbone Networks GmbH This program is free software; y...
Collabtive 0.65 Cross Site Request Forgery / Cross Site Scripting
ANATOLIA SECURITY ADVISORY ------------------------------------ ADVISORY INFO + Title: Collabtive Multiple Vulnerabilities + Advisory URL: http://www.anatoliasecurity.com/adv/as-adv-2010-003.txt + Advisory ID: 2010-003 + Version: 0.65 + Date: 12/10/2010 + Impact: Gaining Administrative Privileges...
Collabtive Detection
This host is running Collabtive, a Project Management and Open Source Groupware. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Collabtive 0.65 - Multiple Vulnerabilities
ANATOLIA SECURITY ADVISORY ------------------------------------ ADVISORY INFO + Title: Collabtive Multiple Vulnerabilities + Advisory URL: http://www.anatoliasecurity.com/adv/as-adv-2010-003.txt + Advisory ID: 2010-003 + Version: 0.65 + Date: 12/10/2010 + Impact: Gaining Administrative Privileges...
Joomla com_projectlog Blind SQL injection Vulnerability
Exploit for php platform in category web applications ======================================================= Joomla comprojectlog Blind SQL injection Vulnerability ======================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1...
Atlassian JIRA < 4.1.2 Multiple Vulnerabilities
Binary data 5577.prm...
Collabtive v0.6.3 Multiple Vulnerabilities
Exploit for php platform in category web applications ========================================== Collabtive v0.6.3 Multiple Vulnerabilities ========================================== !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwPOST; use HTTP::Cookies; use Getopt::Long; '/ -.-...
Collabtive 0.6.3 - Multiple Vulnerabilities
Collabtive 0.6.3 - Multiple Vulnerabilities !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwPOST; use HTTP::Cookies; use Getopt::Long; '/ -.- ------------------oOO------OOo----------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/,...
Collabtive 0.6.3 - Multiple Vulnerabilities
!/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwPOST; use HTTP::Cookies; use Getopt::Long; '/ -.- ------------------oOO------OOo----------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Research Division // 2o1o |...
SA-CONTRIB-2010-054 - Storm - Cross Site Scripting (XSS)
The Storm project provides a group of modules for project management and billing. The module displays data entered by users without sanitising it, allowing for a cross site scripting XSS attack that may lead to a malicious user gaining full administrative access. Versions affected Storm project f...
[SECURITY] Fedora 11 Update: monodevelop-2.0-9.fc11
This package provides MonoDevelop, a full-featured IDE for Mono with syntax colouring, code completion, debugging, project management and support for C sharp, Visual Basic.NET, Java, Boo, Nemerle and MSIL...
[SECURITY] Fedora 11 Update: monodevelop-2.0-8.fc11
This package provides MonoDevelop, a full-featured IDE for Mono with syntax colouring, code completion, debugging, project management and support for C sharp, Visual Basic.NET, Java, Boo, Nemerle and MSIL...
Microsoft Office Project Memory Validation Remote Code Execution (MS09-074; CVE-2009-0102)
Microsoft Project is a project management software program designed to assist project managers to stay informed, keep project teams aligned, increase productivity and control project work, schedules, and finances. A remote code execution vulnerability has been identified in the way Microsoft...
GForge Detection
The remote host is running GForge, an open source web-based project-management and collaboration software. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid42963; scriptversion"1.11"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01";...
JVN#01245481 Redmine vulnerable to cross-site scripting
Redmine is a project management software. Redmine contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. As a result, cookie information may be leaked and could lead to session hijacking or user impersonation. Solution Update the...
JVN#87341298 Redmine vulnerable to cross-site request forgery
Redmine is a project management software. Redmine contains a cross-site request forgery vulnerability. Impact If a user views a malicious page while logged into Redmine, an arbitrary ticket may be deleted. Solution Update the Software Update to the latest version according to the information...
[SECURITY] Fedora 11 Update: monodevelop-2.0-6.fc11
This package provides MonoDevelop, a full-featured IDE for Mono with syntax colouring, code completion, debugging, project management and support for C sharp, Visual Basic.NET, Java, Boo, Nemerle and MSIL...
SA-CONTRIB-2009-089 - Storm - Access Bypass
The Storm module provides a project management application for Drupal. The module suffers a vulnerability whereby nodes of type 'storminvoiceitem' are not respecting the expected access permissions, potentially exposing the node title to unauthorized users. Versions affected Versions of Storm for...