19 matches found
EUVD-2019-13665
Malware in sbrugna...
EUVD-2006-6973
Malware in sbrugna...
EUVD-2025-1495
Malicious code in bioql PyPI...
EUVD-2025-14347
Malicious code in bioql PyPI...
EUVD-2025-20336
Malicious code in bioql PyPI...
CVE-2019-0289
Under certain conditions SAP BusinessObjects Business Intelligence platform Analysis for OLAP, versions 4.2 and 4.3, allows an attacker to access information which would otherwise be restricted...
Cross-Site Request Forgery (CSRF)
concrete5/concrete5 is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability is due to insufficient sanitization and addresses not being properly sanitized in the output when a country is not specified. It allows an attacker with limited permissions to glean restricted information,...
CVE-2025-27430
SAP CRM and SAP S/4HANA (Interaction Center) are affected by a server-side request forgery (SSRF) vulnerability. The vulnerability allows an attacker with low privileges to access internal network resources, compromising confidentiality with no impact on integrity or availability. The CVSS 3.1 ve...
SAP BusinessObjects Business Intelligence Platform 安全漏洞
SAP BusinessObjects Business Intelligence Platform is a complete business analytics platform from SAP. The platform combines market-leading SAP data integration products, data management products, and business intelligence BI products to eliminate system integration challenges and quickly and...
CVE-2022-35290
Under certain conditions SAP Authenticator for Android allows an attacker to access information which would otherwise be restricted...
CVE-2022-22547
Simple Diagnostics Agent - versions 1.0 up to version 1.57., allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits...
CVE-2020-6251
Under certain conditions or error scenarios SAP Business Objects Business Intelligence Platform, version 4.2, allows an attacker to access information which would otherwise be restricted...
SAP Landscape Management Information Disclosure Vulnerability (CNVD-2019-04859)
SAP Landscape Management is a suite of business process solutions from SAP in Germany. The product is mainly used for the management of hybrid SAP environments. An information disclosure vulnerability exists in SAP Landscape Management, which can be exploited by remote attackers to access...
CVE-2019-0249
Under certain conditions SAP Landscape Management VCM 3.0 allows an attacker to access information which would otherwise be restricted...
CVE-2018-19003
GE Mark VIe, EX2100e, EX2100eReg, and LS2100e Versions 03.03.28C to 05.02.04C, EX2100e All versions prior to v04.09.00C, EX2100eReg All versions prior to v04.09.00C, and LS2100e All versions prior to v04.09.00C The affected versions of the application have a path traversal vulnerability that fail...
keycloak-connect: auth token validity check ignored
It was found that the Keycloak Node.js adapter did not handle invalid tokens correctly. An attacker could use this flaw to bypass authentication and gain access to restricted information, or to possibly conduct further attacks...
CentOS Update for java CESA-2013:0245 centos6
Check for the Version of java OpenVAS Vulnerability Test CentOS Update for java CESA-2013:0245 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200412-26 ViewCVS: Information leak and XSS vulnerabilities The tar export functions in ViewCVS bypass the 'hidecvsroot' and 'forbidden' settings and therefore expose information that should be kept secret CAN-2004-0915...
Portcullis Security Advisory: CiscoWorks 2000 Privilege Escalation Vulnerabilities
Portcullis Security Advisory CiscoWorks 2000 Priviledge Escalation Vulnerability Vulnerability discovery and development: [email protected] Affected systems: Ciscoworks 2000 Details: Portcullis have discovered that using the default Guest account which has no password set, that it i...