CVE-2014-9759

Summary: CVE-2014-9759 affects MantisBT 1.3.x prior to 1.3.0. The flaw is in the function exposed by config_api.php (config_is_private) where an incomplete blacklist enables a remote attacker to obtain sensitive master salt configuration information via the SOAP API. What’s affected: MantisBT 1.3...

CVE-2014-9759

Incomplete blacklist vulnerability in the configisprivate function in configapi.php in MantisBT 1.3.x before 1.3.0 allows remote attackers to obtain sensitive master salt configuration information via a SOAP API request...

CVE-2016-2164

The 1 FileService.importFileByInternalUserId and 2 FileService.importFile SOAP API methods in Apache OpenMeetings before 3.1.1 improperly use the Java URL class without checking the specified protocol handler, which allows remote attackers to read arbitrary files by attempting to upload a file...

Design/Logic Flaw

The 1 FileService.importFileByInternalUserId and 2 FileService.importFile SOAP API methods in Apache OpenMeetings before 3.1.1 improperly use the Java URL class without checking the specified protocol handler, which allows remote attackers to read arbitrary files by attempting to upload a file...

CVE-2015-6404

Cisco Hosted Collaboration Mediation Fulfillment 10.63 does not use RBAC, which allows remote authenticated users to obtain sensitive credential information by leveraging admin access and making SOAP API requests, aka Bug ID CSCuw84374...

CVE-2015-6404

Cisco Hosted Collaboration Mediation Fulfillment 10.63 does not use RBAC, which allows remote authenticated users to obtain sensitive credential information by leveraging admin access and making SOAP API requests, aka Bug ID CSCuw84374...

Cisco Hosted Collaboration Mediation Fulfillment SOAP API Sensitive Information Disclosure Vulnerability

A vulnerability in the Simple Object Access Protocol SOAP application programming interface API of the Cisco Hosted Collaboration Mediation Fulfillment application could allow an authenticated, remote attacker to obtain sensitive information that should be restricted. The attacker must authentica...

eBay Magento 1.9.2.1 - PHP FPM XML eXternal Entity Injection

============================================= - Release date: 29.10.2015 - Discovered by: Dawid Golunski - Severity: High/Critical - eBay Magento ref.: APPSEC-1045 ============================================= I. VULNERABILITY ------------------------- eBay Magento CE = 1.9.2.1 XML eXternal Entit...

eBay Magento XXE Injection

============================================= - Release date: 29.10.2015 - Discovered by: Dawid Golunski - Severity: High/Critical - eBay Magento ref.: APPSEC-1045 ============================================= I. VULNERABILITY ------------------------- eBay Magento CE = 1.9.2.1 XML eXternal Entit...

eBay Magento <= 1.9.2.1 - PHP FPM XML eXternal Entity Injection Vulnerability

Exploit for php platform in category web applications ============================================= - Release date: 29.10.2015 - Discovered by: Dawid Golunski - Severity: High/Critical - eBay Magento ref.: APPSEC-1045 ============================================= I. VULNERABILITY...

[KIS-2015-04] Magento &lt;= 1.9.2 &#40;catalogProductCreate&#41; Autoloaded File Inclusion Vulnerability

------------------------------------------------------------------------------- Magento = 1.9.2 catalogProductCreate Autoloaded File Inclusion Vulnerability ------------------------------------------------------------------------------- - Software Link: http://magento.com/ - Affected Versions:...

Magento 1.9.2 File Inclusion Vulnerability

Magento versions 1.9.2 and below suffer from an autoloaded file inclusion vulnerability. ------------------------------------------------------------------------------- Magento fault'datainvalid'; 113. 114. 115. $this-checkProductTypeExists$type; 116. $this-checkProductAttributeSet$set; 117. 118....

Magento 1.9.2 File Inclusion

------------------------------------------------------------------------------- Magento fault'datainvalid'; 113. 114. 115. $this-checkProductTypeExists$type; 116. $this-checkProductAttributeSet$set; 117. 118. / @var $product MageCatalogModelProduct / 119. $product = Mage::getModel'catalog/product...

Magento <= 1.9.2 (catalogProductCreate) Autoloaded File Inclusion Vulnerability

Software Link:http://magento.com/- Affected Versions:Version 1.9.2 and prior versions.- Vulnerability Description:The vulnerability is caused by the "catalogProductCreate" SOAP API implementation,which is defined into the /app/code/core/Mage/Catalog/Model/Product/Api/V2.php script:109. public...

Atlassian JIRA < 5.1.5 SOAP API Arbitrary File Overwrite

According to its self-reported version number, the version of Atlassian JIRA hosted on the remote web server is prior to version 5.1.5. It is, therefore, potentially affected by an arbitrary file overwrite vulnerability in the SOAP API used by JIRA. A remote, unauthenticated attacker can exploit...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the SOAP API endpoints of the web-services directory in Cisco Unified MeetingPlace 8.61.9 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts, aka Bug ID CSCus97494...

CVE-2015-0705

CVE-2015-0705 is a CSRF vulnerability in the SOAP API endpoints of the Cisco Unified MeetingPlace web-services directory, version 8.6(1.9). An attacker could hijack administrator authentication to create new admin accounts (Bug ID CSCus97494). Public details in the provided documents confirm the ...

CVE-2015-0705

Cross-site request forgery CSRF vulnerability in the SOAP API endpoints of the web-services directory in Cisco Unified MeetingPlace 8.61.9 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts, aka Bug ID CSCus97494...

ESXi Authorization

This VT allows users to enter the information required to authorize and login into the ESXi SOAP API via HTTP. This information is used by tests that require authentication. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

Zoom X4/X5 ADSL Modem - Multiple Vulnerabilities

No description provided by source. Vulnerable Products - Zoom X4 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R620 Server All GS Firmware versions Zoom X5 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R620 Server All GS Firmware versions Note: A similar...