1078 matches found
OPC UA Delete Subscriptions Response Command
...
OPC UA Delete Subscriptions Request Command
...
OPC UA Transfer Subscriptions Response Command
...
OPC UA Transfer Subscriptions Request Command
...
Code injection
calendar/managesubscriptions.php in Moodle 2.4.x before 2.4.2 does not consider capability requirements before displaying calendar subscriptions, which allows remote authenticated users to obtain potentially sensitive information by leveraging the student role...
CVE-2013-1829
calendar/managesubscriptions.php in Moodle 2.4.x before 2.4.2 does not consider capability requirements before displaying calendar subscriptions, which allows remote authenticated users to obtain potentially sensitive information by leveraging the student role...
Large filter subscriptions can crash a JIRA instance with an OutOfMemoryError
h3. Summary JIRA has no 'rate limiting' or mail limit on filter subscriptions. This means using certain configurations will allow for a significant amount of mail to be created. As this mail is persisted in memory, it's possible to cause OutOfMemoryError's, even with a significant amount of heap...
Large filter subscriptions can crash a JIRA instance with an OutOfMemoryError
h3. Summary JIRA has no 'rate limiting' or mail limit on filter subscriptions. This means using certain configurations will allow for a significant amount of mail to be created. As this mail is persisted in memory, it's possible to cause OutOfMemoryError's, even with a significant amount of heap...
Large filter subscriptions can crash a JIRA instance with an OutOfMemoryError
h3. Summary JIRA has no 'rate limiting' or mail limit on filter subscriptions. This means using certain configurations will allow for a significant amount of mail to be created. As this mail is persisted in memory, it's possible to cause OutOfMemoryError's, even with a significant amount of heap...
CVE-2012-6106
calendar/managesubscriptions.php in the Manage Subscriptions implementation in Moodle 2.4.x before 2.4.1 omits a capability check, which allows remote authenticated users to remove course-level calendar subscriptions by leveraging the student role and sending an iCalendar object...
Design/Logic Flaw
calendar/managesubscriptions.php in the Manage Subscriptions implementation in Moodle 2.4.x before 2.4.1 omits a capability check, which allows remote authenticated users to remove course-level calendar subscriptions by leveraging the student role and sending an iCalendar object...
CVE-2012-6106
CVE-2012-6106 affects Moodle 2.4.x (before 2.4.1). The issue is an omitted capability check in calendar/managesubscriptions.php, allowing remote authenticated users (via the student role) to remove course-level calendar subscriptions by sending an iCalendar object. Connected sources confirm the a...
Skype Vendor Website - Cross Site Scripting Vulnerability
Document Title: =============== Skype Vendor Website - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=309 Release Date: ============= 2011-11-12 Vulnerability Laboratory ID VL-ID: ==================================== 3...
Twitter, Javascript Defeat NYT's $40m Paywall
The New York Times is estimated to have spent $40 million to $50 million to construct an elaborate new paywall that will force some users of the site to pay a monthly fee to read paper content. But just days after rolling out a version of the paywall, the newspaper is playing whack-a-mole with...
[security bulletin] HPSBMA02598 SSRT100314 rev.2 - HP Insight Control Virtual Machine Management for Windows, Remote Cross Site Scripting (XSS), Denial of Service (DoS), Cross Site Request Forgery (CSRF)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02560655 Version: 2 HPSBMA02598 SSRT100314 rev.2 - HP Insight Control Virtual Machine Management for Windows, Remote Cross Site Scripting XSS, Denial of Service DoS, Cross Site Request Forgery CS...
CVE-2010-3020
The news-feed preview feature in Opera before 10.61 does not properly remove scripts, which allows remote attackers to force subscriptions to arbitrary feeds via crafted content...
CVE-2010-3020
Opera before 10.61 contains a vulnerability in the news-feed preview where scripts are not properly removed, allowing an attacker to force subscriptions to arbitrary feeds via crafted content. Affected software: Opera browser (pre-10.61). Root cause: improper sanitization/removal of scripts in th...
Freeway CMS 1.4.3.210 - SQL Injection
----------------------------------------------------------------------------------------- Freeway CMS 1.4.3.210 SQL Injection Vulnerability ----------------------------------------------------------------------------------------- +Title Freeway CMS 1.4.3.210 SQL Injection Vulnerability +Author...
Joomla Jobs Pro Blind SQL Injection Vulnerability
No description provided by source. Name : Joomla Jobs Pro BSqli Vulnerability Date : july 6,2010 Critical Level : HIGH vendor URL :http://www.instantphp.com/ Price:$105.00 Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger gree...
Joomla Jobs Pro Blind SQL Injection
Name : Joomla Jobs Pro BSqli Vulnerability Date : july 6,2010 Critical Level : HIGH vendor URL :http://www.instantphp.com/ Price:$105.00 Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger greetz to :www.topsecure.net ,All ICW...