32 matches found
CVE-2022-29890
In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...
CVE-2022-29890
In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...
CVE-2022-29890
In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...
Cross site scripting
In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...
CVE-2022-29890
In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...
ZSQL: Audit Level
Audit logs are important in tracing data, locating faults, and clarifying responsibilities after security events occur. Database audit is configured by setting the AUDITLEVEL parameter. AUDITLEVEL = 0 disables audit logs. If AUDITLEVEL is set to a value greater than 0, audit logs are enabled, and...
CVE-2017-15362
osTicket 1.10.1 allows arbitrary client-side JavaScript code execution on victims who click a crafted support/scp/tickets.php?status= link, aka XSS. Session ID and data theft may follow as well as the possibility of bypassing CSRF protections, injection of iframes to establish communication...
Microsoft SharePoint Server Excel Services Remote Code Execution Vulnerability (3148775)
This host is missing an important security update according to Microsoft Bulletin MS16-042. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
tsmim Lessons Library (show.php) SQL Injection
No description provided by source. =================================================================================== tsmim lessons library sql injection Vulnerabilities =================================================================================== Exploit Title: tsmim lessons library sql...
URL Shortener Script 1.0 SQL Injection
=================================================================================== url shortener script 1.0 sql injection Vulnerabilities =================================================================================== Exploit Title: url shortener script 1.0 sql injection Vulnerabilities...
When configured for Internal Database with LDAP for Authentication Only, Confluence does not check the LDAP when authenticating users
Configured Confluence to keep and manage users in its internal database, but to first try to use LDAP for authentication only, via the new interface. Debug output suggests Confluence is not bothering to check the LDAP at any point during the authentication process. More detail is available here:...
AIX 5.1 : IY37144
The remote host is missing AIX Critical Security Patch number IY37144 SECURITY: Security issue in diag script. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...