134 matches found
CVE-2019-1003078
A cross-site request forgery vulnerability in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpldoTestConnection form validation method allows attackers to initiate a connection to an attacker-specified server...
PT-2019-11369 · Vmware +1 · Jenkins Vmware Lab Manager Slaves Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins VMware Lab Manager Slaves Plugin affected versions not specified Description: A missing permission check in the LabManager.DescriptorImpldoTestConnection form validation method allows attackers with Overall/Read permission to initiate...
PT-2019-11375 · Jenkins · Jenkins Zephyr Enterprise Test Management Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Zephyr Enterprise Test Management Plugin affected versions not specified Description: A missing permission check in the ZeeDescriptordoTestConnection form validation method allows attackers with Overall/Read permission to initiate a...
PT-2019-11374 · Jenkins · Jenkins Zephyr Enterprise Test Management Plugin
Name of the Vulnerable Software and Affected Versions: Jenkins Zephyr Enterprise Test Management Plugin affected versions not specified Description: A cross-site request forgery issue exists in the ZeeDescriptordoTestConnection form validation method, allowing attackers to initiate a connection t...
PT-2019-11372 · Jenkins · Jenkins Gearman Plugin
Name of the Vulnerable Software and Affected Versions: Jenkins Gearman Plugin affected versions not specified Description: A cross-site request forgery issue exists in the GearmanPluginConfigdoTestConnection form validation method, allowing attackers to initiate a connection to an...
CVE-2018-1000421
An improper authorization vulnerability exists in Jenkins Mesos Plugin 0.17.1 and earlier in MesosCloud.java that allows attackers with Overall/Read access to initiate a test connection to an attacker-specified Mesos server with attacker-specified credentials IDs obtained through another method,...
WebDrive 18.00.5057 - Denial of Service (PoC)
WebDrive 18.00.5057 - Denial of Service PoC Exploit Title: WebDrive 18.00.5057 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-10-31 Vendor Homepage: https://webdrive.com/ Software Link: https://webdrive.com/download/ Tested Version: 18.00.5057 Tested on: Windows 10...
WebDrive 18.00.5057 Denial Of Service
Exploit Title: WebDrive 18.00.5057 - Denial of Service PoC Discovery by: Victor MondragA3n Discovery Date: 2018-10-31 Vendor Homepage: https://webdrive.com/ Software Link: https://webdrive.com/download/ Tested Version: 18.00.5057 Tested on: Windows 10 Single Language x64 Steps to produce the cras...
WebDrive 18.00.5057 - Denial of Service (PoC)
Exploit Title: WebDrive 18.00.5057 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-10-31 Vendor Homepage: https://webdrive.com/ Software Link: https://webdrive.com/download/ Tested Version: 18.00.5057 Tested on: Windows 10 Single Language x64 Steps to produce the crash...
CVE-2016-6266
cccaajaxhandler.php in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the 1 host or 2 apikey parameter in a register action, 3 enable parameter ...
Design/Logic Flaw
cccaajaxhandler.php in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the 1 host or 2 apikey parameter in a register action, 3 enable parameter ...
Error:"Cannot Connect to the vCenter Server due to a Certificate Error"
When adding a host connection to a vmware server the following error message is displayed: "Cannot connect to the vCenter server due to a certificate error. Make sure that the appropriate certificates are installed on the VCenter server, and install appropriate certificates on every controller in...
Barracuda CudaTel 2.6.02.040 - Client Side Cross Site Scripting Vulnerability
Title: ====== Barracuda CudaTel 2.6.02.040 - Client Side Cross Site Scripting Vulnerability Date: ===== 2013-07-15 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=776 BARRACUDA NETWORK SECURITY ID: BNSEC-807 VL-ID: ===== 776 Common Vulnerability Scoring System:...
В Швеции появится первый в мире пиратский провайдер
Пиратская партия Швеции станет первым в мире "пиратским" интернет-провайдером, пишет TorentFreak. Партнером Пиратской партии по организации доступа пользователей в Сеть станет провайдер ViaEuropa. Предполагается, что новая компания PirateISP, во главе которой находится член Пиратской партии Густа...