4193 matches found
PYSEC-2018-150
Hyperledger Iroha versions v1.0beta and v1.0.0beta-1 are vulnerable to transaction and block signature verification bypass in the transaction and block validator allowing a single node to sign a transaction and/or block multiple times, each with a random nonce, and have other validating nodes...
CVE-2018-3756
Hyperledger Iroha versions v1.0beta and v1.0.0beta-1 are vulnerable to transaction and block signature verification bypass in the transaction and block validator allowing a single node to sign a transaction and/or block multiple times, each with a random nonce, and have other validating nodes...
PYSEC-2018-150
Hyperledger Iroha versions v1.0beta and v1.0.0beta-1 are vulnerable to transaction and block signature verification bypass in the transaction and block validator allowing a single node to sign a transaction and/or block multiple times, each with a random nonce, and have other validating nodes...
CVE-2018-3756
Hyperledger Iroha versions v1.0beta and v1.0.0beta-1 are vulnerable to transaction and block signature verification bypass in the transaction and block validator allowing a single node to sign a transaction and/or block multiple times, each with a random nonce, and have other validating nodes...
CVE-2018-3756
Hyperledger Iroha versions v1.0_beta and v1.0.0_beta-1 are vulnerable to a transaction and block signature verification bypass in the transaction and block validator. This flaw allows a single node to sign a transaction and/or block multiple times, each with a random nonce, and have other validat...
Brazilian Banking Trojan Communicates Via Microsoft SQL Server
Researchers have discovered a banking trojan making waves in Brazil with an array of tricks up its sleeve, including using an unusual command and control C&C server and a full-screen social-engineering overlay form. Researchers at IBM X-Force research on Tuesday revealed that attackers are using...
SAP Internet Transaction Server Cross-Site Scripting Vulnerability
SAP Internet Transaction Server ITS is an Internet-based transaction service program. A cross-site scripting vulnerability exists in SAP ITS version 6200.X.X. A remote attacker can inject arbitrary Web script or HTML with the help of wgate URIs. A remote attacker can exploit this vulnerability to...
SAP Internet Transaction Server 6200.x Session Fixation / Cross Site Scripting
Exploit Title: SAP Internet Transaction Server ITS 6200.X.X - Session Fixation/ Cross-Site Scripting Dork: /scripts/wgate/ Date: 25.05.2018 Exploit Author: J. Carrillo Lencina 0xd0m7 Vendor Homepage: https://www.sap.com Version: SAP ITS 6200.X.X Category: Webapps Tested on: All Platforms CVE:...
SAP Internet Transaction Server 6200.x - Session Fixation Cross-Site Scripting
SAP Internet Transaction Server 6200.x - Session Fixation Cross-Site Scripting Exploit Title: SAP Internet Transaction Server ITS 6200.X.X - Session Fixation/ Cross-Site Scripting Dork: /scripts/wgate/ Date: 25.05.2018 Exploit Author: J. Carrillo Lencina 0xd0m7 Vendor Homepage: https://www.sap.co...
SAP Internet Transaction Server 6200.x - Session Fixation / Cross-Site Scripting
Exploit Title: SAP Internet Transaction Server ITS 6200.X.X - Session Fixation/ Cross-Site Scripting Dork: /scripts/wgate/ Date: 25.05.2018 Exploit Author: J. Carrillo Lencina 0xd0m7 Vendor Homepage: https://www.sap.com Version: SAP ITS 6200.X.X Category: Webapps Tested on: All Platforms CVE:...
CVE-2018-11415
SAP Internet Transaction Server ITS 6200.X.X has Reflected Cross Site Scripting XSS via certain wgate URIs. NOTE: the vendor has reportedly indicated that there will not be any further releases of this product...
CVE-2018-11415
SAP Internet Transaction Server ITS 6200.X.X has Reflected Cross Site Scripting XSS via certain wgate URIs. NOTE: the vendor has reportedly indicated that there will not be any further releases of this product...
Cross-site scripting vulnerability in multiple IBM products (CNVD-2018-15257)
IBM Financial Transaction Manager FTM for ACH Services, FTM for Check Services, and FTM for Corporate Payment Services are financial transaction manager products from IBM USA, which are primarily used for monitoring, tracking and reporting on financial payments and transactions. A cross-site...
Event ID 9782 is thrown after successful backup
Challenge During Exchange 2010 application aware backup with "Copy only" option enabled you notice following events in Application event log on Exchange server: Log Name: Application Source: MSExchangeIS Date: 5/10/2018 5:38:39 PM Event ID: 9782 Task Category: Exchange VSS Writer Level: Error...
How to Change Where SQL Transaction Log Backups Are Temporarily Stored on SQL Server
Purpose This article documents how to change the location where SQL transaction log backups are temporarily stored on a SQL server before being transferred to the repository. This article is relevant to the following parent-job types where SQL Transaction Log Backup can be used as a child-job:...
SMT smart contract integer overflow vulnerability-vulnerability warning-the black bar safety net
! Vulnerability overview SmartMesh Token is based on the Ethereum contract tokens, referred to as SMT. Ethereum is an open source, public, distributed computing platform, SmartMesh tokens contract SmartMeshTokenContract based on ERC20Token standards. The vulnerability occurs in the transfer...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Caldera Forms plugin before 1.6.0-rc.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 a greeting message, 2 the email transaction log, or 3 an imported form...
CVE-2018-7747
Multiple cross-site scripting XSS vulnerabilities in the Caldera Forms plugin before 1.6.0-rc.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 a greeting message, 2 the email transaction log, or 3 an imported form...
Cross site scripting
IBM Financial Transaction Manager for Check Services for Multi-Platform 3.0, 3.0.2, and 3.0.2.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials...
CVE-2018-1390
IBM Financial Transaction Manager for Check Services for Multi-Platform 3.0, 3.0.2, and 3.0.2.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials...