60 matches found
CVE-2020-13348
An issue has been discovered in GitLab EE affecting all versions starting from 10.2. Required CODEOWNERS approval could be bypassed by targeting a branch without the CODEOWNERS file. Affected versions are =10.2, =13.4, =13.5, 13.5.2...
Design/Logic Flaw
Private group info is leaked leaked in GitLab CE/EE version 10.2 and above, when the project is moved from private to public group. Affected versions are: =10.2, =13.4, =13.5, 13.5.2...
Citrix SD-WAN WANOP Multiple Vulnerabilities (CTX281474)
The remote Citrix SD-WAN WANOP device is version 10.2.x prior to 10.2.7b, 11.0.x prior to 11.0.3f, 11.1.x prior to 11.1.2a, 11.2.x prior to 11.2.1a. It is, therefore, affected by multiple vulnerabilities: - A denial of service DoS vulnerability originating from the management network. CVE-2020-82...
TYPO3 9.5.12 < 9.5.17 / 10.2 < 10.4.2 XSS (TYPO3-CORE-SA-2020-003)
The version of TYPO3 installed on the remote host is 9.5.12 prior to 9.5.17 or 10.2 prior to 10.4.2. It is, therefore, affected by a cross-site scripting XSS vulnerability in its link handling component due to improper validation of user-supplied input before returning it to users. An...
Security Bulletin: Public disclosed vulnerability from Apache Commons Codec affects IBM Spectrum LSF Explorer, IBM Spectrum LSF Suite, and IBM Spectrum LSF Suite for HPA
Summary Public disclosed vulnerability from Apache Commons Codec affects IBM Spectrum LSF Explorer, IBM Spectrum LSF Suite, and IBM Spectrum LSF Suite for HPA. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum LSF Explorer
Summary There are multiple vulnerabilities in IBM®Runtime Environment Java™Version 8 used by IBM Spectrum LSF Explorer. IBM Spectrum LSF Explorer has addressed the applicable CVEs. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum LSF Process Manager
Summary There are multiple vulnerabilities in IBM®Runtime Environment Java™Version 8 used by IBM Spectrum LSF Process Manager. IBM Spectrum LSF Process Manager has addressed the applicable CVEs. Vulnerability Details Refer to the security bulletinss listed in the Remediation/Fixes section Affecte...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum LSF Explorer
Summary There are multiple vulnerabilities in IBM®Runtime Environment Java™Version 8 used by IBM Spectrum LSF Explorer. IBM Spectrum LSF Explorer has addressed the applicable CVEs. Vulnerability Details Refer to the security bulletinss listed in the Remediation/Fixes section Affected Products and...
CVE-2019-10883
Citrix SD-WAN Center 10.2.x before 10.2.1 and NetScaler SD-WAN Center 10.0.x before 10.0.7 allow Command Injection...
Progress Sitefinity CMS Cross-Site Scripting Vulnerability
Progress Sitefinity CMS is an open source platform for building corporate websites and intranets. A cross-site scripting vulnerability exists in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0. A remote attacker can exploit this vulnerability to inject arbitrary web script or...
Security Bulletin: Several vulnerabilities in the libpng component of IBM Cognos Business Intelligence Server (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
Summary Several vulnerabilities has been addressed in the libpng component of IBM Cognos Business Intelligence Server. Vulnerability Details CVEID: CVE-2015-8126 DESCRIPTION: libpng is vulnerable to a buffer overflow, caused by improper bounds checking by the pngsetPLTE and pnggetPLTE functions. ...
CVE-2018-6589
CA Spectrum 10.1 prior to 10.01.02.PTF10.1.239 and 10.2.x prior to 10.2.3 allows remote attackers to cause a denial of service via unspecified vectors...
PostgreSQL Information Disclosure Vulnerability-01 (Feb 2018) - Windows
PostgreSQL is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
PostgreSQL Information Disclosure Vulnerability-01 (Feb 2018) - Linux
PostgreSQL is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
MobaXtrem 10.2 Remote Code Execution Exploit
Exploit for windows platform in category remote exploits ''' Exploit Title: MobaXtrem 10.2 telnet Server Remote Code Execution Date: 15/5/2017 Exploit Author: Sultan Albalawi Software Link: http://download.mobatek.net/10220170312132617/MobaXtermPortablev10.2.zip Version: 10.2 Tested on: win7 CVE ...
MariaDB Server 10.2.x < 10.2.4 Multiple DoS
Binary data 700000.prm...
MariaDB Server 10.2.x < 10.2.5 Multiple DoS
Binary data 700001.prm...
MariaDB 10.2.x < 10.2.3 Multiple DoS
The version of MariaDB running on the remote host is 10.2.x prior to 10.2.3. It is, therefore, affected by multiple denial of service vulnerabilities : - A denial of service vulnerability exists in the trxstateeq function due to improper handling of state errors. An authenticated, remote attacker...
HP WebInspect 10.4 - XML External Entity Injection
HP WebInspect 10.4 - XML External Entity Injection Exploit Title: HP WebInspect - XML External Entity Date: 23\04\2015 Exploit Author: Jakub Palaczynski Vendor Homepage: http://www.hp.com/ Version: 10.4, 10.3, 10.2, 10.1, 10.0, 9.x, 8.x, 7.x CVE : CVE-2015-2125 1. Create website that exploits...
Slackware Advisory SSA:2005-286-01 OpenSSL
The remote host is missing an update as announced via advisory SSA:2005-286-01. OpenVAS Vulnerability Test $Id: esoftslkssa200528601.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...