Lucene search
K

344 matches found

CVE
CVE
added 2015/07/14 5:0 p.m.64 views

CVE-2015-4268

Cisco Identity Services Engine (ISE) Infra Admin UI is affected by CVE-2015-4268, with XSS vulnerabilities in ISE versions 1.2(1.198) and 1.3(0.876). The root cause is insufficient input validation of certain HTTP GET/POST parameters, enabling remote attackers to inject arbitrary web script or HT...

4.3CVSS5.9AI score0.01546EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2015/04/16 4:59 p.m.13 views

CVE-2015-0510

Unspecified vulnerability in the Oracle Commerce Platform component in Oracle Commerce Platform 9.4, 10.0, and 10.2 allows remote attackers to affect integrity via vectors related to Dynamo Application Framework - HTML Admin User Interface...

4.3CVSS5.6AI score0.01512EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/07 12:0 a.m.3 views

Apache Solr Cross-Site Scripting Vulnerability

Apache Solr is an open source search server. A cross-site scripting vulnerability in the Admin UI Plugin / Stats page in version 4.x of Apache Solr prior to 4.10.3 allows remote attackers to inject arbitrary web script or HTML via fieldvaluecache objects...

4.3CVSS6AI score0.04702EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2015/01/06 3:59 p.m.29 views

CVE-2014-3628

Cross-site scripting XSS vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object...

4.3CVSS5.9AI score0.04702EPSS
Exploits0References4
Prion
Prion
added 2015/01/06 3:59 p.m.21 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object...

4.3CVSS6.1AI score0.04702EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2015/01/06 3:0 p.m.22 views

CVE-2014-3628

Cross-site scripting XSS vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object...

4.3CVSS5.6AI score0.04702EPSS
Exploits0
Cvelist
Cvelist
added 2015/01/06 3:0 p.m.26 views

CVE-2014-3628

Cross-site scripting XSS vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object...

5.5AI score0.04702EPSS
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

zen cart 1.3.9f - Multiple Vulnerabilities

No description provided by source. Zen Cart v1.3.9f Multiple Remote Vulnerabilities Vendor: Zen Ventures, LLC Product web page: http://www.zen-cart.com Version affected: 1.3.9f Summary: Zen Cart is an online store management system. It is PHP-based, using a MySQL database and HTML components...

7.1AI score
Exploits0
Prion
Prion
added 2014/04/22 2:23 p.m.15 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the admin UI in Papercut MF and NG before 14.1 Build 26983 allows remote attackers to hijack the authentication of administrators via unspecified vectors...

6.8CVSS7.6AI score0.00643EPSS
Exploits0References4Affected Software2
CVE
CVE
added 2014/04/22 2:0 p.m.51 views

CVE-2014-2659

CVE-2014-2659 is a CSRF vulnerability in the admin UI of PaperCut MF & NG (affecting versions up to 14.1 build 26983; KLA10291 notes 14.1 build 26830 and earlier). The issue allows remote attackers to hijack administrator sessions via unspecified vectors. No exploit specifics are provided in the ...

6.8CVSS7.3AI score0.00643EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2014/04/22 2:0 p.m.21 views

CVE-2014-2659

Cross-site request forgery CSRF vulnerability in the admin UI in Papercut MF and NG before 14.1 Build 26983 allows remote attackers to hijack the authentication of administrators via unspecified vectors...

7.1AI score0.00643EPSS
Exploits0References4
Atlassian
Atlassian
added 2013/12/11 7:33 p.m.19 views

Secure Mail Archive with Space Permissions

panel:bgColor=e7f4fa NOTE: This suggestion is for Confluence Cloud. Using Confluence Server? See the corresponding suggestion|http://jira.atlassian.com/browse/CONFSERVER-31945. panel Mail Archives in a Space are currently not subject to any Read / View security context Permissions. They are visib...

1.1AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/12/11 7:33 p.m.17 views

Secure Mail Archive with Space Permissions

Mail Archives in a Space are currently not subject to any Read / View security context Permissions. They are visible to all space users. REQUEST: Apply Restrict Space Permissions to Mail Archive Same behavior as for Pages, restricting ability to search or view mail archive based on permissions. S...

1.4AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/12/11 7:32 p.m.17 views

Secure Mail Archive with Space Permissions

Mail Archives in a Space are currently not subject to any Read / View security context Permissions. They are visible to all space users. REQUEST: Apply Restrict Space Permissions to Mail Archive Same behavior as for Pages, restricting ability to search or view mail archive based on permissions. S...

1.4AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/12/11 7:32 p.m.18 views

Secure Mail Archive with Space Permissions

panel:bgColor=e7f4fa NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion|http://jira.atlassian.com/browse/CONFCLOUD-31944. panel Mail Archives in a Space are currently not subject to any Read / View security context Permissions. They are visibl...

1.1AI score
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2012/07/31 12:0 a.m.24 views

Dr. Web Control Center 6.00.3.201111300 Cross Site Scripting

Dr. Web Control Center Admin UI Remote Script Code Injection ============================================================= Affected Products/Versions -------------------------- Product Name: Dr. Web Enterprise Server Version Number: 6.00.3.201111300 Product/Company Information...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2012/07/31 12:0 a.m.23 views

Dr. Web Control Center 6.00.3.201111300 - Cross-Site Scripting

Dr. Web Control Center 6.00.3.201111300 - Cross-Site Scripting Dr. Web Control Center Admin UI Remote Script Code Injection ============================================================= Affected Products/Versions -------------------------- Product Name: Dr. Web Enterprise Server Version Number:...

6.8AI score
Exploits0
Veeam
Veeam
added 2011/11/30 12:0 a.m.15 views

Unable to Connect Hyper-V Host via WMI. User credentials cannot be used for local connections.

Challenge When trying to add a Hyper-V host, you receive the error "Unable to connect via WMI. User Credentials cannot be used for local connections." Cause Not all of the prerequisites have been installed when using Veeam Backup & Replication. Solution Before adding Hyper-V servers, check the...

6.8AI score
Exploits0
NVD
NVD
added 2011/02/18 5:0 p.m.20 views

CVE-2011-0453

F-Secure Internet Gatekeeper for Linux 3.x before 3.03 does not require authentication for reading access logs, which allows remote attackers to obtain potentially sensitive information via a TCP session on the admin UI port...

5CVSS6.3AI score0.02347EPSS
Exploits0References6
Prion
Prion
added 2011/02/18 5:0 p.m.21 views

Authentication flaw

F-Secure Internet Gatekeeper for Linux 3.x before 3.03 does not require authentication for reading access logs, which allows remote attackers to obtain potentially sensitive information via a TCP session on the admin UI port...

5CVSS6.9AI score0.02347EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder