152 matches found
CVE-2015-5167
The CVE-2015-5167 entry concerns Apache Ranger’s Policy Admin Tool. The vulnerability allows remote authenticated users to bypass intended access restrictions via the REST API in Ranger versions prior to 0.5.1. Affected component: Policy Admin Tool; root cause described as an access-control bypas...
CVE-2015-0266
The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs...
Cross site scripting
Cross-site scripting XSS vulnerability in the Policy Admin Tool in Apache Ranger before 0.5.0 allows remote attackers to inject arbitrary web script or HTML via the HTTP User-Agent header...
Design/Logic Flaw
The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs...
CVE-2015-0266
The CVE concerns Apache Ranger’s Policy Admin Tool pre-0.5.0. Affected component: Policy Admin Tool in Ranger. Root cause: improper access control allowing remote authenticated users to bypass intended restrictions via direct access to module URLs. Impact: confidentiality/integrity/availability e...
CVE-2015-0265
Summary: CVE-2015-0265 describes a cross-site scripting (XSS) vulnerability in the Policy Admin Tool of Apache Ranger prior to version 0.5.0 . The issue allows remote attackers to inject arbitrary web script or HTML via the HTTP User-Agent header. Affected component: Apache Ranger Policy Admin To...
CVE-2015-0266
The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs...
CVE-2015-0265
Cross-site scripting XSS vulnerability in the Policy Admin Tool in Apache Ranger before 0.5.0 allows remote attackers to inject arbitrary web script or HTML via the HTTP User-Agent header...
[SECURITY] Fedora 22 Update: ceph-deploy-1.5.23-1.fc22
An easy to use admin tool for deploy ceph storage clusters...
MTP Poll 1.0 - Multiple XSS Vulnerabilities
No description provided by source. ?!-- MTP Poll 1.0 Multiple Remote Script Insertion Vulnerabilities Vendor: MTP Scripts Product web page: http://www.morephp.net Affected version: 1.0 Summary: More than poll is a polling system with a powerful administration tool. It features: multiple pools,...
CVE-2013-0492
Cross-site scripting XSS vulnerability in IBM Informix Open Admin Tool OAT 2.x and 3.x before 3.11.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
CVE-2013-0492
IBM Informix Open Admin Tool (OAT) suffers an XSS vulnerability (CVE-2013-0492) in OAT 3.11 and earlier. An authenticated user can craft a URL to inject arbitrary script/HTML. Remediation: upgrade to OAT 3.11.1 or later. CVSS base 3.5 (AV:N/AC:M/Au:S/C:N/I:P/A:N).
[SECURITY] Fedora 17 Update: postgresql-pgpoolAdmin-3.1.1-1.fc17
The pgpool Administration Tool is management tool of pgpool-II. It is possible to monitor, start, stop pgpool and change settings of pgpool-II...
IBM Tivoli Directory Server Web Admin tool 6.1.0.x < 6.1.0.48 / 6.2.0.x < 6.2.0.22 / 6.3.0.x < 6.3.0.11 Cross-Site Scripting Vulnerability
Binary data 6478.prm...
CVE-2012-0740
Cross-site scripting XSS vulnerability in the Web Admin Tool in IBM Tivoli Directory Server TDS 6.2 before 6.2.0.22 and 6.3 before 6.3.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the Web Admin Tool in IBM Tivoli Directory Server TDS 6.2 before 6.2.0.22 and 6.3 before 6.3.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-0740
Cross-site scripting XSS vulnerability in the Web Admin Tool in IBM Tivoli Directory Server TDS 6.2 before 6.2.0.22 and 6.3 before 6.3.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
IBM Open Admin Tool 'index.php' Multiple Cross-Site Scripting Vulnerability
IBM Open Admin Tool is prone to multiple cross-site scripting vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
IBM Open Admin Tool Version Detection
This script finds the installed IBM Open Admin Tool version. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
IBM Open Admin Tool 2.27 Cross Site Scripting
“XSS in IBM Open Admin Tool OAT2.27installwindows.exe” Product version tested : OAT v2.27 Vendore has been informed : July 27, 2010 They fix the vulnerability on : March 2011 Fixed version: OAT v2.72 Credit : sumit kumar soni [email protected] Product Link:...