Lucene search
K

152 matches found

CVE
CVE
added 2016/04/12 2:0 p.m.51 views

CVE-2015-5167

The CVE-2015-5167 entry concerns Apache Ranger’s Policy Admin Tool. The vulnerability allows remote authenticated users to bypass intended access restrictions via the REST API in Ranger versions prior to 0.5.1. Affected component: Policy Admin Tool; root cause described as an access-control bypas...

6.5CVSS6.1AI score0.01933EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2016/04/11 7:59 p.m.23 views

CVE-2015-0266

The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs...

7.1CVSS6.6AI score0.02103EPSS
Exploits1References4
Prion
Prion
added 2016/04/11 7:59 p.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Policy Admin Tool in Apache Ranger before 0.5.0 allows remote attackers to inject arbitrary web script or HTML via the HTTP User-Agent header...

4.3CVSS6.1AI score0.04853EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2016/04/11 7:59 p.m.13 views

Design/Logic Flaw

The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs...

6.5CVSS6.8AI score0.02103EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2016/04/11 7:0 p.m.45 views

CVE-2015-0266

The CVE concerns Apache Ranger’s Policy Admin Tool pre-0.5.0. Affected component: Policy Admin Tool in Ranger. Root cause: improper access control allowing remote authenticated users to bypass intended restrictions via direct access to module URLs. Impact: confidentiality/integrity/availability e...

7.1CVSS6.5AI score0.02103EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2016/04/11 7:0 p.m.63 views

CVE-2015-0265

Summary: CVE-2015-0265 describes a cross-site scripting (XSS) vulnerability in the Policy Admin Tool of Apache Ranger prior to version 0.5.0 . The issue allows remote attackers to inject arbitrary web script or HTML via the HTTP User-Agent header. Affected component: Apache Ranger Policy Admin To...

6.1CVSS6AI score0.04853EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2016/04/11 7:0 p.m.25 views

CVE-2015-0266

The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs...

6.6AI score0.02103EPSS
Exploits1References4
Cvelist
Cvelist
added 2016/04/11 7:0 p.m.31 views

CVE-2015-0265

Cross-site scripting XSS vulnerability in the Policy Admin Tool in Apache Ranger before 0.5.0 allows remote attackers to inject arbitrary web script or HTML via the HTTP User-Agent header...

6.1AI score0.04853EPSS
Exploits1References4
Fedora
Fedora
added 2015/04/21 7:23 p.m.53 views

[SECURITY] Fedora 22 Update: ceph-deploy-1.5.23-1.fc22

An easy to use admin tool for deploy ceph storage clusters...

2.1CVSS2.5AI score0.00376EPSS
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

MTP Poll 1.0 - Multiple XSS Vulnerabilities

No description provided by source. ?!-- MTP Poll 1.0 Multiple Remote Script Insertion Vulnerabilities Vendor: MTP Scripts Product web page: http://www.morephp.net Affected version: 1.0 Summary: More than poll is a polling system with a powerful administration tool. It features: multiple pools,...

7.1AI score
Exploits0
NVD
NVD
added 2013/08/09 11:55 p.m.18 views

CVE-2013-0492

Cross-site scripting XSS vulnerability in IBM Informix Open Admin Tool OAT 2.x and 3.x before 3.11.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

3.5CVSS5.1AI score0.00765EPSS
Exploits0References2
CVE
CVE
added 2013/08/09 11:0 p.m.40 views

CVE-2013-0492

IBM Informix Open Admin Tool (OAT) suffers an XSS vulnerability (CVE-2013-0492) in OAT 3.11 and earlier. An authenticated user can craft a URL to inject arbitrary script/HTML. Remediation: upgrade to OAT 3.11.1 or later. CVSS base 3.5 (AV:N/AC:M/Au:S/C:N/I:P/A:N).

3.5CVSS5.2AI score0.00765EPSS
Exploits0References2Affected Software1
Fedora
Fedora
added 2012/05/08 4:14 a.m.21 views

[SECURITY] Fedora 17 Update: postgresql-pgpoolAdmin-3.1.1-1.fc17

The pgpool Administration Tool is management tool of pgpool-II. It is possible to monitor, start, stop pgpool and change settings of pgpool-II...

1.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/05/04 12:0 a.m.13 views

IBM Tivoli Directory Server Web Admin tool 6.1.0.x < 6.1.0.48 / 6.2.0.x < 6.2.0.22 / 6.3.0.x < 6.3.0.11 Cross-Site Scripting Vulnerability

Binary data 6478.prm...

4.3CVSS7.3AI score0.01951EPSS
Exploits0References3
NVD
NVD
added 2012/04/22 6:55 p.m.18 views

CVE-2012-0740

Cross-site scripting XSS vulnerability in the Web Admin Tool in IBM Tivoli Directory Server TDS 6.2 before 6.2.0.22 and 6.3 before 6.3.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.5AI score0.01951EPSS
Exploits0References6
Prion
Prion
added 2012/04/22 6:55 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Web Admin Tool in IBM Tivoli Directory Server TDS 6.2 before 6.2.0.22 and 6.3 before 6.3.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.01951EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2012/04/22 6:0 p.m.28 views

CVE-2012-0740

Cross-site scripting XSS vulnerability in the Web Admin Tool in IBM Tivoli Directory Server TDS 6.2 before 6.2.0.22 and 6.3 before 6.3.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.5AI score0.01951EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2011/09/14 12:0 a.m.15 views

IBM Open Admin Tool 'index.php' Multiple Cross-Site Scripting Vulnerability

IBM Open Admin Tool is prone to multiple cross-site scripting vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS6AI score0.03011EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2011/09/14 12:0 a.m.11 views

IBM Open Admin Tool Version Detection

This script finds the installed IBM Open Admin Tool version. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/08/31 12:0 a.m.33 views

IBM Open Admin Tool 2.27 Cross Site Scripting

“XSS in IBM Open Admin Tool OAT2.27installwindows.exe” Product version tested : OAT v2.27 Vendore has been informed : July 27, 2010 They fix the vulnerability on : March 2011 Fixed version: OAT v2.72 Credit : sumit kumar soni [email protected] Product Link:...

7.4AI score
Exploits0
Rows per page
Query Builder