10 matches found
CVE-2023-43742
An authentication bypass in Zultys MX-SE, MX-SE II, MX-E, MX-Virtual, MX250, and MX30 with firmware versions prior to 17.0.10 patch 17161 and 16.04 patch 16109 allows an unauthenticated attacker to obtain an administrative session via a protection mechanism failure in the authentication function...
CVE-2018-15762
Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15, versions 2.2.x prior to 2.2.7, and versions 2.3.x prior to 2.3.1, grants all users a scope which allows for privilege escalation. A remote malicious user who has been authenticated may create a new client...
IBM Lotus Domino Multiple Vulnerabilities
IBM Lotus Domino is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:lotusdomino"; if...
IBM Lotus Domino 8.5.x Multiple Vulnerabilities
According to its banner, the version of Lotus Domino on the remote host is 8.5.x and is, therefore, affected by the following vulnerabilities : - Some scripts inside the Web Help application are vulnerable to open redirect attacks. CVE-2012-2159 - The Web Help component contains a reflected...
CVE-2013-0489
Cross-site request forgery CSRF vulnerability in webadmin.nsf aka the Web Administrator client in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in webadmin.nsf aka the Web Administrator client in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators...
Cross site scripting
Cross-site scripting XSS vulnerability in webadmin.nsf aka the Web Administrator client in IBM Domino 8.5.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Design/Logic Flaw
The client applications in the DataStage Administrator client in InfoSphere DataStage in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 rely on client-side access control, which allows remote authenticated users to gain privileges via unspecified vectors...
CVE-2012-0701
The client applications in the DataStage Administrator client in InfoSphere DataStage in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 rely on client-side access control, which allows remote authenticated users to gain privileges via unspecified vectors...
Host Integration Server.2000.SKU.AdminClient
Detectoid for Administrator client of HIS 2000...