11 matches found
EUVD-2005-1415
Malware in sbrugna...
EUVD-2022-48766
Malicious code in bioql PyPI...
MAL-2024-7514 Malicious code in sap-adminpwd (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 23bfde372fc26e0b22e1a15229e00968169d120e25705d45ee12e40ad16edeec The OpenSSF Package Analysis project identified 'sap-adminpwd' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in sap-adminpwd (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 23bfde372fc26e0b22e1a15229e00968169d120e25705d45ee12e40ad16edeec The OpenSSF Package Analysis project identified 'sap-adminpwd' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...
CVE-2022-45922
An issue was discovered in OpenText Content Suite Platform 22.1 16.2.19.1803. The request handler for ll.KeepAliveSession sets a valid AdminPwd cookie even when the Web Admin password was not entered. This allows access to endpoints, which require a valid AdminPwd cookie, without knowing the...
Design/Logic Flaw
An issue was discovered in OpenText Content Suite Platform 22.1 16.2.19.1803. The request handler for ll.KeepAliveSession sets a valid AdminPwd cookie even when the Web Admin password was not entered. This allows access to endpoints, which require a valid AdminPwd cookie, without knowing the...
CVE-2022-45922
An issue was discovered in OpenText Content Suite Platform 22.1 16.2.19.1803. The request handler for ll.KeepAliveSession sets a valid AdminPwd cookie even when the Web Admin password was not entered. This allows access to endpoints, which require a valid AdminPwd cookie, without knowing the...
PT-2023-14795 · Opentext · Opentext Content Suite Platform
Name of the Vulnerable Software and Affected Versions: OpenText Content Suite Platform version 16.2.19.1803 Description: An issue was discovered where the request handler for ll.KeepAliveSession sets a valid AdminPwd cookie even when the Web Admin password was not entered. This allows access to...
Xxasp <= 3.3.2 SQL Injection
Exploit for unknown platform in category web applications ============================ Xxasp = 3.3.2 SQL Injection ============================ Name: Xxasp Version: 3.3.2 ===========================================================...
CVE-2005-1412
SQL injection vulnerability in verify.asp for Ecomm Professional Guestbook 3.x allows remote attackers to execute arbitrary SQL commands via the AdminPWD parameter...
CVE-2005-1412
CVE-2005-1412 affects Ecomm Professional Guestbook 3.x. The vulnerability is a SQL injection in verify.asp that allows remote attackers to execute arbitrary SQL commands via the AdminPWD parameter. The Red Hat/ vendor CVE references corroborate the description. The documents do not provide explic...