Lucene search
K

4 matches found

Cisco
Cisco
added 2012/06/12 8:59 p.m.21 views

Cisco Small Business Devices Cross-Site Scripting Vulnerability

Cisco Small Business Voice Gateways and Analog Telephone Adapters ATAs and Cisco Small Business SPA 500 Series IP Phones contain a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to a lack of sanitization of...

4.3CVSS2AI score0.00943EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2011/06/29 12:0 a.m.5 views

PT-2011-16: Denial Of Service in Mozilla Firefox

Positive Research Center has discovered a Denial of Service vulnerability in Mozilla Firefox. Due to insufficient checks of input parameters of HTML5 Canvas' Arc method, Mozilla Firefox allows a remote attacker to cause a denial of service infinite loop. Example of HTML code triggering the...

5CVSS7.4AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2011/06/24 12:0 a.m.7 views

PT-2011-13: Privilege Gaining in ManageEngine ServiceDesk Plus 8.0.0

The specialists of the Positive Research center have revealed privilege gaining vulnerability in ManageEngine ServiceDesk Plus. Insufficient privilege validation allows attackers with guest privileges account guest/guest to create a user with servicedesk administrator privileges via HTTP GET...

6.5CVSS7.2AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2011/06/24 12:0 a.m.5 views

PT-2011-10: Abritrary Files Loading in ManageEngine ServiceDesk Plus 8.0

The specialists of the Positive Research center have detected "Abritrary Files Loading" vulnerability in ManageEngine ServiceDesk Plus. Insufficient CSV file input filtering in user import script allows attackers with guest privileges account guest/guest overwrite an arbitrary file in bin folder ...

8.5CVSS8AI score
Exploits0References3
Rows per page
Query Builder