CVE-2019-10462

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials...

[SECURITY] Fedora 42 Update: nodejs-nodemon-3.1.9-4.fc42

Simple monitor script for use during development of a node.js app. For use during development of a node.js based application. nodemon will watch the files in the directory in which nodemon was started, and if any files change, nodemon will automatically restart your node application. nodemon does...

Elastic APM Log Information Disclosure Vulnerability

Elastic APM is a platform for monitoring and analyzing application performance from Elastic Netherlands. A log information disclosure vulnerability exists in Elastic APM Server versions prior to 8.12.1, which stems from a vulnerability that could lead to the insertion of sensitive or private...

Elastic APM Security Vulnerability

Elastic APM is a platform for monitoring and analyzing application performance from Elastic Netherlands. A security vulnerability exists in the Elastic APM Java agent. An attacker could exploit the vulnerability to execute code via elevated privilege...

Introducing Malwarebytes Application Block: How to block unauthorized software from executing on Windows endpoints

Malwarebytes is excited to announce Application Block, a new module for Nebula and OneView for MSPs which helps organizations easily thwart unwanted applications from launching on Windows endpoints. For as many applications out there that help you keep business running as usual, there are just as...

GHSA-6XW9-QQ9H-CR68 Jenkins Dynatrace Plugin vulnerable to Insufficiently Protected Credentials

Jenkins Dynatrace Application Monitoring Plugin prior to 2.1.4 stores credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system. NOTE: This plugin is marked as DEPRECATED...

GHSA-X546-XRX3-HJX4 Jenkins Dynatrace Plugin vulnerable to Cross-Site Request Forgery

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin prior to 2.1.4 allows attackers to connect to an attacker-specified URL using attacker-specified credentials. NOTE: This plugin is marked as DEPRECATED...

Compliance When Migrating to the Cloud: SQL Server Running on Azure vs. On- Premise

In the age of the data era, where data storage is increasing at an exponential rate and access to information is getting easier and faster, data security is a major concern. There are many cases where we can’t prevent people from accessing data, but we can track and investigate suspicious...

Micro Focus Application Performance Management Cross-Site Scripting Vulnerability

Micro Focus Application Performance Management is an application monitoring and management solution that lets you isolate any problems with all your applications - on-premise, cloud and mobile - in real time. A cross-site scripting vulnerability exists in Micro Focus Application Performance...

Micro Focus Application Performance Management Cross-Site Request Forgery Vulnerability

Micro Focus Application Performance Management is an application monitoring and management solution that lets you isolate any problems with all your applications - on-premise, cloud and mobile - in real time. A cross-site request forgery vulnerability exists in Micro Focus Application Performance...

Docker 访问控制错误漏洞

Docker is an open source application container engine from the American company Docker. It supports creating a container lightweight virtual machine and deploying and running applications on Linux systems, as well as automating the installation, deployment and upgrade of applications through...

tCell by Rapid7 Now Available for the European Region

Today, we are excited to announce tCell by Rapid7, our next-gen WAF and RASP solution, is now available in the Rapid7 Insight cloud’s European region. Multi-national or European organizations with data sovereignty requirements can now leverage tCell to reduce the risk of a breach via hacking of...

CVE-2019-10462

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials...

CVE-2019-10462

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials...

Design/Logic Flaw

Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...

Cross site request forgery (csrf)

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials...

Design/Logic Flaw

A missing permission check in Jenkins Dynatrace Application Monitoring Plugin allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials...

CVE-2019-10462

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials...

CVE-2019-10462

CVE-2019-10462 describes a cross-site request forgery in the Jenkins Dynatrace Application Monitoring Plugin (versions 2.1.3 and earlier). The vulnerability allows an attacker to cause the plugin to connect to an attacker‑supplied URL using attacker‑supplied credentials. NVD CVSS scores indicate ...

CVE-2019-10463

Jenkins Dynatrace Application Monitoring Plugin is affected by CVE-2019-10463. A missing permission check allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials. The vulnerability affects plugin versions prior to 2.1.5. Remediati...