14 matches found
CVE-2024-5865
Vulnerability in Delinea Centrify PAS v. 21.3 and possibly others. The application is prone to the path traversal vulnerability allowing arbitrary files reading outside the web publish directory. Versions 23.1-HF7 and on have the patch...
CVE-2024-5865
CVE-2024-5865 affects Delinea Centrify PAS. The issue is a path traversal vulnerability that allows reading arbitrary files outside the web publish directory in Centrify PAS versions before 23.1-HF7; patchs are available in 23.1-HF7 and later. Impact centers on confidentiality (HIGH) with no indi...
CVE-2024-5865 Arbitrary File Reading in Centrify PAS
Vulnerability in Delinea Centrify PAS v. 21.3 and possibly others. The application is prone to the path traversal vulnerability allowing arbitrary files reading outside the web publish directory. Versions 23.1-HF7 and on have the patch...
siemens tecnomatix factorylink 8.0.1.1473 - Multiple Vulnerabilities
No description provided by source. Sources: http://aluigi.org/adv/factorylink1-adv.txt http://aluigi.org/adv/factorylink2-adv.txt http://aluigi.org/adv/factorylink3-adv.txt http://aluigi.org/adv/factorylink4-adv.txt http://aluigi.org/adv/factorylink5-adv.txt...
Debian Security Advisory DSA 2929-1 (ruby-actionpack-3.2 - security update)
Several vulnerabilities were discovered in Action Pack, a component of Ruby on Rails. CVE-2014-0081 actionview/lib/actionview/helpers/numberhelper.rb contains multiple cross-site scripting vulnerabilities CVE-2014-0082 actionpack/lib/actionview/template/text.rb performs symbol interning on MIME...
PT-2014-03: Arbitrary Files Reading in Nixu Namesurfer
The specialists of the Positive Research center have detected an Arbitrary Files Reading vulnerability in Nixu Namesurfer. An attacker can read any file on the server with the rights of the namesurf user. How to fix Update your sofware up to the latest version Advisory status 16.01.2014 - Vendor...
[PT-2013-17] Arbitrary Files Reading in mnoGoSearch
----------------------------------------------------------- PT-2013-17 Positive Technologies Security Advisory Arbitrary Files Reading in mnoGoSearch ----------------------------------------------------------- --- Vulnerable software mnoGoSearch Version: 3.3.12 and earlier Application link:...
mnoGoSearch 3.3.12 (search.cgi) - Arbitrary File Read
----------------------------------------------------------- PT-2013-17 Positive Technologies Security Advisory Arbitrary Files Reading in mnoGoSearch ----------------------------------------------------------- --- Vulnerable software mnoGoSearch Version: 3.3.12 and earlier Application link:...
mnoGoSearch 3.3.12 (search.cgi) - Arbitrary File Read Vulnerability
Exploit for cgi platform in category web applications --- Vulnerable software mnoGoSearch Version: 3.3.12 and earlier Application link: http://www.mnogosearch.org/ --- Severity level Severity level: High Impact: Arbitrary Files Reading Access Vector: Remote CVSS v2: Base Score: 7.8 Vector:...
mnoGoSearch 3.3.12 (search.cgi) - Arbitrary File Read
mnoGoSearch 3.3.12 search.cgi - Arbitrary File Read ----------------------------------------------------------- PT-2013-17 Positive Technologies Security Advisory Arbitrary Files Reading in mnoGoSearch ----------------------------------------------------------- --- Vulnerable software mnoGoSearch...
PT-2013-17: Arbitrary Files Reading in mnoGoSearch
Positive Technologies experts have detected an Arbitrary Files Reading vulnerability in mnoGoSearch. Passing startup parameters via QUERYSTRING http://tools.ietf.org/html/draft-robinson-www-interface-00section-7 for an application running in CGI mode can be used to set page template path variable...
PT-2011-11: Arbitary Files Reading in ManageEngine ServiceDesk Plus 8.0
The specialists of the Positive Research center have detected "Arbitary Files Reading" vulnerability in ManageEngine ServiceDesk Plus. Insufficient input filtering in file loading script allows unauthorized users to conduct traversal attack and load arbitrary files from a partition with ServiceDe...
siemens tecnomatix factorylink 8.0.1.1473 - Multiple Vulnerabilities
siemens tecnomatix factorylink 8.0.1.1473 - Multiple Vulnerabilities Sources: http://aluigi.org/adv/factorylink1-adv.txt http://aluigi.org/adv/factorylink2-adv.txt http://aluigi.org/adv/factorylink3-adv.txt http://aluigi.org/adv/factorylink4-adv.txt http://aluigi.org/adv/factorylink5-adv.txt...
siemens tecnomatix factorylink 8.0.1.1473 - Multiple Vulnerabilities
Sources: http://aluigi.org/adv/factorylink1-adv.txt http://aluigi.org/adv/factorylink2-adv.txt http://aluigi.org/adv/factorylink3-adv.txt http://aluigi.org/adv/factorylink4-adv.txt http://aluigi.org/adv/factorylink5-adv.txt http://aluigi.org/adv/factorylink6-adv.txt Advisory Archive:...