4 matches found
CVE-2021-44935
glFusion CMS v1.7.9 is affected by an arbitrary user impersonation vulnerability in /publichtml/comment.php. The attacker can complete the attack remotely without interaction...
CVE-2021-44935
glFusion CMS v1.7.9 is affected by an arbitrary user impersonation vulnerability in /publichtml/comment.php. The attacker can complete the attack remotely without interaction...
Information disclosure
glFusion CMS v1.7.9 is affected by an arbitrary user impersonation vulnerability in /publichtml/comment.php. The attacker can complete the attack remotely without interaction...
PT-2014-1864 · Red Hat +1 · 389-Ds-Base +2
Name of the Vulnerable Software and Affected Versions: 389-ds-base versions 1.2.11.15 through 1.2.11.25 Description: The issue allows remote authenticated users to connect as an arbitrary user and gain privileges via the authzid parameter in a SASL/GSSAPI bind. This can lead to a violation of...