9 matches found
CVE-2026-35391
Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, the getClientIP function in lib/admin/session.ts trusted the first leftmost entry of the X-Forwarded-For header, which is fully controlled by the client. An attacker could forge their source IP address to...
EUVD-2024-33466
Malicious code in bioql PyPI...
CVE-2024-10863
: Insufficient Logging vulnerability in OpenText Secure Content Manager on Windows allows Audit Log Manipulation.This issue affects Secure Content Manager: from 10.1 before 24.4. End-users can potentially exploit the vulnerability to exclude audit trails from being recorded on the client side...
CVE-2024-10863
: Insufficient Logging vulnerability in OpenText Secure Content Manager on Windows allows Audit Log Manipulation.This issue affects Secure Content Manager: from 10.1 before 24.4. End-users can potentially exploit the vulnerability to exclude audit trails from being recorded on the client side...
CVE-2024-10863 Client-side audit exclusion vulnerability
: Insufficient Logging vulnerability in OpenText Secure Content Manager on Windows allows Audit Log Manipulation.This issue affects Secure Content Manager: from 10.1 before 24.4. End-users can potentially exploit the vulnerability to exclude audit trails from being recorded on the client side...
CVE-2024-10863 Client-side audit exclusion vulnerability
: Insufficient Logging vulnerability in OpenText Secure Content Manager on Windows allows Audit Log Manipulation.This issue affects Secure Content Manager: from 10.1 before 24.4. End-users can potentially exploit the vulnerability to exclude audit trails from being recorded on the client side...
CVE-2024-10863
CVE-2024-10863 concerns OpenText Secure Content Manager on Windows. It is an Insufficient Logging vulnerability that can enable Audit Log Manipulation on the client side. Affected range includes OpenText Secure Content Manager versions from 10.1 up to, but not including, 24.4 (per the primary des...
CVE-2017-3822
A vulnerability in the logging subsystem of the Cisco Firepower Threat Defense FTD Firepower Device Manager FDM could allow an unauthenticated, remote attacker to add arbitrary entries to the audit log. This vulnerability affects Cisco Firepower Threat Defense Software versions 6.1.x on the...
CVE-2007-3102
Unspecified vulnerability in the linuxauditrecordevent function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows remote attackers to write arbitrary characters to an audit log via a crafted username. NOTE: some of these details are obtained from third party informatio...