23 matches found
Fortinet FortiMail和FortiClient 数据伪造问题漏洞
Fortinet FortiMail and FortiClient are both products of the U.S. Fitta Fortinet. fortiMail is a set of e-mail security gateway products. The product provides e-mail security and data protection features. FortiClient is a structure agent. Used to provide protection, compliance, and secure access i...
The vulnerability of the Jenkins Security Inspector Plugin lies in the insufficient validation of the authenticity of POST requests, allowing attackers to carry out CSRF attacks.
The vulnerability of the Jenkins Security Inspector Plugin is related to insufficient verification of the authenticity of POST requests. Exploiting this vulnerability allows a malicious actor to execute a CSRF attack remotely...
CVE-2021-27428
GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration tool – Enervista UR Setup. This UR Setup tool validates the authenticity and integrity of firmware file before uploading the UR IED. An illegitimate user could upgrade firmware without...