45 matches found
EUVD-2018-20263
Malware in sbrugna...
EUVD-2021-27548
Malicious code in bioql PyPI...
GridPro Request Management For Windows Azure Pack 2.0.7905 Directory Traversal Vulnerability
GridPro Request Management for Windows Azure Pack versions 2.0.7905 and below suffer from a traversal vulnerability that can allow for arbitrary execution of Powershell scripts. PRODUCT : GridPro Request Management for Windows Azure Pack VENDOR : GridPro Software SEVERITY : Critical AFFECTED...
CVE-2021-40371
Gridpro Request Management for Windows Azure Pack before 2.0.7912 allows Directory Traversal for remote code execution, as demonstrated by ..\ in a scriptName JSON value to ServiceManagerTenant/GetVisibilityMap...
CVE-2021-40371
Gridpro Request Management for Windows Azure Pack before 2.0.7912 allows Directory Traversal for remote code execution, as demonstrated by ..\ in a scriptName JSON value to ServiceManagerTenant/GetVisibilityMap...
CVE-2021-40371
Gridpro Request Management for Windows Azure Pack before 2.0.7912 allows Directory Traversal for remote code execution, as demonstrated by ..\ in a scriptName JSON value to ServiceManagerTenant/GetVisibilityMap...
CVE-2021-40371
CVE-2021-40371 affects GridPro Request Management for Windows Azure Pack; vulnerable in versions before 2.0.7912. The flaw is a directory traversal in handling a scriptName JSON value in ServiceManagerTenant/GetVisibilityMap, enabling remote code execution. Patch is 2.0.7912. If exploited, it cou...
CVE-2021-40371
Gridpro Request Management for Windows Azure Pack before 2.0.7912 allows Directory Traversal for remote code execution, as demonstrated by ..\ in a scriptName JSON value to ServiceManagerTenant/GetVisibilityMap...
Microsoft Azure 路径遍历漏洞
Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from Microsoft Corporation USA. A path traversal vulnerability exists in Gridpro Request Management before Microsoft Azure Pack 2.0.7912 that allows directory traversal for remote code execution...
GridPro Request Management For Windows Azure Pack 2.0.7905 Directory Traversal
Certitude Securtiy Advisory - CSA-2021-003 PRODUCT : GridPro Request Management for Windows Azure Pack VENDOR : GridPro Software SEVERITY : Critical AFFECTED VERSION : =2.0.7905 IDENTIFIERS : CVE-2021-40371 PATCH VERSION : 2.0.7912 FOUND BY : Giulian Guran, Certitude Lab Introduction ------------...
Update Rollup 13.1 for Windows Azure Pack Web Sites version 2
Update Rollup 13.1 for Windows Azure Pack Web Sites version 2 Summary A remote code execution vulnerability exists when Windows Azure Pack Web Sites does not check the length of a buffer before copying memory to it. To learn more about this vulnerability, go to CVE-2019-1372.This Update Rollup 13...
KLA11655 A remote code execution vulnerability in Microsoft Azure
A remote code execution vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1372 Related products Microsoft-Windows Microsoft-Azure CVE list CVE-2019-1372 critical KB list Solution Install necessary...
The vulnerability of the Windows Azure Pack cloud platform arises from the lack of measures taken to protect the website structure. This allows attackers to execute cross-site scripting attacks with elevated privileges.
The vulnerability of the Windows Azure Pack cloud platform exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks with elevated privileges...
CVE-2018-8652
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
CVE-2018-8652
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
CVE-2018-8652
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
Cross site scripting
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
CVE-2018-8652
CVE-2018-8652 describes a cross-site scripting (XSS) vulnerability in Windows Azure Pack Rollup 13.1 where input is not properly sanitized. An authenticated attacker could exploit a crafted payload to execute script in the context of a user visiting the compromised page, potentially reading data,...
CVE-2018-8652
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
Script injection of certain symbols bypass portal UI restrictions in Update Rollup 13 for Windows Azure Pack
Script injection of certain symbols bypass portal UI restrictions in Update Rollup 13 for Windows Azure Pack Symptoms A security vulnerability exists in Update Rollup 13 for Windows Azure Pack WAP that causes script injection of certain symbols to bypass portal UI restrictions. The portal UI...