43 matches found
EUVD-2018-20263
Malware in sbrugna...
EUVD-2021-27548
Malicious code in bioql PyPI...
GridPro Request Management For Windows Azure Pack 2.0.7905 Directory Traversal Vulnerability
GridPro Request Management for Windows Azure Pack versions 2.0.7905 and below suffer from a traversal vulnerability that can allow for arbitrary execution of Powershell scripts. PRODUCT : GridPro Request Management for Windows Azure Pack VENDOR : GridPro Software SEVERITY : Critical AFFECTED...
CVE-2021-40371
Gridpro Request Management for Windows Azure Pack before 2.0.7912 allows Directory Traversal for remote code execution, as demonstrated by ..\ in a scriptName JSON value to ServiceManagerTenant/GetVisibilityMap...
CVE-2021-40371
Gridpro Request Management for Windows Azure Pack before 2.0.7912 allows Directory Traversal for remote code execution, as demonstrated by ..\ in a scriptName JSON value to ServiceManagerTenant/GetVisibilityMap...
CVE-2021-40371
Gridpro Request Management for Windows Azure Pack before 2.0.7912 allows Directory Traversal for remote code execution, as demonstrated by ..\ in a scriptName JSON value to ServiceManagerTenant/GetVisibilityMap...
CVE-2021-40371
CVE-2021-40371 affects GridPro Request Management for Windows Azure Pack; vulnerable in versions before 2.0.7912. The flaw is a directory traversal in handling a scriptName JSON value in ServiceManagerTenant/GetVisibilityMap, enabling remote code execution. Patch is 2.0.7912. If exploited, it cou...
Microsoft Azure 路径遍历漏洞
Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from Microsoft Corporation USA. A path traversal vulnerability exists in Gridpro Request Management before Microsoft Azure Pack 2.0.7912 that allows directory traversal for remote code execution...
GridPro Request Management For Windows Azure Pack 2.0.7905 Directory Traversal
Certitude Securtiy Advisory - CSA-2021-003 PRODUCT : GridPro Request Management for Windows Azure Pack VENDOR : GridPro Software SEVERITY : Critical AFFECTED VERSION : =2.0.7905 IDENTIFIERS : CVE-2021-40371 PATCH VERSION : 2.0.7912 FOUND BY : Giulian Guran, Certitude Lab Introduction ------------...
Update Rollup 13.1 for Windows Azure Pack Web Sites version 2
Update Rollup 13.1 for Windows Azure Pack Web Sites version 2 Summary A remote code execution vulnerability exists when Windows Azure Pack Web Sites does not check the length of a buffer before copying memory to it. To learn more about this vulnerability, go to CVE-2019-1372.This Update Rollup 13...
KLA11655 A remote code execution vulnerability in Microsoft Azure
A remote code execution vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1372 Related products Microsoft-Windows Microsoft-Azure CVE list CVE-2019-1372 critical KB list Solution Install necessary...
CVE-2018-8652
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
CVE-2018-8652
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
CVE-2018-8652
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
Cross site scripting
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
CVE-2018-8652
CVE-2018-8652 describes a cross-site scripting (XSS) vulnerability in Windows Azure Pack Rollup 13.1 where input is not properly sanitized. An authenticated attacker could exploit a crafted payload to execute script in the context of a user visiting the compromised page, potentially reading data,...
CVE-2018-8652
A Cross-site Scripting XSS vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1...
Script injection of certain symbols bypass portal UI restrictions in Update Rollup 13 for Windows Azure Pack
Script injection of certain symbols bypass portal UI restrictions in Update Rollup 13 for Windows Azure Pack Symptoms A security vulnerability exists in Update Rollup 13 for Windows Azure Pack WAP that causes script injection of certain symbols to bypass portal UI restrictions. The portal UI...
Microsoft Windows Azure Pack CVE-2018-8652 Cross Site Scripting Vulnerability
Description Microsoft Windows Azure Pack is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. Thi...
KLA11883 ACE vulnerability in Microsoft Azure
A cross-site-scripting XSS vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2018-8652 Related products Microsoft-Windows Microsoft-Azure CVE list CVE-2018-8652 warning KB list 4480788 Solution Install...