167 matches found
Discourse < 2.2.0.beta2 Information Leak Vulnerability
Discourse is prone to an information leak vulnerability in the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Multiple Cross-site Scripting (XSS) Vulnerabilities
Multiple cross-site scripting XSS vulnerabilities in actionpack/lib/actionview/helpers/numberhelper.rb in Ruby on Rails before 3.2.17, 4.0.x before 4.0.3, and 4.1.x before 4.1.0.beta2 allow remote attackers to inject arbitrary web script or HTML via the 1 format, 2 negativeformat, or 3 units...
CVE-2018-9108
CSRF in /admin/user/manage/add in QuickAppsCMS 2.0.0-beta2 allows an unauthorized remote attacker to create an account with admin privileges...
CVE-2018-8088
org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended access restrictions via crafted data. EventData in the slf4j-ext module in QOS.CH SLF4J, has been fixed in SLF4J versions 1.7.26 later and in the 2.0.x series...
CVE-2017-8802
Cross-site scripting XSS vulnerability in Zimbra Collaboration Suite aka ZCS before 8.8.0 Beta2 might allow remote attackers to inject arbitrary web script or HTML via vectors related to the "Show Snippet" functionality...
Sefrengo SQL Injection Vulnerability
Sefrengo is an open source web content management system CMS based on PHP and MySql. The system supports WYSIWYG editors, image uploads and more. A SQL injection vulnerability exists in versions of Sefrengo prior to 1.6.5 beta2. A remote attacker can exploit this vulnerability to execute arbitrar...
CVE-2015-5052
SQL injection vulnerability in Sefrengo before 1.6.5 beta2...
CVE-2015-5052
SQL injection vulnerability in Sefrengo before 1.6.5 beta2...
MantisBT < 1.2.19, 1.3.0 'view_type' XSS Vulnerability - Linux
MantisBT is prone to a cross-site scripting XSS vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...
PT-2015-3596 · Ovirt · Ovirt Engine
Name of the Vulnerable Software and Affected Versions: oVirt Engine versions prior to 3.5.0 beta2 Description: A cross-site request forgery CSRF issue allows remote attackers to hijack user authentication for requests that perform unspecified actions via a REST API request. Recommendations: For...
openengine 2.0 beta2 - Remote File Inclusion Vulnerability
No description provided by source. Author : By CrackersChild Contact: [email protected] Greetz : str0ke & All My Friends Script : openEngine 2. 0 beta2 Remote File include Vulnerable Download :http://downloads.sourceforge.net/openengine/openengine20beta2.zip?modtime=1203083918&bigmirror=0...
cmreams cms 1.3.1.1 beta2 (lfi/xss) Multiple Vulnerabilities
No description provided by source...
OpenSSL <= 0.9.8k, 1.0.0-beta2 DTLS Remote Memory Exhaustion DoS
No description provided by source. / cve-2009-1378.c OpenSSL = 0.9.8k, 1.0.0-beta2 DTLS Remote Memory Exhaustion DoS Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1378 In dtls1processoutofseqmessage the check if the...
OTRS < 3.0.0-beta2 XSS Vulnerability
Open Ticket Request System OTRS is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
OTRS < 2.4.0-beta2 Restriction Bypass Vulnerability
Open Ticket Request System OTRS is prone to a restriction bypass vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Fedora 15 : drupal7-field_permissions-1.0-0.2.beta2.fc15 (2012-1390)
Update to beta2 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...
Fedora 13 : libmikmod-3.2.0-11.beta2.fc13 (2010-13702)
Fixes CVE-2009-3995 and CVE-2009-3996. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
EZ-Blog Beta2 (category) Remote SQL Injection Vulnerability
No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ------------------...
SQL INJECTION (SHELL UPLOAD)--EZ-blog Beta2-->
------------------------------------------------- SQL INJECTION VULNERABILITY --EZ-blog Beta2-- ------------------------------------------------- CMS INFORMATION: --WEB: http://sourceforge.net/projects/ez-blog/ --DOWNLOAD: http://sourceforge.net/projects/ez-blog/ --DEMO: N/A --CATEGORY: CMS /...
EZ-Blog Beta2 - category SQL Injection
EZ-Blog Beta2 - category SQL Injection || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH!...