92 matches found
EUVD-2007-1286
Malware in sbrugna...
EUVD-2007-1288
Malware in sbrugna...
EUVD-2007-1287
Malware in sbrugna...
Debian: Security Advisory (DLA-512-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SourceForge Kagemai Cross-Site Scripting Vulnerability
SourceForge Organization kagemai is an application of the Japanese open source SourceForge Organization . A Web-based bug tracking system BTS. Kagemai 0.8.6 suffers from a cross-site scripting vulnerability that could allow an attacker to execute arbitrary script in a user's web browser...
SourceForge Kagemai Cross-Site Scripting Vulnerability (CNVD-2021-24011)
SourceForge Organization kagemai is an application of the Japanese open source SourceForge Organization . A Web-based bug tracking system BTS. Kagemai 0.8.6 suffers from a cross-site scripting vulnerability that can be exploited by an attacker to execute arbitrary script in a user's web browser...
JVN#11438679: Kagemai vulnerable to cross-site request forgery
Kagemai provided by daifukuya.com is a bug tracking system to share bug information of the software being developed among its development team. Kagemai contains a cross-site request forgery vulnerability CWE-352 which allows unintended operations if a user with an administrative privilege views a...
SourceForge Kagemai 跨站脚本漏洞
SourceForge Organization kagemai is an application of the Japanese open source SourceForge Organization . A Web-based bug tracking system BTS. Kagemai 0.8.6 suffers from a cross-site scripting vulnerability that could allow an attacker to execute arbitrary script in a user's web browser...
CVE-2020-25830
CVE-2020-25830 affects MantisBT before 2.24.3. The root cause is improper escaping of a custom field name, permitting HTML injection and, if CSP allows, arbitrary JavaScript execution when updating that custom field via bug_actiongroup_page.php. Evidence in multiple sources ties this to an XSS ri...
[SECURITY] Fedora 27 Update: bugzilla-5.0.4-1.fc27
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
[SECURITY] Fedora 24 Update: bugzilla-5.0.3-1.fc24
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
[SECURITY] Fedora 22 Update: bugzilla-4.4.11-1.fc22
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
[SECURITY] Fedora 21 Update: bugzilla-4.4.10-1.fc21
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
Security advisory for Bugzilla 5.0, 4.4.9, and 4.2.14
Summary ======= Bugzilla is a Web-based bug-tracking system used by a large number of software projects. The following security issue has been discovered in Bugzilla: Login names longer than 127 characters can be corrupted, which could lead to the creation of a user account with an unexpected ema...
Bugzilla Privilege Escalation Security Patch
Developers and organizations that use the Bugzilla open source bug-tracking system should upgrade to current versions after the disclosure of details of a vulnerability in its email-based permissions process. The flaw, CVE-2015-4499, was patched last week in versions 4.2.15, 4.4.10 and 5.0.1 afte...
Hacked the Mozilla Bug Tracking System Library use undisclosed vulnerabilities to attack users-vulnerability warning-the black bar safety net
Hacks from the Mozilla Bug Tracking System Bugzilla successfully steal sensitive vulnerability information, and the use of undisclosed vulnerabilities to attack Firefox users. 1 8 5 not disclosed vulnerability is accessed Mozilla company in the official blog post on the hacking case, and pointed...
[SECURITY] [DSA 3120-1] mantis security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3120-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 06, 2015 http://www.debian.org/security/faq -...
Security advisory for Bugzilla 4.5.5, 4.4.5, 4.2.10, and 4.0.14
Summary ======= Bugzilla is a Web-based bug-tracking system used by a large number of software projects. The following security issue has been discovered in Bugzilla: An attacker can get access to some bug information using the victim's credentials using a specially crafted HTML page. All affecte...
Debian DSA-3030-1 : mantis - security update
Multiple SQL injection vulnerabilities have been discovered in the Mantis bug tracking system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-3030. The text itself is copyright C Software...
DSA-3030-1 mantis - security update
Bulletin has no description...