11 matches found
EUVD-2008-6076
Malware in sbrugna...
CVE-2020-13359
The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...
Code injection
The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...
CVE-2020-13359
The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...
CVE-2020-13359
The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...
CVE-2020-13359
Removed by vendor...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x has unknown impact and remote attack vectors. NOTE: some of these details are obtained from third party information...
CVE-2008-6105
Cross-site scripting XSS vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party informatio...
CVE-2008-6105
The CVE-2008-6105 entry affects IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x with a cross-site scripting (XSS) vulnerability that allows remote injection of arbitrary script/HTML via unspecified vectors. NVD reports a base score of 4.3 (MEDIUM...
CVE-2008-6106
CSRF vulnerability CVE-2008-6106 affects IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x. The available documents confirm the affected products/versions but do not disclose the root cause specifics, impact details, or exploitation vectors. No mit...
CVE-2008-6106
Cross-site request forgery CSRF vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x has unknown impact and remote attack vectors. NOTE: some of these details are obtained from third party information...