Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-6076

Malware in sbrugna...

6.8CVSS6.4AI score0.00558EPSS
Exploits0References4
OSV
OSV
added 2020/11/19 12:15 a.m.19 views

CVE-2020-13359

The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...

7.6CVSS6.4AI score0.00756EPSS
Exploits0References2
Prion
Prion
added 2020/11/19 12:15 a.m.26 views

Code injection

The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...

5.5CVSS7.3AI score0.00756EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2020/11/19 12:15 a.m.22 views

CVE-2020-13359

The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...

7.6CVSS7.1AI score0.00756EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/11/18 11:57 p.m.27 views

CVE-2020-13359

The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...

7.6CVSS7.4AI score0.00756EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2020/11/18 11:57 p.m.25 views

CVE-2020-13359

Removed by vendor...

7.6CVSS7.1AI score0.00756EPSS
Exploits0
Prion
Prion
added 2009/02/10 10:0 p.m.15 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x has unknown impact and remote attack vectors. NOTE: some of these details are obtained from third party information...

6.8CVSS7.3AI score0.00558EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2009/02/10 9:32 p.m.15 views

CVE-2008-6105

Cross-site scripting XSS vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party informatio...

5.7AI score0.01199EPSS
Exploits0References4
CVE
CVE
added 2009/02/10 9:32 p.m.41 views

CVE-2008-6105

The CVE-2008-6105 entry affects IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x with a cross-site scripting (XSS) vulnerability that allows remote injection of arbitrary script/HTML via unspecified vectors. NVD reports a base score of 4.3 (MEDIUM...

4.3CVSS5.8AI score0.01199EPSS
Exploits0References4Affected Software2
CVE
CVE
added 2009/02/10 9:32 p.m.49 views

CVE-2008-6106

CSRF vulnerability CVE-2008-6106 affects IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x. The available documents confirm the affected products/versions but do not disclose the root cause specifics, impact details, or exploitation vectors. No mit...

6.8CVSS7AI score0.00558EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2009/02/10 9:32 p.m.21 views

CVE-2008-6106

Cross-site request forgery CSRF vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x has unknown impact and remote attack vectors. NOTE: some of these details are obtained from third party information...

6.8AI score0.00558EPSS
Exploits0References3
Rows per page
Query Builder