3965 matches found
Information Disclosure
ansible is vulnerable to information disclosure. When Sumologic and Splunk callback plugins are used with a setting of nolog parameter set to true, it disrespects the setting, causing a leakage of tasks results events to collectors and discloses any sensitive data...
CVE-2019-16881
An issue was discovered in the portaudio-rs crate through 0.3.1 for Rust. There is a use-after-free with resultant arbitrary code execution because of a lack of unwind safety in streamcallback and streamfinishedcallback...
Denial of Service
Overview Versions of apostrophe prior to 2.97.1 are vulnerable to Denial of Service. The apostrophe-jobs module sets a callback for incoming jobs and doesn't clear it regardless of its status. This causes the server to accumulate callbacks, allowing an attacker to start a large number of jobs and...
Stream callback function is not unwind safe
Affected versions of this crate is not panic safe within callback functions streamcallback and streamfinishedcallback. The call to user-provided closure might panic before a mem::forget call, which then causes a use after free that grants attacker to control the callback function pointer. This...
RUSTSEC-2019-0022 Stream callback function is not unwind safe
Affected versions of this crate is not panic safe within callback functions streamcallback and streamfinishedcallback. The call to user-provided closure might panic before a mem::forget call, which then causes a use after free that grants attacker to control the callback function pointer. This...
Starbucks: Improper handling of payment callback allows topping up a Swiss Starbucks Card bypassing actual payment via a crafted success message
khovansky uncovered that an attacker could register on https://xtras.starbucks.ch and utilizing that registration, subsequently generate a reset password email via https://card.starbucks.ch After resetting the password for the account, khovansky noticed this process auto generates a virtual Swiss...
Design/Logic Flaw
In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function...
PT-2019-4686 · Mediawiki · Mediawiki Oauth2 Client Extension
Name of the Vulnerable Software and Affected Versions: MediaWiki OAuth2 Client extension versions prior to 0.4 Description: A CSRF issue exists due to the OAuth2 state parameter not being checked in the callback function, allowing a remote attacker to perform a cross-site request forgery. This...
Mail.ru: Blind XSS in operator's interface for 33slona.ru
Blind stored XSS in operator's interface of 33slona.ru via call back request...
Microsoft Windows 10 1903/1809 - RPCSS Activation Kernel Security Callback Privilege Escalation
Windows: RPCSS Activation Kernel Security Callback EoP Platform: Windows 10 1903/1809 not tested earlier Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: User boundary Summary: The RPCSS Activation Kernel RPC server’s security callback can be bypassed resulti...
Microsoft Windows 10 19031809 - RPCSS Activation Kernel Security Callback Privilege Escalation
Microsoft Windows 10 19031809 - RPCSS Activation Kernel Security Callback Privilege Escalation Windows: RPCSS Activation Kernel Security Callback EoP Platform: Windows 10 1903/1809 not tested earlier Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: User...
[SECURITY] Fedora 29 Update: js-jquery-jstree-3.3.8-1.fc29
jsTree is jquery plugin, that provides interactive trees. It is absolutely free, open source and distributed under the MIT license. jsTree is easily extendable, themable and configurable, it supports HTML & JSON data sources, AJAX & async callback loading. jsTree functions properly in either...
EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1516)
According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The hi3660stubclkprobe function in drivers/clk/hisilicon/clk-hi3660-stub.c in the Linux kernel before 4.16 allows loca...
CVE-2019-5431
This vulnerability was caused by an incomplete fix to CVE-2017-0911. Twitter Kit for iOS versions 3.0 to 3.4.0 is vulnerable to a callback verification flaw in the "Login with Twitter" component allowing an attacker to provide alternate credentials. In the final step of "Login with Twitter"...
Authentication flaw
This vulnerability was caused by an incomplete fix to CVE-2017-0911. Twitter Kit for iOS versions 3.0 to 3.4.0 is vulnerable to a callback verification flaw in the "Login with Twitter" component allowing an attacker to provide alternate credentials. In the final step of "Login with Twitter"...
CVE-2019-5431
This vulnerability was caused by an incomplete fix to CVE-2017-0911. Twitter Kit for iOS versions 3.0 to 3.4.0 is vulnerable to a callback verification flaw in the "Login with Twitter" component allowing an attacker to provide alternate credentials. In the final step of "Login with Twitter"...
CVE-2019-5431
Twitter Kit for iOS versions 3.0–3.4.0 is affected by a callback verification flaw in the Login with Twitter component. The root cause is an incomplete validation of the authentication response sent via the registered custom URL scheme, allowing an attacker to forge the final step of the login fl...
The vulnerability of the xen_failsafe_callback function in Xen hypervisors allows a malicious actor to trigger a service failure or increase their privileges.
The vulnerability of the xenfailsafecallback function in Xen hypervisors is related to deficiencies in access control. Exploiting this vulnerability could allow a attacker running on a guest OS to cause service failures or increase their privileges...
DEBIAN-CVE-2018-20449
The hidmachanstats function in drivers/dma/qcom/hidmadbg.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "callback=" lines in a debugfs file...
Chrome V8TrustedTypePolicyOptions::ToImpl Type Confusion
Chrome: Type confusion in V8TrustedTypePolicyOptions::ToImpl VULNERABILITY DETAILS The binding code generator doesn't add checks to ensure that the callback properties of a dictionary are indeed JS functions. For example, for the the TrustedTypePolicyOptions dictionary:...