903 matches found
CentOS 5 : subversion (CESA-2009:1203)
Updated subversion packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Subversion SVN is a concurrent version control system which enables one or mo...
SAP Cfolders Stored Cross Site Scripting
Digital Security Research Group DSecRG Advisory DSECRG-09-014 Original advisory: http://dsecrg.com/pages/vul/show.php?id=114 Application: SAP Cfolders included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms Vendor URL: http://SAP.com Bugs: Multiple Stored XSS Risk: Hight...
RSA keynote: Coviello calls for collaboration
From GCN William Jackson The rapidly evolving collaborative information infrastructure offers developers an opportunity to create true security by building it into information technology systems, said Arthur Coviello, president of RSA, EMC’s security division. “We are at a critical inflexion poin...
[SECURITY] Fedora 10 Update: trickle-1.07-7.fc10
trickle is a portable lightweight userspace bandwidth shaper. It can run in collaborative mode or in stand alone mode. trickle works by taking advantage of the unix loader preloading. Essentially it provides, to the application, a new version of the functionality that is required to send and...
Fedora Update for moin FEDORA-2008-3301
Check for the Version of moin OpenVAS Vulnerability Test Fedora Update for moin FEDORA-2008-3301 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for moin FEDORA-2008-3328
Check for the Version of moin OpenVAS Vulnerability Test Fedora Update for moin FEDORA-2008-3328 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for moin FEDORA-2008-1562
Check for the Version of moin OpenVAS Vulnerability Test Fedora Update for moin FEDORA-2008-1562 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for moin FEDORA-2008-1880
Check for the Version of moin OpenVAS Vulnerability Test Fedora Update for moin FEDORA-2008-1880 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for moin FEDORA-2008-1486
Check for the Version of moin OpenVAS Vulnerability Test Fedora Update for moin FEDORA-2008-1486 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Design/Logic Flaw
Unspecified vulnerability in the Collaborative Workspaces component in Oracle Collaboration Suite 10.1.2 allows remote authenticated users to affect confidentiality via unknown vectors...
Debian DSA-1577-1 : gforge - insecure temporary files
Stephen Gran and Mark Hymers discovered that some scripts run by GForge, a collaborative development tool, open files in write mode in a potentially insecure manner. This may be exploited to overwrite arbitrary files on the local system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
Debian Security Advisory DSA 1459-1 (gforge)
The remote host is missing an update to gforge announced via advisory DSA 1459-1. OpenVAS Vulnerability Test $Id: deb14591.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1459-1 gforge Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
DSA-1402-1 gforge - insecure temporary files
Bulletin has no description...
C-Arbre <= 0.6PR7 (root_path) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================= C-Arbre = 0.6PR7 rootpath Remote File Inclusion Vulnerability ================================================================= \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / |...
Claroline Software Detection
The remote host is running Claroline, an open source, web-based, collaborative learning environment written in PHP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid22409; scriptversion"1.17"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01";...
CVE-2006-3521
The CVE describes multiple cross-site scripting (XSS) vulnerabilities in SiteForge Collaborative Development Platform, specifically in index/siteforge-bugs-action/proj.siteforge, affecting version 1.0.4 and earlier. The issue arises from unescaped user-controlled input via the parameters _status,...
Claroline ldap.inc.php clarolineRepositorySys Parameter Remote File Inclusion
The remote host is running Claroline, an open source, web-based, collaborative learning environment written in PHP. The version of Claroline installed on the remote host fails to sanitize input to the 'clarolineRepositorySys' parameter of the 'claroline/auth/extauth/drivers/ldap.inc.php' script...
Cross site scripting
Cross-site scripting XSS vulnerability in popupimage in Collaborative Portal Server CPS 3.4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the pos argument...
CVE-2006-2141
Cross-site scripting XSS vulnerability in popupimage in Collaborative Portal Server CPS 3.4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the pos argument...
CVE-2006-2141
CVE-2006-2141 describes a cross-site scripting (XSS) vulnerability in the popup_image function of Collaborative Portal Server (CPS) up to version 3.4.0 and earlier. The issue allows an attacker to inject arbitrary web script or HTML by supplying a malicious value in the pos parameter. The connect...