338 matches found
[SECURITY] Fedora 28 Update: qt5-qtwebengine-5.10.1-4.fc28
Qt5 - QtWebEngine components...
JoomScan 0.0.5 - OWASP Joomla Vulnerability Scanner Project
OWASP JoomScan short for Joomla Vulnerability Scanner is an opensource project in perl programming language to detect Joomla CMS vulnerabilities and analysis them. WHY OWASP JOOMSCAN ? If you want to do a penetration test on a Joomla CMS, OWASP JoomScan is Your best shot ever! This Project is bei...
JoomScan - OWASP Joomla Vulnerability Scanner Project
OWASP JoomScan short for Joomla Vulnerability Scanner is an opensource project in perl programming language to detect Joomla CMS vulnerabilities and analysis them. WHY OWASP JOOMSCAN ? If you want to do a penetration test on a Joomla CMS, OWASP JoomScan is Your best shot ever! This Project is bei...
Security and Quality Rollup for .NET Framework (January 2018)
The .NET Framework installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerabilities: - A Denial of Service vulnerability exists when .NET, and .NET core, improperly process XML documents. An attacker who successfully exploited this...
TIBCO Security Advisory: December 12, 2017 - tibbr -2017-5530
SAML protocol handling errors in tibbr Original release date: December 12, 2017 Last revised:-- CVE-2017-5530 Source: TIBCO SoftwareInc. SAML protocol handling errors in tibbr Original release date: December 12, 2017 Last revised: -- Source: TIBCO Software Inc. Systems Affected tibbr Community...
[SECURITY] Fedora 26 Update: qt5-qtwebengine-5.9.3-1.fc26
Qt5 - QtWebEngine components...
[SECURITY] Fedora 27 Update: qt5-qtwebengine-5.9.3-1.fc27
Qt5 - QtWebEngine components...
CVE-2017-8151
Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have an authentication bypass vulnerability due to the improper design of some components. An attacker can get a user's smart phone and install malicious apps in the mobile phone, allowing the attacker to reset the...
Authentication flaw
Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have an authentication bypass vulnerability due to the improper design of some components. An attacker can get a user's smart phone and install malicious apps in the mobile phone, allowing the attacker to reset the...
CVE-2017-8151
Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have an authentication bypass vulnerability due to the improper design of some components. An attacker can get a user's smart phone and install malicious apps in the mobile phone, allowing the attacker to reset the...
Multiple Cross-Site Scripting Vulnerabilities in WordPress WpJobBoard
WordPress WpJobBoard is a job panel plugin for WordPress. wpjb-email, wpjb-job, wpjb-application, and wpjb-membership are components of it. wpjb-email is an email component. wpjb- job is a job management component. Multiple cross-site scripting vulnerabilities exist in the 'query' and 'id'...
macOS < 10.13 Multiple Vulnerabilities
The remote host is running a version of Mac OS X that is prior to 10.10.5, 10.11.x prior to 10.11.6, 10.12.x prior to 10.12.6, or is not macOS 10.13. It is, therefore, affected by multiple vulnerabilities in the following components : - apache - AppSandbox - AppleScript - Application Firewall - A...
[SECURITY] Fedora 24 Update: qt5-qtwebengine-5.6.3-0.2.20170712gitee719ad313e564.fc24
Qt5 - QtWebEngine components...
CVE-2017-11612
In Joomla! before 3.7.4, inadequate filtering of potentially malicious HTML tags leads to XSS vulnerabilities in various components...
CVE-2017-11612
In Joomla! before 3.7.4, inadequate filtering of potentially malicious HTML tags leads to XSS vulnerabilities in various components...
[SECURITY] Fedora 26 Update: qt5-qtwebkit-5.212.0-0.5.alpha2.fc26
Qt5 - QtWebKit components...
[SECURITY] Fedora 26 Update: qt5-qtwebengine-5.9.1-1.fc26
Qt5 - QtWebEngine components...
[20170703] - Core - XSS Vulnerability
Inadequate filtering of multibyte characters leads to XSS vulnerabilities in various components...
CVE-2017-0891
Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to an inadequate escaping of error messages leading to XSS vulnerabilities in multiple components...
CVE-2017-0891
Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to an inadequate escaping of error messages leading to XSS vulnerabilities in multiple components...