27 matches found
PT-2026-41354
phpMyFAQ before 4.1.2 contains missing permission checks in ConfigurationTabController.php where 12 endpoints use userIsAuthenticated instead of userHasPermissionCONFIGURATION EDIT. Any authenticated user can enumerate system configuration metadata including permission model, cache backend, mail...
OpenSCAP Libraries 1.3.13
The openscap project is a set of open source libraries that support the SCAP Security Content Automation Protocol set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF...
OpenSCAP Libraries 1.3.12
The openscap project is a set of open source libraries that support the SCAP Security Content Automation Protocol set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF...
NetIQ Identity Manager System or Configuration Enumeration Vulnerability
NetIQ Identity Manager is a comprehensive identity and access control solution. A system or configuration enumeration vulnerability exists in NetIQ Identity Manager versions prior to 4.7. An attacker could exploit this vulnerability for system or configuration enumeration using details provided i...
Design/Logic Flaw
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system or configuration enumeration...
CVE-2018-1349
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system or configuration enumeration...
CVE-2018-1349
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system or configuration enumeration...
CVE-2018-1349 NetIQ Identity Manager Driver Component Log File Information Leakage
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system or configuration enumeration...
CVE-2018-1349
CVE-2018-1349 affects the NetIQ Identity Manager driver log file, where versions prior to 4.7 expose details that could aid in system or configuration enumeration. The vulnerability is a log file information leakage issue in the NetIQ Identity Manager product. The provided connected documents cor...
WMI EMET Configuration Enumeration (deprecated)
By connecting to the remote Windows host with the supplied credentials, this plugin uses WMI to enumerate the EMET configuration. This plugin has been deprecated and replaced by microsoftemetinstalled.nasl plugin ID 49675. Binary data wmienumemet.nbin...
Microsoft URLScan 2.5/RSA Security SecurID 5.0 - Configuration Enumeration
source: https://www.securityfocus.com/bid/8419/info A weakness has been discovered in Microsoft URLScan and RSA Security SecurID when used in conjunction on a web server. The problem is said to occur due to the order in which the products are placed within the global ISAPI filter list. When the...
CVE-1999-0631
CVE-1999-0631 is rejected/not used per the initial description.
CVE-1999-0622
CVE-1999-0622 entry is rejected/not used per the initial description.
CVE-1999-0645
CVE-1999-0645 is rejected/not used per the Initial Description.
CVE-1999-0643
This CVE entry is rejected/not used per the Initial Description.
CVE-1999-0634
This CVE entry is rejected/not used and does not represent an active vulnerability.
CVE-1999-0644
CVE-1999-0644 entry is rejected/not used and does not represent an active vulnerability.
CVE-1999-0623
CVE-1999-0623 is rejected/not used; this entry does not represent an active vulnerability.
CVE-1999-0615
CVE-1999-0615 entry is rejected/not used; it does not represent an active vulnerability entry.
CVE-1999-0631
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration CCE. Notes: the former description i...