14 matches found
EUVD-2020-22290
Malware in sbrugna...
EUVD-2021-10058
Malware in sbrugna...
EUVD-2021-7776
Malicious code in bioql PyPI...
Qnap QuTS hero Cross-site Scripting (CVE-2020-2497)
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in System Connection Logs. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and later QTS 4.5.1.1456 build...
GHSA-667Q-VJ58-RJ88 Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
A exposure of sensitive information vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in Computer.java that allows attackers With Overall/Read permission to access the connection log for any agent...
CVE-2020-2497
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in System Connection Logs. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and later QTS 4.5.1.1456 build...
CVE-2020-2497
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in System Connection Logs. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and later QTS 4.5.1.1456 build...
Cross site scripting
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in System Connection Logs. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and later QTS 4.5.1.1456 build...
CVE-2020-2497
The CVE-2020-2497 entry describes a cross-site scripting (XSS) vulnerability in QTS/QuTS Hero where remote attackers could inject malicious code into System Connection Logs. Affected products include QTS and QuTS Hero with multiple fixed versions listed: QuTS hero h4.5.1.1472 build 20201031 and l...
CVE-2020-2497 Cross-site scripting vulnerability in QTS and QuTS hero
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in System Connection Logs. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and later QTS 4.5.1.1456 build...
Jenkins Sensitive Information Disclosure Vulnerability
CloudBees Jenkins formerly known as Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . An...
ipdatalook.txt
/ IP-DATALOOK Local DoS Exploit --------------------------------- INFGP - Hacking&security Research Resolve host...OK + Connecting...OK Target locked Sending bad procedure...OK Server Disconnected! Tested on Windows2000 SP4 Infos: infamous.2hell.com / [email protected] / include string.h...
SAFE TEAM Regulus Customer Statistics Connection Log Information Disclosure
Binary data 2273.prm...
SAFE TEAM Regulus 2.2 - Customer Statistics Information Disclosure
source: https://www.securityfocus.com/bid/11134/info Regulus is reported prone to an information disclosure vulnerability. It is reported that it is possible to view a target users connection statistics without requiring valid credentials. An attacker may employ data that is obtained in this mann...