1Panel Security Vulnerability

1Panel is an open source Linux server operations and management panel for the Chinese 1panel community. A security vulnerability exists in versions prior to 1Panel 1.10.1-lts, which stems from the fact that users can use Burp to gain unauthorized access to console pages...

CVE-2022-35226

SAP Data Services Management allows an attacker to copy the data from a request and echoed into the application's immediate response, it will lead to a Cross-Site Scripting vulnerability. The attacker would have to log in to the management console to perform such as an attack, only few of the pag...

jenkins: Stored XSS vulnerability in console links

A flaw was found in Jenkins versions 2.244 and prior and in LTS 2.235.1 and prior. HREF attribute of links to downstream jobs are not escaped on build console pages which could lead to a stored cross-site scripting XSS vulnerability. The user must have the Agent/Configure permission for this...

[SA23627] FirePass Multiple Vulnerabilities

TITLE: FirePass Multiple Vulnerabilities SECUNIA ADVISORY ID: SA23627 VERIFY ADVISORY: http://secunia.com/advisories/23627/ CRITICAL: Less critical IMPACT: Security Bypass, Cross Site Scripting, Exposure of sensitive information WHERE: From remote OPERATING SYSTEM: FirePass 6.x...