Lucene search
+L

5523 matches found

CVE
CVE
added 2014/08/26 2:0 p.m.48 views

CVE-2014-3041

IBM Emptoris Contract Management is affected by CVE-2014-3041, a SQL injection vulnerability in 9.5.x before 9.5.0.6 iFix 10; 10.0.0.x before 10.0.0.1 iFix 10; 10.0.1.x before 10.0.1.4; and 10.0.2.x before 10.0.2.2 iFix 2. Remote authenticated users can execute arbitrary SQL commands via unspecif...

6.5CVSS9.2AI score0.01029EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/08/26 2:0 p.m.48 views

CVE-2014-3034

The CVE-2014-3034 entry describes a cross-site scripting (XSS) vulnerability in IBM Emptoris Contract Management. It affects IBM Emptoris Contract Management 9.5.x before 9.5.0.6 iFix 10, 10.0.0.x before 10.0.0.1 iFix 10, 10.0.1.x before 10.0.1.4, and 10.0.2.x before 10.0.2.2 iFix 2. The flaw all...

3.5CVSS6.8AI score0.00936EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/08/26 2:0 p.m.17 views

CVE-2014-3041

SQL injection vulnerability in IBM Emptoris Contract Management 9.5.x before 9.5.0.6 iFix 10, 10.0.0.x before 10.0.0.1 iFix 10, 10.0.1.x before 10.0.1.4, and 10.0.2.x before 10.0.2.2 iFix 2 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

7.7AI score0.01029EPSS
Exploits0References3
NVD
NVD
added 2014/08/26 10:55 a.m.16 views

CVE-2014-3040

Cross-site request forgery CSRF vulnerability in IBM Emptoris Contract Management 9.5.x before 9.5.0.6 iFix 10, 10.0.0.x before 10.0.0.1 iFix 10, 10.0.1.x before 10.0.1.4, and 10.0.2.x before 10.0.2.2 iFix 2; Emptoris Sourcing Portfolio 9.5.x before 9.5.1.3, 10.0.0.x before 10.0.0.1, 10.0.1.x...

6CVSS6.1AI score0.00851EPSS
Exploits0References7
Prion
Prion
added 2014/08/26 10:55 a.m.17 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in IBM Emptoris Contract Management 9.5.x before 9.5.0.6 iFix 10, 10.0.0.x before 10.0.0.1 iFix 10, 10.0.1.x before 10.0.1.4, and 10.0.2.x before 10.0.2.2 iFix 2; Emptoris Sourcing Portfolio 9.5.x before 9.5.1.3, 10.0.0.x before 10.0.0.1, 10.0.1.x...

6CVSS6.4AI score0.00851EPSS
Exploits0References7Affected Software3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.30 views

Dell PacketTrap PSA 7.1 - Multiple XSS Vulnerabilities

No description provided by source. Title: ====== Dell PacketTrap PSA 7.1 - Multiple Persistent Vulnerabilities Date: ===== 2013-07-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=790 VL-ID: ===== 790 Common Vulnerability Scoring System:...

7.1AI score
Exploits0
Cisco Threats
Cisco Threats
added 2014/05/21 2:49 p.m.17 views

Threat Outbreak Alert: Fake Contract Delivery Notice Email Messages on May 21, 2014

Medium Alert ID: 34319 First Published: 2014 May 21 14:49 GMT Version: 1 Summary Cisco Security has detected significant activity related to French-language spam email messages that claim to contain a contract notification for the recipient. The text in the email message attempts to convince the...

0.2AI score
Exploits0
Cisco Threats
Cisco Threats
added 2014/02/28 7:38 p.m.24 views

Threat Outbreak Alert: Fake Product Contract Notification Email Messages on February 28, 2014

Medium Alert ID: 33116 First Published: 2014 February 28 19:38 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product contract notification for the recipient. The text in the email message attempts to convince the...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2014/01/06 11:33 p.m.22 views

Potential backdoors discovered in US-based components used by French Satellites

United Arab Emirates UAE may terminate a $930 Million USD contract with France based companies for the supply of two two military Imaging satellites due to the discovery of several US produced components in them. Now the deal is in danger because the UAE claims it has discovered backdoors in the...

6.8AI score
Exploits0
FireEye
FireEye
added 2013/12/03 5:36 p.m.16 views

Preparing for Managed Security Services

Wade Woolwine Presents at MIRcon® 2013 As a complement to my MIRcon® 2013 presentation titled "Getting the Best Bang for the Buck with Managed Security Providers" and to address some questions I received from the audience, I have prepared a quick summary of my presentation. Many businesses consid...

0.5AI score
Exploits0
Cisco Threats
Cisco Threats
added 2013/12/02 5:9 p.m.13 views

Threat Outbreak Alert: Fake Contract Notification Email Messages on November 29, 2013

Medium Alert ID: 31944 First Published: 2013 December 2 17:09 GMT Version: 1 Summary Cisco Security has detected significant activity related to Italian-language spam email messages that claim to contain a contract proposal for the recipient. The text in the e-mail message attempts to convince th...

0.4AI score
Exploits0
Cisco Threats
Cisco Threats
added 2013/11/26 8:47 p.m.12 views

Threat Outbreak Alert: Fake Contract Document Delivery Email Messages on November 25, 2013

Medium Alert ID: 31903 First Published: 2013 November 26 20:47 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claim to contain a contract document for the recipient. The text in the email message attempts to convince...

0.3AI score
Exploits0
Cisco Threats
Cisco Threats
added 2013/10/04 1:39 p.m.10 views

Threat Outbreak Alert: Fake Contract Document Delivery Email Messages on October 3, 2013

Severity Alert ID: 31124 First Published: 2013 October 4 13:39 GMT Version: 1 Threat Outbreak Threat Outbreak Summary Cisco Security has detected significant activity on October 3, 2013. Revision History Initial ReleaseShow Less Legal Disclaimer THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2013/07/18 12:0 a.m.38 views

Dell PacketTrap PSA 7.1 Cross Site Scripting

Title: ====== Dell PacketTrap PSA 7.1 - Multiple Persistent Vulnerabilities Date: ===== 2013-07-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=790 VL-ID: ===== 790 Common Vulnerability Scoring System: ==================================== 5.6 Introduction:...

0.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2013/07/17 12:0 a.m.13 views

Dell PacketTrap PSA 7.1 - Multiple Web Vulnerabilities

Document Title: =============== Dell PacketTrap PSA 7.1 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=790 Release Date: ============= 2013-07-17 Vulnerability Laboratory ID VL-ID: ==================================== 790...

0.2AI score
Exploits0
Cisco Threats
Cisco Threats
added 2013/06/24 12:46 p.m.12 views

Threat Outbreak Alert: Fake Contract Information Email Messages on June 22, 2013

Medium Alert ID: 29752 First Published: 2013 June 24 12:46 GMT Version: 1 Summary Cisco Security has detected significant activity related to German-language spam email messages that claim to contain contract information for the recipient. The text in the email message attempts to persuade the...

0.2AI score
Exploits0
Cisco Threats
Cisco Threats
added 2013/06/20 6:53 p.m.12 views

Threat Outbreak Alert: Fake Contract Information Email Messages on June 20, 2013

Medium Alert ID: 29736 First Published: 2013 June 20 18:53 GMT Version: 1 Summary Cisco Security has detected significant activity related to German-language spam email messages that claim to contain contract information for the recipient. The text in the email message attempts to persuade the...

0.1AI score
Exploits0
ThreatPost
ThreatPost
added 2013/03/07 12:22 a.m.15 views

LinkedIn Data Breach Lawsuit Dismissed

The professional networking site LinkedIn won a class-action lawsuit before it even went to trial after a judge this week dismissed claims from two premium users who maintained the company failed to provide the level of data security outlined in its privacy policy. Northern California U.S. Distri...

0.5AI score
Exploits0References2
The Hacker News
The Hacker News
added 2012/12/02 4:19 p.m.11 views

New Linux Rootkit Attacks Internet Users

Security researchers have discovered what appears to be an experimental Linux rootkit designed to infect its highly select victims during a classic drive-by website attack. The malware allows hackers to inject code directly in any infected web page. The new malware, discovered on November 13 of...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/10/26 12:0 a.m.40 views

Layton Helpbox 4.4.0 Password Disclosure

Layton Helpbox 4.4.0 Password Disclosure Vulnerability by Joseph Sheridan Summary Layton Technologies Helpbox product version 4.4.0 is vulnerable to a password disclosure vulnerability in an error page. CVE number: CVE-2012-4976 Impact: High Vendor homepage: http://www.laytontechnology.com Vendor...

5CVSS6.7AI score0.01186EPSS
Exploits1
Rows per page
Query Builder