4 matches found
OPENSUSE-SU-2021:0833-1 Security update for ceph
This update for ceph fixes the following issues: - Update to 15.2.12-83-g528da226523: - CVE-2021-3509 fix cookie injection issue bsc1186021 - CVE-2021-3531 RGWSwiftWebsiteHandler::iswebdir checks empty subdirname bsc1186020 - CVE-2021-3524 sanitize \r in s3 CORSConfiguration’s ExposeHeader...
SUSE-SU-2021:1835-1 Security update for ceph
This update for ceph fixes the following issues: - Update to 15.2.12-83-g528da226523: - CVE-2021-3509 fix cookie injection issue bsc1186021 - CVE-2021-3531 RGWSwiftWebsiteHandler::iswebdir checks empty subdirname bsc1186020 - CVE-2021-3524 sanitize \r in s3 CORSConfiguration’s ExposeHeader...
SUSE-SU-2021:1834-1 Security update for ceph
This update for ceph fixes the following issues: - Update to 15.2.12-83-g528da226523: - CVE-2021-3509 fix cookie injection issue bsc1186021 - CVE-2021-3531 RGWSwiftWebsiteHandler::iswebdir checks empty subdirname bsc1186020 - CVE-2021-3524 sanitize \r in s3 CORSConfiguration’s ExposeHeader...
91736cms cookie injection vulnerability-vulnerability warning-the black bar safety net
Re-read under 9 1 7 3 6 before that getip vulnerability has been patch on. 漏洞 文件 :system/modules/member/index.php public function edit ifempty$COOKIE'memberuser'||empty$COOKIE'memberuserid' showmsgC"adminnotexist","index. php? m=member&f=login"; $userid=$COOKIE'memberuserid';...