IBM Concert Software 安全漏洞

IBM Concert Software is IBM's generative AI-driven automated application management and monitoring tool based on the WatsonX platform, focused on optimizing the operational efficiency and reliability of applications. IBM Concert Software suffers from a cross-domain resource sharing vulnerability...

Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator 安全漏洞

Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator is a freely distributed software tool from Schweitzer Engineering Laboratories, Inc. --- Grid Configurator allows engineers and technicians to quickly create, manage, and deploy settings for SEL power system equipment. A security...

IBM DevOps Velocity和IBM UrbanCode Velocity 安全漏洞

IBM DevOps Velocity and IBM UrbanCode Velocity are both products of International Business Machines IBM.IBM DevOps Velocity is an enterprise-class release management application that supports cloud-native and local deployments.IBM UrbanCode Velocity is an enterprise-class release management and...

SearchBlox Cross-Site Scripting Vulnerability

SearchBlox is an application from US-based SearchBlox, Inc. provides a powerful enterprise search architecture for on-premise or cloud deployments. A security vulnerability exists in SearchBlox versions prior to 9.1 that stems from a cross-domain resource sharing misconfiguration...

Google Chrome 权限许可和访问控制问题漏洞

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome due to inadequate enforcement of cross-domain resource sharing policies in the software. An attacker could use this vulnerability to bypass security restrictions...

IBM Spectrum Protect Plus 安全漏洞

IBM Spectrum Protect Plus is a suite of data protection platforms from IBM USA. The platform provides organizations with a single point of control and management and supports backup and recovery for virtual, physical and cloud environments of all sizes. An information disclosure vulnerability...

Netapp NetApp OnCommand Cloud Manager 安全漏洞

NetApp Cloud Manager is a centralized system for viewing and managing local and cloud storage with support for hybrid, multi-cloud providers and accounts. A cross-domain resource sharing CORS vulnerability exists in NetApp Cloud Manager prior to version 3.9.4. The vulnerability stems from an...

CORS-Vulnerable-Lab: with COSR configuration error related to the vulnerability code range-vulnerability warning-the black bar safety net

This repository contains the CORS configuration error related to the vulnerable code. You can be on the local machine to configure the vulnerable code, and to the actual use of the CORS related error configuration issue. In this case, I would first like to thank@albinowax, the AKReddy, And Vivek...

Google Chrome integer overflow vulnerability (CNVD-2019-23344)

Google Chrome is a web browser from Google, an American company. An integer overflow vulnerability exists in the Download Manager in versions prior to Google Chrome 74.0.3729.108. An attacker can exploit this vulnerability by tricking a user into visiting a specially crafted website to bypass the...

StackStorm Cross-Site Scripting Vulnerability

StackStorm is an event-driven automation platform. The platform is used for automated remediation, security response, troubleshooting, and program deployment functions.Web UI is one of the web-based user graphical interfaces. A security vulnerability exists in st2web in StackStorm Web UI versions...

Microsoft .NET Framework and .NET Core Information Disclosure Vulnerability

NET Framework and .NET Core are both products of Microsoft Corporation.Microsoft .NET Framework is a comprehensive and consistent programming model and development platform for building applications for Windows, Windows Store, Windows Server, and Microsoft Azure. NET Framework is a comprehensive...