112 matches found
PT-2023-1871 · Unknown · Igss Dashboard +2
Name of the Vulnerable Software and Affected Versions: IGSS Data Server versions 16.0.0.23040 and prior IGSS Dashboard versions 16.0.0.23040 and prior Custom Reports versions 16.0.0.23040 and prior Description: The issue exists due to insufficient input validation in the Custom Reports component ...
PT-2023-1873 · Unknown · Igss Dashboard +2
Name of the Vulnerable Software and Affected Versions: IGSS Data Server versions 16.0.0.23040 and prior IGSS Dashboard versions 16.0.0.23040 and prior Custom Reports versions 16.0.0.23040 and prior Description: A Deserialization of Untrusted Data issue exists in the Dashboard module, potentially...
PT-2023-1855 · Unknown · Igss Dashboard +2
Name of the Vulnerable Software and Affected Versions: IGSS Data Server versions 16.0.0.23040 and prior IGSS Dashboard versions 16.0.0.23040 and prior Custom Reports versions 16.0.0.23040 and prior Description: A vulnerability exists in Custom Reports due to improper limitation of a pathname to a...
Cross-site Scripting (XSS) - Stored in pimcore/pimcore
Description Stored cross site scripting vulnerability in report class field on custom report feature. Proof of Concept 1 . Login to dev account https://10.x-dev.pimcore.fun/admin/ 2 . Go to marketing -- custom reports -- Report class :field in left navigation menu 3 . Add payload " in report clas...
Microsoft Overhauls ‘Patch Tuesday’ Security Update Guide
Microsoft has updated its Security Update Guide, which is used by tens of millions of cybersecurity professionals the second Tuesday of every month, also known as Patch Tuesday. The update, according to Microsoft, is meant to deliver a more intuitive user experience. For its latest update,...
Service Update 0.16 for Microsoft Dynamics 365 9.0
Service Update 0.16 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.16 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.16. MORE INFORMATION Update package| Version number ---|---...
Cold Disk Quick Response: CDQR
Cold Disk Quick Response tool The CDQR tool uses Plaso to parse disk images with specific parsers and create easy to analyze custom reports. The parsers were chosen based on my experience and triaging best practices and the custom reports group like items together to make analysis easier. The...
Webfwlog - Firewall Log Analyzer
Webfwlog is a flexible web-based firewall log analyzer and reporting tool. It supports standard system logs for linux, FreeBSD, OpenBSD, NetBSD, Solaris, Irix, OS X, etc. as well as Windows XP®. Supported log file formats are netfilter, ipfilter, ipfw, ipchains and Windows XP®. Webfwlog also...
How do I get my data out of Nexpose? Answer: SQL Query Export
Do any of these these questions sound familiar? "Printable reports are really valuable and I use them on a daily basis. However, is there a section that I can add to show a summary by asset group or site?" "I really like the XML format, but its a little hard to process and I have to write code to...
CVE-2013-4676
Multiple cross-site scripting XSS vulnerabilities in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allow remote attackers to inject arbitrary web script or HTML via vectors involving a 1 custom-reports generation page, 2 Storage Devices creation page, or 3 jobs creation page...
CVE-2013-4676
Multiple cross-site scripting XSS vulnerabilities in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allow remote attackers to inject arbitrary web script or HTML via vectors involving a 1 custom-reports generation page, 2 Storage Devices creation page, or 3 jobs creation page...
VERITAS Storage Exec and StorageCentral DCOM Server Buffer Overflow (CVE-2005-2996)
The VERITAS Storage Exec and StorageCentral products automate storage management in order to optimize storage efficiency. The products are capable of automating numerous tasks with regard to disk management. User-based and directory-based quotas may also be imposed with the help of the products...