Lucene search
+L

112 matches found

Positive Technologies
Positive Technologies
added 2023/03/14 12:0 a.m.4 views

PT-2023-1871 · Unknown · Igss Dashboard +2

Name of the Vulnerable Software and Affected Versions: IGSS Data Server versions 16.0.0.23040 and prior IGSS Dashboard versions 16.0.0.23040 and prior Custom Reports versions 16.0.0.23040 and prior Description: The issue exists due to insufficient input validation in the Custom Reports component ...

8.8CVSS8.9AI score0.00609EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/03/14 12:0 a.m.5 views

PT-2023-1873 · Unknown · Igss Dashboard +2

Name of the Vulnerable Software and Affected Versions: IGSS Data Server versions 16.0.0.23040 and prior IGSS Dashboard versions 16.0.0.23040 and prior Custom Reports versions 16.0.0.23040 and prior Description: A Deserialization of Untrusted Data issue exists in the Dashboard module, potentially...

7.8CVSS7.9AI score0.06482EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/03/14 12:0 a.m.4 views

PT-2023-1855 · Unknown · Igss Dashboard +2

Name of the Vulnerable Software and Affected Versions: IGSS Data Server versions 16.0.0.23040 and prior IGSS Dashboard versions 16.0.0.23040 and prior Custom Reports versions 16.0.0.23040 and prior Description: A vulnerability exists in Custom Reports due to improper limitation of a pathname to a...

8.8CVSS8.9AI score0.00725EPSS
Exploits0References7
Huntr
Huntr
added 2021/12/22 5:27 a.m.22 views

Cross-site Scripting (XSS) - Stored in pimcore/pimcore

Description Stored cross site scripting vulnerability in report class field on custom report feature. Proof of Concept 1 . Login to dev account https://10.x-dev.pimcore.fun/admin/ 2 . Go to marketing -- custom reports -- Report class :field in left navigation menu 3 . Add payload " in report clas...

3.5CVSS5.1AI score0.00642EPSS
Exploits1
ThreatPost
ThreatPost
added 2020/09/22 4:15 p.m.26 views

Microsoft Overhauls ‘Patch Tuesday’ Security Update Guide

Microsoft has updated its Security Update Guide, which is used by tens of millions of cybersecurity professionals the second Tuesday of every month, also known as Patch Tuesday. The update, according to Microsoft, is meant to deliver a more intuitive user experience. For its latest update,...

7.3AI score
Exploits0References11
Microsoft KB
Microsoft KB
added 2020/05/12 7:0 a.m.38 views

Service Update 0.16 for Microsoft Dynamics 365 9.0

Service Update 0.16 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.16 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.16. MORE INFORMATION Update package| Version number ---|---...

5.4CVSS5.7AI score0.01414EPSS
Exploits0
n0where
n0where
added 2016/11/03 8:4 a.m.194 views

Cold Disk Quick Response: CDQR

Cold Disk Quick Response tool The CDQR tool uses Plaso to parse disk images with specific parsers and create easy to analyze custom reports. The parsers were chosen based on my experience and triaging best practices and the custom reports group like items together to make analysis easier. The...

7.2AI score
Exploits0References2
Kitploit
Kitploit
added 2014/06/04 7:55 p.m.14 views

Webfwlog - Firewall Log Analyzer

Webfwlog is a flexible web-based firewall log analyzer and reporting tool. It supports standard system logs for linux, FreeBSD, OpenBSD, NetBSD, Solaris, Irix, OS X, etc. as well as Windows XP®. Supported log file formats are netfilter, ipfilter, ipfw, ipchains and Windows XP®. Webfwlog also...

7.5AI score
Exploits0
rapid7community
rapid7community
added 2014/01/13 6:7 p.m.1403 views

How do I get my data out of Nexpose? Answer: SQL Query Export

Do any of these these questions sound familiar? "Printable reports are really valuable and I use them on a daily basis. However, is there a section that I can add to show a summary by asset group or site?" "I really like the XML format, but its a little hard to process and I have to write code to...

7.4AI score
Exploits0
NVD
NVD
added 2013/08/05 1:22 p.m.24 views

CVE-2013-4676

Multiple cross-site scripting XSS vulnerabilities in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allow remote attackers to inject arbitrary web script or HTML via vectors involving a 1 custom-reports generation page, 2 Storage Devices creation page, or 3 jobs creation page...

4.3CVSS5.7AI score0.02009EPSS
Exploits0References4
Cvelist
Cvelist
added 2013/08/04 8:0 p.m.30 views

CVE-2013-4676

Multiple cross-site scripting XSS vulnerabilities in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allow remote attackers to inject arbitrary web script or HTML via vectors involving a 1 custom-reports generation page, 2 Storage Devices creation page, or 3 jobs creation page...

5.7AI score0.02009EPSS
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2010/04/27 12:0 a.m.19 views

VERITAS Storage Exec and StorageCentral DCOM Server Buffer Overflow (CVE-2005-2996)

The VERITAS Storage Exec and StorageCentral products automate storage management in order to optimize storage efficiency. The products are capable of automating numerous tasks with regard to disk management. User-based and directory-based quotas may also be imposed with the help of the products...

7.5CVSS7.8AI score0.05564EPSS
Exploits1
Rows per page
Query Builder