Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2012-5497

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - membershiptool.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to enumerate user account names via a crafted URL. CVE-2012-5497 Note that...

5CVSS5.9AI score0.02118EPSS
Exploits0References2
Veracode
Veracode
added 2019/05/02 5:4 a.m.29 views

Information Disclosure

The Conga project is a management system for remote workstations. It consists of luci, which is a secure web-based front end, and ricci, which is a secure daemon that dispatches incoming messages to underlying management modules. It was discovered that Plone, included as a part of luci, did not...

6.8CVSS5.8AI score0.02641EPSS
Exploits0References11Affected Software1
Veracode
Veracode
added 2019/05/02 5:4 a.m.26 views

Access Restriction Bypass

The Conga project is a management system for remote workstations. It consists of luci, which is a secure web-based front end, and ricci, which is a secure daemon that dispatches incoming messages to underlying management modules. It was discovered that Plone, included as a part of luci, did not...

6.8CVSS5.8AI score0.02641EPSS
Exploits0References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/11/08 12:0 a.m.23 views

RHEL 5 : conga (RHSA-2014:1194)

Updated conga packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings...

6.8CVSS5.4AI score0.02641EPSS
Exploits0References20
NVD
NVD
added 2014/09/30 2:55 p.m.16 views

CVE-2012-5497

membershiptool.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to enumerate user account names via a crafted URL...

5CVSS6.2AI score0.02118EPSS
Exploits0References5
CVE
CVE
added 2014/09/30 2:0 p.m.84 views

CVE-2012-5497

Plone contains a user enumeration flaw (CVE-2012-5497) in membership_tool.py, exploitable via crafted URLs. Affected versions are Plone prior to 4.2.3 and 4.3 prior to beta1. The underlying issue is improper access control on the membership database, enabling remote attackers to enumerate user ac...

5CVSS6.2AI score0.02118EPSS
Exploits0References5Affected Software1
Cent OS
Cent OS
added 2014/09/30 11:21 a.m.85 views

luci, ricci security update

CentOS Errata and Security Advisory CESA-2014:1194 Updated conga packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVS...

6.8CVSS5.8AI score0.02641EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2014/09/16 5:28 a.m.31 views

Moderate: Red Hat Security Advisory: conga security and bug fix update

Updated conga packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings...

6.8CVSS5.8AI score0.02641EPSS
Exploits0References15
Rows per page
Query Builder