Lucene search
K

8 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2014-0349)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.6AI score0.00542EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/09/12 12:0 a.m.30 views

Mandriva Linux Security Advisory : bugzilla (MDVSA-2014:169)

Updated bugzilla packages fix security vulnerabilities : Adobe does not properly restrict the SWF file format, which allows remote attackers to conduct cross-site request forgery CSRF attacks against Bugzilla's JSONP endpoint, possibly obtaining sensitive bug information, via a crafted OBJECT...

4.3CVSS5.2AI score0.00542EPSS
Exploits0References2
Mageia
Mageia
added 2014/08/25 8:44 a.m.48 views

Updated bugzilla packages fix a CSRF vulnerability

Updated bugzilla packages fix security vulnerabilities: Adobe does not properly restrict the SWF file format, which allows remote attackers to conduct cross-site request forgery CSRF attacks against Bugzilla's JSONP endpoint, possibly obtaining sensitive bug information, via a crafted OBJECT...

4.3CVSS6.3AI score0.00542EPSS
Exploits0References2
CVE
CVE
added 2014/08/14 10:0 a.m.64 views

CVE-2014-1546

The CVE-2014-1546 issue affects Bugzilla’s JSONP endpoint (jsonrpc.cgi) in Bugzilla 3.x and 4.x prior to the listed fixed versions (before 4.0.14, 4.2.10 for 4.2.x, 4.4.5 for 4.3/4.4.x, and 4.5.5 for 4.5.x). The vulnerability stems from the JSONP response function in Bugzilla’s JSONRPC.pm, which ...

4.3CVSS6.4AI score0.00542EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/08/08 12:0 a.m.29 views

Fedora 19 : bugzilla-4.2.10-1.fc19 (2014-8919)

This version of bugzilla includes a security fix for CVE-2014-1546. With previous versions, an attacker can get access to some bug information using the victim's credentials using a specially crafted HTML page. Note that Tenable Network Security has extracted the preceding description block...

4.3CVSS5.4AI score0.00542EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2014/08/08 12:0 a.m.23 views

Fedora Update for bugzilla FEDORA-2014-8919

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.00542EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/08/05 12:0 a.m.21 views

Fedora Update for bugzilla FEDORA-2014-8920

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.00542EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/08/04 12:0 a.m.28 views

Fedora 20 : bugzilla-4.2.10-1.fc20 (2014-8920)

This version of bugzilla includes a security fix for CVE-2014-1546. With previous versions, an attacker can get access to some bug information using the victim's credentials using a specially crafted HTML page. Note that Tenable Network Security has extracted the preceding description block...

4.3CVSS5.4AI score0.00542EPSS
Exploits0References3
Rows per page
Query Builder