CVE-2016-8640

A SQL injection vulnerability in pycsw all versions before 2.0.2, 1.10.5 and 1.8.6 that leads to read and extract of any data from any table in the pycsw database that the database user has access to. Also on PostgreSQL at least it is possible to perform updates/inserts/deletes and database...

DEBIAN-CVE-2016-8640

A SQL injection vulnerability in pycsw all versions before 2.0.2, 1.10.5 and 1.8.6 that leads to read and extract of any data from any table in the pycsw database that the database user has access to. Also on PostgreSQL at least it is possible to perform updates/inserts/deletes and database...

Design/Logic Flaw

A data modification vulnerability exists in Jenkins Resource Disposer Plugin 0.11 and earlier in AsyncResourceDisposer.java that allows attackers to stop tracking a resource...

CVE-2018-1999037

A data modification vulnerability exists in Jenkins Resource Disposer Plugin 0.11 and earlier in AsyncResourceDisposer.java that allows attackers to stop tracking a resource...

Design/Logic Flaw

A data modification vulnerability exists in Jenkins Agiletestware Pangolin Connector for TestRail Plugin 2.1 and earlier in GlobalConfig.java that allows attackers with Overall/Read permission to override this plugin's configuration by sending crafted HTTP requests to an unprotected endpoint...

CVE-2018-1999032

A data modification vulnerability exists in Jenkins Agiletestware Pangolin Connector for TestRail Plugin 2.1 and earlier in GlobalConfig.java that allows attackers with Overall/Read permission to override this plugin's configuration by sending crafted HTTP requests to an unprotected endpoint...

CVE-2018-1999032

A data modification vulnerability exists in Jenkins Agiletestware Pangolin Connector for TestRail Plugin 2.1 and earlier in GlobalConfig.java that allows attackers with Overall/Read permission to override this plugin's configuration by sending crafted HTTP requests to an unprotected endpoint...

CVE-2018-1999037

A data modification vulnerability exists in Jenkins Resource Disposer Plugin 0.11 and earlier in AsyncResourceDisposer.java that allows attackers to stop tracking a resource...

CVE-2018-1999037

A data modification vulnerability exists in Jenkins Resource Disposer Plugin 0.11 and earlier in AsyncResourceDisposer.java that allows attackers to stop tracking a resource...

CVE-2018-1999037

CVE-2018-1999037 affects Jenkins Resource Disposer Plugin up to version 0.11. The vulnerability is in AsyncResourceDisposer.java and allows an attacker to stop tracking a resource (data modification). Related advisories confirm an additional CSRF weakness in the API endpoint prior to version 0.12...

CVE-2018-1999032

The CVE-2018-1999032 entry involves Jenkins' Agiletestware Pangolin Connector for TestRail Plugin (version 2.1 and earlier). The vulnerability resides in GlobalConfig.java and can be triggered by an attacker with Overall/Read permission via crafted HTTP requests to an unprotected endpoint to over...

CVE-2018-12942

SQL injection vulnerability in the "Users management" functionality in SeedDMS formerly LetoDMS and MyDMS before 5.1.8 allows authenticated attackers to manipulate an SQL query within the application by sending additional SQL commands to the application server. An attacker can use this...

The vulnerability of the Policy Builder database of the Cisco Policy Suite software management tool allows a perpetrator to access the database and modify arbitrary data.

The vulnerability of the Policy Builder database in the Cisco Policy Suite software for policy management lies in the absence of a authentication mechanism for accessing the database. Exploiting this vulnerability could allow an attacker to gain direct access to the Policy Builder database and...

Unspecified Vulnerability in Oracle Siebel CRM Siebel UI Framework Component (CNVD-2019-39892)

Oracle Siebel CRM is the United States Oracle Oracle company's set of customer relationship management solutions , which includes sales management , marketing management , customer service systems , call centers and other modules.Siebel UI Framework is one of the framework components based on the...

Unspecified Vulnerability in Oracle Retail Applications MICROS Retail-J

Oracle Retail Applications is the United States Oracle Oracle company's set of retail applications store solutions. MICROS Retail-J is one of the advanced retail system components. An unspecified vulnerability exists in Oracle Retail Applications MICROS Retail-J. An attacker could use this...

Instagram-Clone Script Cross-Site Scripting Vulnerability

Instagram is a photo sharing app.Instagram Clone is open source Instagram clone app for iOS, Android and Web. Provides customization features to integrate app ideas into the Instagram app. A cross-site scripting vulnerability exists in Instagram-Clone Script 2.0, which arises due to an input...

Cisco Policy Suite Policy Builder Authentication Bypass Vulnerability

Cisco Policy Suite is a carrier-grade policy, charging, and subscriber data management solution. An authentication bypass vulnerability exists in the Policy Builder database of Cisco Policy Suite. The vulnerability stems from a lack of authentication. An attacker can exploit the vulnerability by...

Oracle iLearning Unauthorized Operation Vulnerability

Oracle iLearning is an enterprise-class Learning Management System LMS from Oracle Corporation and one of the core components of the E-Business Suite Oracle E-Business Suite. The system provides functionality for managing, delivering and tracking online training in a classroom-based environment. ...

Oracle Fusion Middleware Oracle WebLogic Server Component Remote Vulnerability (CNVD-2018-13563)

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platform for enterprise and cloud environments from Oracle. The platform provides middleware, software collection, etc. Oracle WebLogic Server is one of the application server components for cloud and traditional...

Oracle PeopleSoft Products PeopleSoft Enterprise PeopleTools Access Control Error Vulnerability (CNVD-2019-40768)

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle that provides human capital management, financial management, supplier relationship management, and more.PeopleSoft Enterprise PeopleTools is one of the tools and technology platform components that...