Implement clickjacking protection on https://answers.atlassian.com/

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Server. Using Confluence Cloud? See the corresponding bug report|http://jira.atlassian.com/browse/CONFCLOUD-46884. panel We received an external security report from Monendra Sahu that https://answers.atlassian.com/ is vulnerable to...

Implement clickjacking protection on https://answers.atlassian.com/

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Cloud. Using Confluence Server? See the corresponding bug report|http://jira.atlassian.com/browse/CONFSERVER-46884. panel We received an external security report from Monendra Sahu that https://answers.atlassian.com/ is vulnerable to...

Fedora Update for wireshark FEDORA-2013-16696

Check for the Version of wireshark OpenVAS Vulnerability Test Fedora Update for wireshark FEDORA-2013-16696 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Fedora Update for wireshark FEDORA-2013-16362

Check for the Version of wireshark OpenVAS Vulnerability Test Fedora Update for wireshark FEDORA-2013-16362 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

getRedirect in JiraWebActionSupport redirects to unsafe URLs by default

In jira-components/jira-api/src/main/java/com/atlassian/jira/web/action/JiraWebActionSupport.java the following code is found: code:java / Redirects to the value of @code getReturnUrl, falling back to @code defaultUrl if the @code returnUrl is not set. This method clears the @code returnUrl. If...

getRedirect in JiraWebActionSupport redirects to unsafe URLs by default

In jira-components/jira-api/src/main/java/com/atlassian/jira/web/action/JiraWebActionSupport.java the following code is found: code:java / Redirects to the value of @code getReturnUrl, falling back to @code defaultUrl if the @code returnUrl is not set. This method clears the @code returnUrl. If...

[SECURITY] Fedora 19 Update: drupal7-theme-zen-5.4-1.fc19

Zen is a powerful, yet simple, HTML5 starting theme with a responsive, mobile-first grid design. If you are building your own standards-compliant theme, you will find it much easier to start with Zen than to start with Garland or Stark. This theme has fantastic online documentation...

[SECURITY] Fedora 18 Update: drupal7-theme-zen-5.4-1.fc18

Zen is a powerful, yet simple, HTML5 starting theme with a responsive, mobile-first grid design. If you are building your own standards-compliant theme, you will find it much easier to start with Zen than to start with Garland or Stark. This theme has fantastic online documentation...

[fuzzdb] Attack and Discovery Pattern Database for Application Fuzz Testing

fuzzdb aggregates known attack patterns, predictable resource names, server response messages, and other resources like web shells into the most comprehensive Open Source database of malicious and malformed input test cases. What's in fuzzdb? Predictable Resource Locations - Because of the...

CVE-2013-4889

creationtimestamp| type| source ---|---|--- 2013-08-21 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38746...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

Installing Veeam Backup & Replication 6.5.0.144

Challenge You need to install Veeam Backup & Replication version 6.5.0.144. Solution To install Veeam Backup & Replication version 6.5.0.144, you must first install version 6.5.0.109 and then apply Patch 3. 1. Install the correct 32-bit or 64-bit version of Veeam Backup & Replication version...

[SECURITY] Fedora 19 Update: mantis-1.2.15-1.fc19

Mantis is a free popular web-based issue tracking system. It is written in the PHP scripting language and works with MySQL, MS SQL, and PostgreSQL databases and a web server. Almost any web browser should be able to function as a client. Documentation can be found in: /usr/share/doc/mantis-1.2.15...

CVE-2013-1331

creationtimestamp| type| source ---|---|--- 2013-08-02 10:04:46+00:00| seen| MISP/51c2de41-4fec-43b6-b862-476eac1d4fa4 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-03 18:12:26+00:00| seen| https://t.me/arpsyndicate/996 2024-12-24 20:32:14+00:00| seen|...

Oracle Linux 5 / 6 : cups (ELSA-2013-0580)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0580 advisory. - Fix for CVE-2012-5519 patch: handle blacklisted lines that have no value part gracefully. - Added documentation for new CVE-2012-5519 option. - Applied...

ESA-2013-029: RSA SecurID Sensitive Information Disclosure Vulnerability

EMC Identifier: ESA-2013-029 CVE Identifier: CVE-2013-0941 Severity Rating: CVSS v2 Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected Products: RSA Authentication API versions prior to 8.1 SP1 RSA Web Agent for Apache Web Server versions prior to 5.3.5 RSA Web Agent for IIS versions prior to...

CVE-2013-4951

creationtimestamp| type| source ---|---|--- 2013-07-10 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38638...

[Snort 2.9.5] Network intrusion prevention and detection system (IDS/IPS)

Snort® is an open source network intrusion prevention and detection system IDS/IPS developed by Sourcefire. Combining the benefits of signature, protocol, and anomaly-based inspection, Snort is the most widely deployed IDS/IPS technology worldwide. With millions of downloads and nearly 400,000...

CVE-2013-4786

creationtimestamp| type| source ---|---|--- 2013-07-02 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38633 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/ipmi/ipmidumphashes.rb 2023-10-24 15:02:57+00:00|...

CVE-2013-3299

creationtimestamp| type| source ---|---|--- 2013-07-02 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38623...