Lucene search
K

4420 matches found

RedHat Linux
RedHat Linux
added 2013/12/04 6:0 p.m.48 views

Low: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.2.0 update

Updated Red Hat JBoss Enterprise Application Platform 6.2.0 packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. Common...

5.5CVSS7AI score0.01809EPSS
Exploits1References47
Oracle linux
Oracle linux
added 2013/11/26 12:0 a.m.47 views

libguestfs security, bug fix, and enhancement update

1:1.20.11-2 - Fix CVE-2013-4419: insecure temporary directory handling for guestfish's network socket resolves: rhbz1019737 1:1.20.11-1 - Rebase to libguestfs 1.20.11. resolves: rhbz958183 - Remove buildnet: builds now detect network automatically. - The rhel-6.x branches containing the patches...

6.8CVSS6.3AI score0.02602EPSS
Exploits1
Fedora
Fedora
added 2013/11/24 3:44 a.m.33 views

[SECURITY] Fedora 20 Update: mantis-1.2.15-3.fc20

Mantis is a free popular web-based issue tracking system. It is written in the PHP scripting language and works with MySQL, MS SQL, and PostgreSQL databases and a web server. Almost any web browser should be able to function as a client. Documentation can be found in: /usr/share/doc/mantis When t...

3.5CVSS1AI score0.01495EPSS
Exploits1
Fedora
Fedora
added 2013/11/24 3:28 a.m.42 views

[SECURITY] Fedora 19 Update: mantis-1.2.15-3.fc19

Mantis is a free popular web-based issue tracking system. It is written in the PHP scripting language and works with MySQL, MS SQL, and PostgreSQL databases and a web server. Almost any web browser should be able to function as a client. Documentation can be found in: /usr/share/doc/mantis-1.2.15...

6.1CVSS1AI score0.02348EPSS
Exploits1
Kitploit
Kitploit
added 2013/11/13 9:40 p.m.54 views

[Hashcat v0.46] Multi-Threaded Password Hash Cracking Tool

hashcat claims to be the world’s fastest CPU-based password recovery tool, while not as fast as GPU powered hash brute forcing like CUDA-Multiforcer, it is still pretty fast. hashcat was written somewhere in the middle of 2009. Yes, there were already close-to-perfect working tools supporting...

7.5AI score
Exploits0
Fedora
Fedora
added 2013/11/13 2:12 a.m.37 views

[SECURITY] Fedora 20 Update: wireshark-1.10.3-3.fc20

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

4.3CVSS1.7AI score0.01987EPSS
Exploits2
securityvulns
securityvulns
added 2013/10/28 12:0 a.m.66 views

CA20131024-01: Security Notice for CA SiteMinder

-----BEGIN PGP SIGNED MESSAGE----- CA20131024-01: Security Notice for CA SiteMinder Issued: October 24, 2013 CA Technologies Support is alerting customers to a potential vulnerability in CA SiteMinder that can be mitigated by utilizing existing product functionality. The vulnerability,...

4.3CVSS0.2AI score0.02622EPSS
Exploits0
Atlassian
Atlassian
added 2013/10/01 11:7 a.m.17 views

Doconfiguretheme action accessible to non-administrative users

The doconfiguretheme action allows for configuration of the Documentation theme for Confluence. This action is defined in two namespaces, one of which is accessible by any user of Confluence including anonymous users, if anonymous use of Confluence is allowed. If this action is executed with no...

3.1AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/10/01 11:7 a.m.12 views

Doconfiguretheme action accessible to non-administrative users

The doconfiguretheme action allows for configuration of the Documentation theme for Confluence. This action is defined in two namespaces, one of which is accessible by any user of Confluence including anonymous users, if anonymous use of Confluence is allowed. If this action is executed with no...

3.1AI score
Exploits0
Cvelist
Cvelist
added 2013/10/01 12:0 a.m.11 views

CVE-2011-4383

...

Exploits0
Symfony
Symfony
added 2013/09/23 12:0 a.m.26 views

CVE-2013-5750: Security issue in FOSUserBundle login form

Django recently released a new version of their framework to address a possible DOS attack when an attacker uses a very long password on a login form. One of the best practices for passwords is to store a hash of the password instead of the raw value. In Symfony, the encoders are responsible for...

5CVSS5.8AI score0.01232EPSS
Exploits0
CERT
CERT
added 2013/09/23 12:0 a.m.23 views

NETELLER Direct Payment API is not vulnerable to reported parameter manipulation

Overview NETELLER Direct Payment API version 4.1.6 and possibly earlier versions were reported to be vulnerable to parameter manipulation via a modified HTTP POST request. After further analysis and discussion with NETELLER, this report was found to be incorrect. The NETELLER Direct Payment API i...

6.3AI score
Exploits0References3
Atlassian
Atlassian
added 2013/09/19 6:17 a.m.21 views

Implement clickjacking protection on https://answers.atlassian.com/

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Server. Using Confluence Cloud? See the corresponding bug report|http://jira.atlassian.com/browse/CONFCLOUD-46884. panel We received an external security report from Monendra Sahu that https://answers.atlassian.com/ is vulnerable to...

1.1AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/09/19 6:17 a.m.19 views

Implement clickjacking protection on https://answers.atlassian.com/

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Cloud. Using Confluence Server? See the corresponding bug report|http://jira.atlassian.com/browse/CONFSERVER-46884. panel We received an external security report from Monendra Sahu that https://answers.atlassian.com/ is vulnerable to...

1.1AI score
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2013/09/18 12:0 a.m.29 views

Fedora Update for wireshark FEDORA-2013-16696

Check for the Version of wireshark OpenVAS Vulnerability Test Fedora Update for wireshark FEDORA-2013-16696 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

7.8CVSS0.037EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/09/12 12:0 a.m.31 views

Fedora Update for wireshark FEDORA-2013-16362

Check for the Version of wireshark OpenVAS Vulnerability Test Fedora Update for wireshark FEDORA-2013-16362 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

7.8CVSS0.1AI score0.037EPSS
Exploits0References2
Atlassian
Atlassian
added 2013/09/11 8:30 a.m.20 views

getRedirect in JiraWebActionSupport redirects to unsafe URLs by default

In jira-components/jira-api/src/main/java/com/atlassian/jira/web/action/JiraWebActionSupport.java the following code is found: code:java / Redirects to the value of @code getReturnUrl, falling back to @code defaultUrl if the @code returnUrl is not set. This method clears the @code returnUrl. If...

0.7AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/09/11 8:30 a.m.60 views

getRedirect in JiraWebActionSupport redirects to unsafe URLs by default

In jira-components/jira-api/src/main/java/com/atlassian/jira/web/action/JiraWebActionSupport.java the following code is found: code:java / Redirects to the value of @code getReturnUrl, falling back to @code defaultUrl if the @code returnUrl is not set. This method clears the @code returnUrl. If...

0.7AI score
Exploits0Affected Software1
Fedora
Fedora
added 2013/09/01 11:7 p.m.13 views

[SECURITY] Fedora 19 Update: drupal7-theme-zen-5.4-1.fc19

Zen is a powerful, yet simple, HTML5 starting theme with a responsive, mobile-first grid design. If you are building your own standards-compliant theme, you will find it much easier to start with Zen than to start with Garland or Stark. This theme has fantastic online documentation...

7AI score
Exploits0
Fedora
Fedora
added 2013/09/01 11:1 p.m.14 views

[SECURITY] Fedora 18 Update: drupal7-theme-zen-5.4-1.fc18

Zen is a powerful, yet simple, HTML5 starting theme with a responsive, mobile-first grid design. If you are building your own standards-compliant theme, you will find it much easier to start with Zen than to start with Garland or Stark. This theme has fantastic online documentation...

7AI score
Exploits0
Rows per page
Query Builder