36 matches found
Apache Airflow 安全漏洞
Apache Airflow is an open-source platform developed by the Apache Foundation in the United States. It allows for the creation, management, and monitoring of workflows. This platform features scalability and dynamic monitoring capabilities. Versions of Apache Airflow prior to 3.1.4 and 2.11.1...
EUVD-2021-0057
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2021-21416
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - django-registration is a user registration package for Django. The django-registration package provides tools for implementing user-account registration flows i...
The vulnerability of the CookieSigner class in the Apache Spark framework and the Apache Hive database allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the CookieSigner class in the Apache Spark framework and the Apache Hive database is related to the disclosure of the digital signature of cookies due to an incorrect mechanism for generating error reports. Exploiting this vulnerability can allow a remote attacker to gain...
The vulnerability of the virtual learning environment Moodle, related to deficiencies in the mechanism for generating error reports, allows unauthorized access by intruders to protected information.
The vulnerability of the virtual learning environment Moodle is related to deficiencies in the mechanism for generating error reports. Exploiting this vulnerability can allow an intruder, operating remotely, to gain unauthorized access to protected information...
CVE-2023-50894
In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature.impl.activators.PasswordEncryption password encryption function allows remote authenticated administrative users to discover cleartext database credentials contained in error report information...
PT-2024-13996 · Janitza · Gridvis
Name of the Vulnerable Software and Affected Versions: Janitza GridVis versions 9.0.66 and earlier Description: The issue concerns the use of hard-coded credentials in the de.janitza.pasw.feature.impl.activators.PasswordEncryption password encryption function. This allows remote authenticated...
Get EdgeWorkers Error Reports with mPulse
...
SUSE CVE-2021-21416
django-registration is a user registration package for Django. The django-registration package provides tools for implementing user-account registration flows in the Django web framework. In django-registration prior to 3.1.2, the base user-account registration view did not properly apply filters...
The vulnerability of Websoft HCM’s automation software for HR processes lies in the lack of a mechanism for generating error reports. This allows attackers to gain unauthorized access to protected information.
The vulnerability of Websoft HCM’s automation software for HR processes is related to deficiencies in the mechanism for generating error reports. Exploiting this vulnerability allows a malicious actor to inject incorrect values into parameters, thereby obtaining additional information in error...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from Google, Inc. An elevation of privilege vulnerability exists in Google Android, which originates in DevicePolicyManagerService.java's registerRemoteBugreportReceivers. Due to the lack of permission checking, a forged error report ma...
Updated python-django-registration packages fix security vulnerability
Sensitive data could be included in error reports CVE-2021-21416...
MGASA-2022-0178 Updated python-django-registration packages fix security vulnerability
Sensitive data could be included in error reports CVE-2021-21416...
Security update for python-django-registration (moderate)
openSUSE Security Update: Security update for python-django-registration Announcement ID: openSUSE-SU-2021:0597-1 Rating: moderate References: 1184427 Cross-References: CVE-2021-21416 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes one vulnerability is now available...
OPENSUSE-SU-2021:0588-1 Security update for python-django-registration
This update for python-django-registration fixes the following issues: Update to 3.1.2 boo1184427, CVE-2021-21416 Filter sensitive POST parameters in error reports Fix RemovedInDjango40Warning from Signal arguments...
Potential sensitive information disclosed in error reports
django-registration is a user-registration application for Django. Impact The django-registration package provides tools for implementing user-account registration flows in the Django web framework. In django-registration prior to 3.1.2, the base user-account registration view did not properly...
GHSA-58C7-PX5V-82HH Potential sensitive information disclosed in error reports
django-registration is a user-registration application for Django. Impact The django-registration package provides tools for implementing user-account registration flows in the Django web framework. In django-registration prior to 3.1.2, the base user-account registration view did not properly...
DEBIAN-CVE-2021-21416
django-registration is a user registration package for Django. The django-registration package provides tools for implementing user-account registration flows in the Django web framework. In django-registration prior to 3.1.2, the base user-account registration view did not properly apply filters...
CVE-2021-21416
django-registration is a user registration package for Django. The django-registration package provides tools for implementing user-account registration flows in the Django web framework. In django-registration prior to 3.1.2, the base user-account registration view did not properly apply filters...
Design/Logic Flaw
django-registration is a user registration package for Django. The django-registration package provides tools for implementing user-account registration flows in the Django web framework. In django-registration prior to 3.1.2, the base user-account registration view did not properly apply filters...