Lucene search
K

97 matches found

NVD
NVD
added 2017/07/27 6:29 a.m.18 views

CVE-2017-11685

Multiple Reflective cross-site scripting XSS vulnerabilities in search and display of event data in Zoho ManageEngine Event Log Analyzer 11.4 and 11.5 allow remote attackers to inject arbitrary web script or HTML, as demonstrated by the fName parameter...

6.1CVSS6.1AI score0.01265EPSS
Exploits1References1
CNVD
CNVD
added 2017/07/13 12:0 a.m.2 views

Cross-Site Scripting Vulnerability in Accessible Assisted Browsing

Accessibility Aids is an accessibility aid for government websites that focuses on information technology construction, web content accessibility and internet accessibility. Accessibility Assisted Browsing has a cross-site scripting vulnerability, as the program fails to filter the event...

6.3AI score
Exploits0
OSV
OSV
added 2016/05/22 8:59 p.m.8 views

CVE-2016-2156

calendar/externallib.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 provides calendar-event data without considering whether an activity is hidden, which allows remote authenticated users to obtain sensitive information via a...

4.3CVSS4.4AI score
Exploits0References4
Prion
Prion
added 2016/05/22 8:59 p.m.12 views

Cross site request forgery (csrf)

calendar/externallib.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 provides calendar-event data without considering whether an activity is hidden, which allows remote authenticated users to obtain sensitive information via a...

4CVSS6AI score0.01693EPSS
Exploits0References4Affected Software1
Richard Bejtlich's blog
Richard Bejtlich's blog
added 2015/12/05 2:29 p.m.12 views

Not So Fast! Boyd OODA Looping Is More Than Speed

The name "John Boyd" and the term "OODA Loop" are probably familiar to many of the readers of this blog. I've mentioned one or the other in 2006, 2007, 2009 twice, and 2014. Boyd was a fighter pilot in the Korean war and revolutionized thinking on topics like fighter design and military strategy...

6.7AI score
Exploits0
Kitploit
Kitploit
added 2015/06/27 3:33 p.m.22 views

Squert - A Simple QUEry and Report Tool

Squert is a web application that is used to query and view event data stored in a Sguil database typically IDS alert data. Squert is a visual tool that attempts to provide additional context to events through the use of metadata, time series representations and weighted and logically grouped resu...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/07/09 12:0 a.m.9 views

Ethernet Industrial Protocol (EtherNet/IP) Server Explicit Message Detection

Binary data 8278.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/07/09 12:0 a.m.17 views

Ethernet Industrial Protocol (EtherNet/IP) Client Explicit Message Detection

Binary data 8277.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/07/09 12:0 a.m.7 views

Ethernet Industrial Protocol (EtherNet/IP) Client Explicit Message Detection

Binary data 7114.pasl...

7.3AI score
Exploits0
NVD
NVD
added 2013/01/18 9:55 p.m.17 views

CVE-2012-6360

Cross-site scripting XSS vulnerability in IBM Intelligent Operations Center 1.5.0 allows remote attackers to inject arbitrary web script or HTML via event data fields...

4.3CVSS5.6AI score0.01148EPSS
Exploits0References3
Prion
Prion
added 2013/01/18 9:55 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Intelligent Operations Center 1.5.0 allows remote attackers to inject arbitrary web script or HTML via event data fields...

4.3CVSS5.9AI score0.01148EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2013/01/18 9:0 p.m.29 views

CVE-2012-6360

Cross-site scripting XSS vulnerability in IBM Intelligent Operations Center 1.5.0 allows remote attackers to inject arbitrary web script or HTML via event data fields...

5.6AI score0.01148EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2011/07/06 3:24 p.m.2 views

BPM Database leaked by p0keu for #AntiSec

BPM Database leaked by p0keu for AntiSec One more Hacker with name "p0keu" leak the database of BPM https://visitbpm.co.uk for Antisec. BPM is the world's largest event dedicated to DJing, electronic music production and club culture has had its whole database leaked via twitter. The database is...

7.1AI score
Exploits0
NVD
NVD
added 2011/05/05 2:39 a.m.35 views

CVE-2011-0756

The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote console GUI to connect to the management port...

5CVSS6.4AI score0.01064EPSS
Exploits1References2
Prion
Prion
added 2011/05/05 2:39 a.m.19 views

Hardcoded credentials

The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote console GUI to connect to the management port...

5CVSS6.8AI score0.01064EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2011/05/05 1:0 a.m.48 views

CVE-2011-0756

Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials in the application server, allowing remote attackers to connect via the management port through the remote console GUI and read security-event data. The linked Red Hat advisory confirms the same issue as CVE-2011-0756, a...

5CVSS6.6AI score0.01064EPSS
Exploits1References2Affected Software1
securityvulns
securityvulns
added 2006/01/24 12:0 a.m.42 views

[VulnWatch] iDefense Security Advisory 01.23.06: Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow Vulnerability

Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow Vulnerability iDefense Security Advisory 01.23.06 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376 January 23, 2006 I. BACKGROUND iTechnology is an integration technology which provides standard...

10CVSS0.4AI score0.18599EPSS
Exploits0
Rows per page
Query Builder