Lucene search
+L

88 matches found

Prion
Prion
added 2020/12/17 2:15 a.m.27 views

Design/Logic Flaw

Sonatype Nexus Repository Manager 3.x before 3.29.0 allows a user with admin privileges to configure the system to gain access to content outside of NXRM via an XXE vulnerability. Fixed in version 3.29.0...

5.5CVSS6.6AI score0.01441EPSS
Exploits0References1Affected Software1
Hacker One
Hacker One
added 2020/01/09 12:26 a.m.17 views

Mail.ru: Insecure storage of private files

"Send to myself" activity of Mail.ru Mail application for Android could be locally manipulated via external content provider to access the files in application folder...

2.9AI score
Exploits0
NVD
NVD
added 2015/08/08 12:59 a.m.20 views

CVE-2015-5961

The COPPA error page in the Accounts setup dialog in Mozilla Firefox OS before 2.2 embeds content from an external web server URL into the System process, which allows man-in-the-middle attackers to bypass intended access restrictions by spoofing that server...

3.3CVSS6.4AI score0.00377EPSS
Exploits0References3
CNVD
CNVD
added 2015/08/04 12:0 a.m.5 views

IBM Business Process Manager Security Bypass Vulnerability

IBM Business Process Manager BPM is a comprehensive set of business process management platform from IBM in the United States. The platform provides a range of tools related to process modeling, assembly, monitoring and deployment for business. A security vulnerability exists in IBM BPM versions...

3.5CVSS9.2AI score0.01431EPSS
Exploits0References1
securityvulns
securityvulns
added 2013/03/13 12:0 a.m.49 views

Microsoft Outlook for Mac information leakage

External content is requested during message parsing...

5CVSS2.9AI score0.20801EPSS
Exploits1
Atlassian
Atlassian
added 2011/06/14 10:6 p.m.18 views

Implement security sanitization of RSS feeds and other included content

A great improvement for RSS macros would be to implement "cleansing" or "sanitization" of external RSS feeds. This may be something that is configured at the admin level or in the macro level -- I'd prefer it to be a global admin requirement. Having externally linked content is a security risk, a...

0.4AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2011/06/14 10:6 p.m.18 views

Implement security sanitization of RSS feeds and other included content

A great improvement for RSS macros would be to implement "cleansing" or "sanitization" of external RSS feeds. This may be something that is configured at the admin level or in the macro level -- I'd prefer it to be a global admin requirement. Having externally linked content is a security risk, a...

0.4AI score
Exploits0Affected Software1
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.4 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Rows per page
Query Builder