10 matches found
EUVD-2007-3555
Malware in sbrugna...
Design/Logic Flaw
In SAP BusinessObjects Business Intelligence Web Intelligence user interface - version 430, some calls return json with wrong content type in the header of the response. As a result, a custom application that calls directly the jsp of Web Intelligence DHTML may be vulnerable to XSS attacks. On...
CVE-2021-32070
The MiCollab Client Service component in Mitel MiCollab before 9.3 could allow an attacker to perform a clickjacking attack due to an insecure header response. A successful exploit could allow an attacker to modify the browser header and redirect users...
CVE-2021-32070
The MiCollab Client Service component in Mitel MiCollab before 9.3 could allow an attacker to perform a clickjacking attack due to an insecure header response. A successful exploit could allow an attacker to modify the browser header and redirect users...
CVE-2021-32070
The CVE-2021-32070 entry concerns the Mitel MiCollab MiCollab Client Service component prior to version 9.3, where an insecure header response could enable a clickjacking attack. An attacker could modify the browser header and redirect users, as described in the public records. No explicit exploi...
Automattic: [intensedebate.com] Open Redirect
Hello Summary: I have found a Open Redirect on https://intensedebate.com//fb-connect/logoutRedir.php?goto=, the parameters $GET'goto' is reflected to the HTTP-Header Response Location HTTP Request GET /fb-connect/logoutRedir.php?goto=\http://\ HTTP/1.1 Host: intensedebate.com User-Agent:...
CVE-2012-6452 Axway Secure Messenger Username Disclosure
Product: Axway Email Firewall Component: Secure Messenger Vendor: Axway Vulnerable Versions: 6.5 and earlier on the Email Firewall EMF platform only Tested Version: 6.3.2 Build 4230 Vendor Notification: December 8, 2012 Vendor Patch: Secure Messenger version 6.5.0 Updated Release 7 Public...
Fedora 16 : awstats-7.0-5.fc16 (2011-13947)
Fixes XSS flaws, sql injection and header response splitting flaw in awredir.pl Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 15 : awstats-7.0-5.fc15 (2011-13999)
Fixes XSS flaws, sql injection and header response splitting flaw in awredir.pl Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 14 : awstats-7.0-4.fc14 (2011-14025)
Fixes XSS flaws, sql injection and header response splitting flaw in awredir.pl Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...