CVE-2025-61907

Icinga 2 is an open source monitoring system. In Icinga 2 versions 2.4 through 2.15.0, filter expressions provided to the various /v1/objects endpoints could access variables or objects that would otherwise be inaccessible for the user. This allows authenticated API users to learn information tha...

EUVD-2019-7051

Malware in sbrugna...

GHSA-6W93-4C4P-XV2X Plone Metadata Disclosure

uidcatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to obtain metadata about hidden objects via a crafted URL...

Unspecified Vulnerability in OMERO.server

OMERO.server is an image server from the Open Microscopy Environment team. A security vulnerability exists in OMERO.server versions prior to 5.6.1, which can be exploited by an attacker with a specially crafted query to bypass security filters and access hidden objects...

CVE-2019-16244

OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query...

CVE-2019-16244

OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query...

Security feature bypass

OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query...

CVE-2019-16244

OMERO.server contains a vulnerability (CVE-2019-16244) affecting versions prior to 5.6.1 where a crafted query can bypass security filters and access hidden objects. The issue is documented across multiple sources (NVD entry and CNVD/CVE references) with a high-severity impact (CVSS 3.1: Critical...

CVE-2019-16244

OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query...

Hidden Objects: Twilight Town - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Hidden Objects: Twilight Town published at the 'play' market has multiple vulnerabilities...

PYSEC-2014-34

uidcatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to obtain metadata about hidden objects via a crafted URL...

CVE-2012-5492

Plone uid_catalog.py vulnerability: affects Plone before 4.2.3 and 4.3 before beta 1; remote attacker can obtain metadata about hidden objects via a crafted URL. Mitigation is to upgrade to Plone 4.2.3+ (or 4.3 beta1+ per advisories).

CVE-2012-5492

uidcatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to obtain metadata about hidden objects via a crafted URL...

Google Chrome Multiple Vulnerabilities - October11 (Windows)

The host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnoct11win.nasl 7044 2017-09-01 11:50:59Z teissa $ Google Chrome Multiple Vulnerabilities - October11 Windows Authors: Sooraj KS Copyright: Copyright c 2011...

[NT] Microsoft Internet Explorer Drag-and-Drop Redeux

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...