31 matches found
EUVD-2016-10764
Malware in sbrugna...
EUVD-2016-4106
Malware in sbrugna...
EUVD-2016-4107
Malware in sbrugna...
EUVD-2016-4108
Malware in sbrugna...
EUVD-2014-6006
Malware in sbrugna...
EUVD-2014-6009
Malware in sbrugna...
EUVD-2015-2057
Malware in sbrugna...
ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1574 more potentially affected by CVE-2019-10405 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.17)
org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2019-10405 Source advisory: OSV:GHSA-47WC-P5CP-W7PW...
GHSA-65RJ-CGRP-G65W Jenkins IBM AppScan Plugin showed plain text password in job configuration form fields
Jenkins IBM Application Security on Cloud Plugin 1.2.4 and earlier transmitted configured passwords in plain text as part of job configuration forms, potentially resulting in their exposure. This plugin has bee deprecated...
Security Bulletin: Various security issues exist in WebSphere Service Registry and Repository version 7.5
Summary This bulletin describes a variety of minor security issues that have been found and fixed in WebSphere Service Registry and Repository version 7.5 Vulnerability Details CVE ID: CVE-2014-6153 DESCRIPTION: WSRR WEBUI ISSUES A COOKIE WHICH IS NOT DECLARED SSL ONLY. CVSS CVSS Base Score: 2.6...
CVE-2014-6120
IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan Source 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, 9.0 through 9.0.0.1, and 9.0.1 allow remote attackers to execute arbitrary commands on the installation server via unspecified vectors. IBM X-Force ID...
CVE-2016-9981
IBM AppScan Enterprise Edition 9.0 contains an unspecified vulnerability that could allow an attacker to hijack a valid user's session. IBM X-Force ID: 120257...
CVE-2016-9981
CVE-2016-9981 affects IBM AppScan Enterprise Edition 9.0. The available documents describe an unspecified vulnerability that could allow an attacker to hijack a valid user’s session. No concrete root-cause, affected component details, exploit vectors, or remediation steps are provided in the sour...
CVE-2016-6042
IBM AppScan Enterprise Edition could allow a remote attacker to execute arbitrary code on the system, caused by improper handling of objects in memory. By persuading a victim to open specially-crafted content, an attacker could exploit this vulnerability to execute arbitrary code on the system in...
CVE-2016-3035
IBM AppScan Source could reveal some sensitive information through the browsing of testlinks on the server...
CVE-2016-3034
IBM AppScan Source uses a one-way hash without salt to encrypt highly sensitive information, which could allow a local attacker to decrypt information more easily...
Information disclosure
IBM AppScan Source uses a one-way hash without salt to encrypt highly sensitive information, which could allow a local attacker to decrypt information more easily...
Information disclosure
IBM AppScan Source could reveal some sensitive information through the browsing of testlinks on the server...
CVE-2016-3034
IBM AppScan Source uses a one-way hash without salt to encrypt highly sensitive information, which could allow a local attacker to decrypt information more easily...
CVE-2016-6042
IBM AppScan Enterprise Edition could allow a remote attacker to execute arbitrary code on the system, caused by improper handling of objects in memory. By persuading a victim to open specially-crafted content, an attacker could exploit this vulnerability to execute arbitrary code on the system in...