EUVD-2013-0611

Malware in sbrugna...

EUVD-2014-0882

Malware in sbrugna...

EUVD-2018-12000

Malware in sbrugna...

EUVD-2012-5639

Malware in sbrugna...

EUVD-2014-6029

Malware in sbrugna...

EUVD-2012-5642

Malware in sbrugna...

EUVD-2014-6024

Malware in sbrugna...

EUVD-2014-3081

Malware in sbrugna...

EUVD-2014-3080

Malware in sbrugna...

CVE-2018-1421

IBM WebSphere DataPower Appliances 7.1, 7.2, 7.5, 7.5.1, 7.5.2, and 7.6 is vulnerable to a XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 139023...

IBM WebSphere DataPower XC10 Appliance Detection (HTTP)

Detects the installed version of IBM WebSphere DataPower XC10 Appliance. This script sends an HTTP GET request and tries to login via default credentials and fetches the version. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

Unspecified Vulnerability in IBM WebSphere DataPower XC10

IBM WebSphere DataPower XC10 is a caching platform from IBM in the United States. The platform allows distributed caching of data with little or no change to existing applications. A security vulnerability exists in IBM WebSphere DataPower XC10 versions 2.1 and 2.5 due to a program writing...

CVE-2015-1970

The IBM WebSphere DataPower XC10 appliance 2.1 through 2.1.0.3 and 2.5 through 2.5.0.4 retains data on SSD cards, which might allow physically proximate attackers to obtain sensitive information by extracting a card and attaching it elsewhere...

IBM WebSphere DataPower XC10 appliance session hijacking vulnerability

The IBM WebSphere DataPower XC10 Appliance is a solution that combines the powerful DataPower hardware platform with IBM's distributed caching technology. A security vulnerability exists in the IBM WebSphere DataPower XC10 Appliance that allows remote attackers to hijack arbitrary user sessions t...

Design/Logic Flaw

The IBM WebSphere DataPower XC10 appliance 2.1 before 2.1.0.3 allows remote attackers to hijack the sessions of arbitrary users, and consequently obtain sensitive information or modify data, via unspecified vectors...

CVE-2014-6138

The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to bypass intended grid-data access restrictions via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

CVE-2014-3058

Cross-site request forgery CSRF vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences...

CVE-2014-6163

Cross-site scripting XSS vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...