CVE-2018-25259

Terminal Services Manager 3.1 contains a stack-based buffer overflow vulnerability in the computer names field that allows local attackers to execute arbitrary code by triggering structured exception handling. Attackers can craft a malicious input file with shellcode and jump instructions that...

IBM MQ XXE (6613021)

The version of IBM MQ Server running on the remote host is affected by a vulnerability as referenced in the 6613021 advisory. - IBM MQ Explorer is vulnerable to an XML External Entity Injection XXE attack due to improper XML validation in the import Wizard. CVE-2022-22489 Note that Nessus has not...

IBM MQ 代码问题漏洞

IBM MQ IBM WebSphere MQ is a messaging middleware product from IBM. It provides a reliable and proven messaging backbone for Service Oriented Architecture SOA. A security vulnerability exists in IBM MQ that stems from an attacker being able to transfer malicious XML data to IBM MQ via the Explore...

Jama Connect Cross-Site Scripting Vulnerability

Jama Connect is an application lifecycle management product that can be deployed in the cloud or installed on Mac and Windows devices. A cross-site scripting vulnerability exists in Jama Connect 8.44.0. The vulnerability can be exploited to conduct a cross-site scripting attack via the Select...