Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.5 views

Mastodon < 4.1.18 Multiples Vulnerabilities

According to its self-reported version number, the Mastodon application running on the remote host is prior to 4.1.18 or 4.2.x prior to 4.2.10. It is, therefore, affected by multiples vulnerabilities : - An Insufficient permission checking on multiple API endpoints - An Improper authorship check ...

8.2CVSS6.9AI score0.00526EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.5 views

Mastodon 4.2.x < 4.2.10 Multiples Vulnerabilities

According to its self-reported version number, the Mastodon application running on the remote host is prior to 4.1.18 or 4.2.x prior to 4.2.10. It is, therefore, affected by multiples vulnerabilities : - An Insufficient permission checking on multiple API endpoints - An Improper authorship check ...

8.2CVSS6.9AI score0.00526EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/03/05 4:43 p.m.15 views

CVE-2024-27931 Insufficient permission checking in `Deno.makeTemp*` APIs

Deno is a JavaScript, TypeScript, and WebAssembly runtime with secure defaults. Insufficient validation of parameters in Deno.makeTemp APIs would allow for creation of files outside of the allowed directories. This may allow the user to overwrite important files on the system that may affect othe...

5.8CVSS6.7AI score0.00491EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/03/05 4:43 p.m.31 views

CVE-2024-27931 Insufficient permission checking in `Deno.makeTemp*` APIs

Deno is a JavaScript, TypeScript, and WebAssembly runtime with secure defaults. Insufficient validation of parameters in Deno.makeTemp APIs would allow for creation of files outside of the allowed directories. This may allow the user to overwrite important files on the system that may affect othe...

5.8CVSS5.7AI score0.00491EPSS
Exploits1References1
NVD
NVD
added 2021/10/07 6:15 p.m.20 views

CVE-2021-20372

IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote authenticated user to cause a denial of another user's service due to insufficient permission checking. IBM X-Force ID: 195518...

4.3CVSS0.01207EPSS
Exploits0References2
Prion
Prion
added 2021/10/07 6:15 p.m.15 views

Design/Logic Flaw

IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote authenticated user to cause a denial of another user's service due to insufficient permission checking. IBM X-Force ID: 195518...

4CVSS4.4AI score0.01207EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/10/07 6:5 p.m.20 views

CVE-2021-20372

IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote authenticated user to cause a denial of another user's service due to insufficient permission checking. IBM X-Force ID: 195518...

4.3CVSS4.6AI score0.01207EPSS
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Liferay Portal 6.1 - 6.0.x Privilege Escalation

No description provided by source. Liferay users can assign themselves to organizations, leading to possible privilege escalation Description: Liferay Portal is an enterprise portal written in Java Due to insufficient permission checking in the updateOrganizations method of UserService any user c...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2012/06/03 12:0 a.m.60 views

Liferay users can assign themselves to organizations, leading to possible privilege escalation

Liferay users can assign themselves to organizations, leading to possible privilege escalation Description: Liferay Portal is an enterprise portal written in Java Due to insufficient permission checking in the updateOrganizations method of UserService any user can assign hem or her self to any...

1.6AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/14 12:0 a.m.39 views

Liferay Portal Privilege Escalation

Liferay users can assign themselves to organizations, leading to possible privilege escalation Description: Liferay Portal is an enterprise portal written in Java Due to insufficient permission checking in the updateOrganizations method of UserService any user can assign hem or her self to any...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2012/05/13 12:0 a.m.54 views

Liferay Portal 6.0.x &lt; 6.1 - Privilege Escalation

Liferay users can assign themselves to organizations, leading to possible privilege escalation Description: Liferay Portal is an enterprise portal written in Java Due to insufficient permission checking in the updateOrganizations method of UserService any user can assign hem or her self to any...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2012/05/13 12:0 a.m.13 views

Liferay Portal 6.0.x 6.1 - Privilege Escalation

Liferay Portal 6.0.x 6.1 - Privilege Escalation Liferay users can assign themselves to organizations, leading to possible privilege escalation Description: Liferay Portal is an enterprise portal written in Java Due to insufficient permission checking in the updateOrganizations method of UserServi...

0.5AI score
Exploits0
0day.today
0day.today
added 2012/03/13 12:0 a.m.26 views

Liferay Portal 6.1 - 6.0.x Privilege Escalation

Exploit for java platform in category web applications Liferay users can assign themselves to organizations, leading to possible privilege escalation Description: Liferay Portal is an enterprise portal written in Java Due to insufficient permission checking in the updateOrganizations method of...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.34 views

Fedora Core 12 FEDORA-2009-13039 (kernel)

The remote host is missing an update to the kernel announced via advisory FEDORA-2009-13039. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

7.2CVSS7.4AI score0.00788EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/12/11 12:0 a.m.36 views

Fedora 12 : kernel-2.6.31.6-166.fc12 (2009-13039)

CVE-2009-4131: EXT4 - fix insufficient permission checking which could result in arbitrary data corruption by a local unprivileged user. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

7.2CVSS7.9AI score0.00788EPSS
Exploits1References3
Rows per page
Query Builder