Lucene search
K

34 matches found

Cvelist
Cvelist
added 2022/11/30 10:54 p.m.30 views

CVE-2022-42446 HCL Sametime 12.0 and 12.0FP1 anonymous users have directory lookup access

Starting with Sametime 12, anonymous users are enabled by default. After logging in as an anonymous user, one has the ability to browse the User Directory and potentially create chats with internal users...

6.5CVSS6.7AI score0.0038EPSS
Exploits0References1
Citrix
Citrix
added 2022/06/24 12:0 a.m.13 views

Intermittent Session Launch Failure with Active/Active StoreFront Server Groups

Users intermittently fail to receive ICA files from StoreFront when trying to launch a new session in the following circumstances all of the below conditions must apply: Multiple active StoreFront server groups are in use, connected by GSLB, configured either for direct access or authentication...

7.3AI score
Exploits0
NVD
NVD
added 2021/05/26 9:15 p.m.12 views

CVE-2021-25643

An issue was discovered in Couchbase Server 5.x and 6.x before 6.5.2 and 6.6.x before 6.6.2. Internal users with administrator privileges, @cbq-engine-cbauth and @index-cbauth, leak credentials in cleartext in the indexer.log file when they make a /listCreateTokens, /listRebalanceTokens, or...

4.9CVSS0.00504EPSS
Exploits0References1
NVD
NVD
added 2020/12/22 10:15 p.m.34 views

CVE-2020-24680

In S+ Operations and S+ Historian, the passwords of internal users not Windows Users are encrypted but improperly stored in a database...

7CVSS6.8AI score0.00264EPSS
Exploits0References2
Prion
Prion
added 2020/12/22 10:15 p.m.17 views

Design/Logic Flaw

In S+ Operations and S+ Historian, the passwords of internal users not Windows Users are encrypted but improperly stored in a database...

4.6CVSS6.8AI score0.00264EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2020/12/22 9:18 p.m.29 views

CVE-2020-24680 Improper Credential Storage in Symphony Plus

In S+ Operations and S+ Historian, the passwords of internal users not Windows Users are encrypted but improperly stored in a database...

7CVSS6.9AI score0.00264EPSS
Exploits0References2
NVD
NVD
added 2020/12/22 5:15 p.m.20 views

CVE-2018-15641

Cross-site scripting XSS issue in web module in Odoo Community 11.0 through 14.0 and Odoo Enterprise 11.0 through 14.0, allows remote authenticated internal users to inject arbitrary web script in the browser of a victim via crafted calendar event attributes...

6.3CVSS5.3AI score0.00702EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2020/12/22 4:25 p.m.44 views

CVE-2018-15641

Cross-site scripting XSS issue in web module in Odoo Community 11.0 through 14.0 and Odoo Enterprise 11.0 through 14.0, allows remote authenticated internal users to inject arbitrary web script in the browser of a victim via crafted calendar event attributes...

6.3CVSS5.7AI score0.00702EPSS
Exploits0
Cvelist
Cvelist
added 2019/07/03 6:56 p.m.27 views

CVE-2018-14862

Incorrect access control in the mail templating system in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier allows authenticated internal users to delete arbitrary menuitems via a crafted RPC request...

6.3AI score0.00805EPSS
Exploits0References1
CVE
CVE
added 2019/07/03 6:56 p.m.171 views

CVE-2018-14862

CVE-2018-14862 affects Odoo, specifically Community 11.0 and earlier and Enterprise 11.0 and earlier. The root cause is an incorrect access control in the mail templating system, which allows authenticated internal users to delete arbitrary menuitems via a crafted RPC request. Documented in multi...

6.5CVSS6.2AI score0.00805EPSS
Exploits0References1Affected Software1
Citrix
Citrix
added 2017/10/23 12:0 a.m.8 views

Various Connection Method Behaviours of Mobile Citrix Receiver with StoreFront and NetScaler Gateway

The following scenarios provide an understanding of when to use the StoreFront server FQDN and/or NetScaler Gateway FQDN in an App Controller solution when connecting from a mobile device: Internal Users Connecting to StoreFront Server Scenario 1 – Legacy PNA Site and No Store Available Scenario ...

6.7AI score
Exploits0
Citrix
Citrix
added 2016/06/07 12:0 a.m.9 views

How to Use Listen Policy to Create Virtual Servers with Same IP and Perform Selective Dual Authentication

You can use the Listen Policy feature of Citrix ADC NetScaler to use the same IP and FQDN and have selective authentication on the basis of the IP range. Example : Single authentication for internal users and dual authentication for external users...

7.3AI score
Exploits0
Citrix
Citrix
added 2015/10/27 12:0 a.m.14 views

Cannot Reconnect to a Disconnected Session from a Wyse Client

If by any chance any sessions gets disconnected then while trying to reconnect to that session via Wyse terminals the desktop launches properly and the session remains active for only 10-15 sec and then disconnects automatically and this behavior continues. Everything works fine from the FAT...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2012/11/05 12:0 a.m.46 views

CheckPoint/Sofaware Firewall - Multiple Vulnerabilities

ProCheckUp Research http://procheckup.com/procheckup-labs/pr11-07.aspx PR11-07 Multiple peristent XSS, XSS, XSRF, offsite redirection and information disclosure flaws within CheckPoint/Sofaware firewalls Vulnerability found: 3rd May 2011 Vendor informed: 20th July 2011 Vulnerability fixed: 16th...

7.4AI score
Exploits0
Rows per page
Query Builder