22 matches found
EUVD-2014-0766
Malware in sbrugna...
EUVD-2014-2224
Malware in sbrugna...
EUVD-2024-36399
Malicious code in bioql PyPI...
CVE-2024-26026
CVE-2024-26026: SQL injection in BIG-IP Next Central Manager API (URI) allows an unauthenticated remote attacker to execute malicious SQL statements. Affected: BIG-IP Next Central Manager versions 20.0.1–20.1.0. Remediation: upgrade to 20.2.0 or later as specified by K000138733; Nessus/K0- querie...
Cisco Unified Communications Manager Sensitive Information Disclosure Vulnerability
A vulnerability in Cisco IP Manager Assistant IPMA of Cisco Unified Communications Manager Cisco Unified CM could allow an unauthenticated, remote attacker to access sensitive information on the affected device. The vulnerability is due to improper validation of user input. An attacker could...
CVE-2014-2184
The IP Manager Assistant IPMA component in Cisco Unified Communications Manager Unified CM allows remote attackers to obtain sensitive information via a crafted URL, aka Bug ID CSCun74352...
Code injection
The IP Manager Assistant IPMA component in Cisco Unified Communications Manager Unified CM allows remote attackers to obtain sensitive information via a crafted URL, aka Bug ID CSCun74352...
CVE-2014-2184
The IP Manager Assistant IPMA component in Cisco Unified Communications Manager Unified CM allows remote attackers to obtain sensitive information via a crafted URL, aka Bug ID CSCun74352...
CVE-2014-2184
The CVE-2014-2184 issue concerns the Cisco IP Manager Assistant (IPMA) within Cisco Unified Communications Manager. The root cause is improper validation of user input, enabling an unauthenticated, remote attacker to access sensitive information via crafted URLs. Affected context: IPMA component ...
CVE-2014-0735
Cross-site scripting XSS vulnerability in the IP Manager Assistant IPMA interface in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCum46470...
Cross site scripting
Cross-site scripting XSS vulnerability in the IP Manager Assistant IPMA interface in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCum46470...
CVE-2014-0735
Cross-site scripting XSS vulnerability in the IP Manager Assistant IPMA interface in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCum46470...
CVE-2014-0735
Cisco Unified Communications Manager IPMA (IPMA interface) is affected by CVE-2014-0735 (Bug CSCum46470): an XSS via crafted URLs due to insufficient input validation in the IP Manager Assistant. Affected product: Cisco Unified CM IPMA, version 10.0(1) and earlier. Impact per sources: remote atta...
Cisco Unified Communications Manager IPMA Reflected Cross-Site Scripting Vulnerability
A vulnerability in the Cisco IP Manager Assistant IPMA interface of Cisco Unified Communications Manager Cisco Unified CM could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface on the affected system. The vulnerability is d...
CVE-2014-0723
Cross-site scripting XSS vulnerability in the IP Manager Assistant IPMA interface in Cisco Unified Communications Manager UCM allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCum05343...
CVE-2014-0726
SQL injection vulnerability in the IP Manager Assistant IPMA interface in Cisco Unified Communications Manager UCM 10.01 and earlier allows remote attackers to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCum05326...
Sql injection
SQL injection vulnerability in the IP Manager Assistant IPMA interface in Cisco Unified Communications Manager UCM 10.01 and earlier allows remote attackers to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCum05326...
CVE-2014-0726
Cisco Unified Communications Manager IP Manager Assistant (IPMA) suffers a blind SQL injection vulnerability that allows remote, unauthenticated attackers to execute arbitrary SQL via crafted URLs. Affected product/version: UCM 10.0(1) and earlier; root cause is lack of input validation within SQ...
CVE-2014-0723
Cisco IP Manager Assistant (IPMA) within Cisco Unified Communications Manager (UCM) suffers a cross-site scripting (XSS) vulnerability. The issue stems from insufficient input validation in the IPMA web interface, allowing an unauthenticated, remote attacker to craft a URL that injects arbitrary ...
Cisco Unified Communications Manager IPMA Blind SQL Injection Vulnerability
A vulnerability in the Cisco Unified Communications Manager UCM IP Manager Assistant IPMA interface could allow an unauthenticated, remote attacker to impact the integrity of the system by executing arbitrary SQL queries. The vulnerability is due to a lack of input validation on user-supplied...