3 matches found
GHSA-MQ6F-5XH5-HGCF Harbor timing attack risk
In the Harbor jobservice container, the comparison of secrets in the authenticator type is prone to timing attacks. The vulnerability occurs due to the following code: https://github.com/goharbor/harbor/blob/aaea068cceb4063ab89313d9785f2b40f35b0d63/src/jobservice/api/authenticator.goL69-L69 To...
Issue reporter and assignee user email addresses were disclosed regardless of the email visibility setting - CVE-2018-13391
The ProfileLinkUserFormat component of Jira Server before version 7.6.8, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3, from version 7.10.0 before version 7.10.3 and from version 7.11.0 before version 7.11.2 allows remote...
jSQL Injection v0.73 - Java Tool For Automatic SQL Database Injection
jSQL Injection is a lightweight application used to find database information from a distant server. jSQL is free , open source and cross-platform Windows, Linux, Mac OS X, Solaris. jSQL is part of Kali Linux , the official new BackTrack penetration distribution. jSQL is also included in Black Ha...