CVE-2020-26821

SAP Solution Manager JAVA stack, version - 7.20, allows an unauthenticated attacker to compromise the system because of missing authorization checks in the SVG Converter Service, this has an impact to the integrity and availability of the service...

CVE-2020-26824

CVE-2020-26824 affects SAP Solution Manager (JAVA stack) version 7.20. The vulnerability is due to missing authorization checks in the Upgrade Legacy Ports Service, allowing an unauthenticated attacker to compromise the system and impacting both integrity and availability. Public disclosures in m...

CVE-2020-26824

SAP Solution Manager JAVA stack, version - 7.20, allows an unauthenticated attacker to compromise the system because of missing authorization checks in the Upgrade Legacy Ports Service, this has an impact to the integrity and availability of the service...

CVE-2020-26822

SAP Solution Manager (JAVA stack) 7.20 is affected by CVE-2020-26822 due to missing authorization checks in the Outside Discovery Configuration Service, enabling an unauthenticated attacker to compromise the system with impact to integrity and availability. The consolidated sources (NVD entry and...

CVE-2016-6859

Hybris Management Console HMC in SAP Hybris before 6.0 allows remote attackers to obtain sensitive information by triggering an error and then reading a Java stack trace...

Stack overflow

Hybris Management Console HMC in SAP Hybris before 6.0 allows remote attackers to obtain sensitive information by triggering an error and then reading a Java stack trace...

CVE-2016-6859

CVE-2016-6859 concerns SAP Hybris’ Hybris Management Console (HMC) prior to version 6.0. An information disclosure vulnerability allows remote attackers to trigger an error and read a Java stack trace, potentially exposing sensitive information. Affected component is the HMC within SAP Hybris; ro...

CVE-2016-2961

The integration server in IBM Integration Bus 9 before 9.0.0.6 and 10 before 10.0.0.5 and WebSphere Message Broker 8 before 8.0.0.8 allows remote attackers to obtain sensitive Tomcat version information by sending a malformed POST request and then reading the Java stack trace...

CVE-2016-2961

The integration server in IBM Integration Bus 9 before 9.0.0.6 and 10 before 10.0.0.5 and WebSphere Message Broker 8 before 8.0.0.8 allows remote attackers to obtain sensitive Tomcat version information by sending a malformed POST request and then reading the Java stack trace...

Stack overflow

McAfee Network Data Loss Prevention NDLP before 9.3 allows local users to obtain sensitive information by reading a Java stack trace...

CVE-2014-8526

McAfee Network Data Loss Prevention NDLP before 9.3 allows local users to obtain sensitive information by reading a Java stack trace...

CVE-2014-8526

McAfee Network Data Loss Prevention (NDLP) prior to version 9.3 is affected by a local information-disclosure vulnerability where an attacker can read a Java stack trace to obtain sensitive information. The available documents confirm the affected product and symptom (stack trace exposure) and th...

CVE-2013-0520

IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 allows remote authenticated users to obtain sensitive Java stack-trace information by providing invalid input data...

Design/Logic Flaw

IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 allows remote authenticated users to obtain sensitive Java stack-trace information by providing invalid input data...

CVE-2013-0520

IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 allows remote authenticated users to obtain sensitive Java stack-trace information by providing invalid input data...

Eclipse BIRT <= 2.2.1 xss

Exploit for unknown platform in category web applications ========================= Eclipse BIRT &r=-703171660 HTTP/1.1 Host: localhost:8780 User-Agent: Mozilla/5.0 Windows; U; Windows NT 5.1; en-US; rv:1.8.1.18 Gecko/20081029 Firefox/2.0.0.18 Accept:...

Eclipse BIRT 2.2.1 Cross Site Scripting

Eclipse BIRT &r=-703171660 HTTP/1.1 Host: localhost:8780 User-Agent: Mozilla/5.0 Windows; U; Windows NT 5.1; en-US; rv:1.8.1.18 Gecko/20081029 Firefox/2.0.0.18 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,/;q=0.5 Accept-Language: en-us,en;q=0.5...

[AntiSnatchOr] Eclipse BIRT &lt;= 2.2.1 Reflected XSS

Eclipse BIRT = 2.2.1 Reflected XSS Vendor: Eclipse Advisory: http://antisnatchor.com/2008/12/18/eclipse-birt-reflected-xss/ Author: Michele "euronymous" Orr euronymous AT antisnatchor DOT com Quite a common problem in a lot of Java based applications: reflected XSS in Java stack trace. A Reflecte...