11235 matches found
Security Bulletin: Possible remote code execution vulnerability in Watson Knowledge Catalog for IBM Cloud Pak for Data
Summary There is a possible remote code execution vulnerability in the Watson Knowledge Catalog for IBM Cloud Pak for Data Apache Solr service. This vulnerability has been addressed. Vulnerability Details CVEID: CVE-2019-17558 DESCRIPTION: Apache Solr could allow a remote attacker to execute...
August 2016 update rollup for Windows 8.1 and Windows Server 2012 R2
August 2016 update rollup for Windows 8.1 and Windows Server 2012 R2 The August 2016 update rollup includes some new improvements and fixes for the Windows 8.1 and Windows Server 2012 R2 platforms. We recommend that you apply this update rollup as part of your regular maintenance routines. Before...
Updates are available that improve the content in warning messages that you receive when you run local executable files in Windows
Updates are available that improve the content in warning messages that you receive when you run local executable files in Windows Introduction This article describes some updates that improve the content in warning messages that you receive when you try to run local executable files in Windows...
You cannot change the time and date if the time zone is set to Samoa (UTC+13:00) and KB 2657025 is installed in Windows 7 or in Windows Server 2008 R2
You cannot change the time and date if the time zone is set to Samoa UTC+13:00 and KB 2657025 is installed in Windows 7 or in Windows Server 2008 R2 Symptoms You receive the following error message: This time is not valid due to the Daylight Saving Time. Please choose a time before 1:00:00 AM or...
CVE-2020-4273
IBM Spectrum Scale 4.2 and 5.0 could allow a local unprivileged attacker with intimate knowledge of the enviornment to execute commands as root using specially crafted input. IBM X-Force ID: 175977...
Security Bulletin: Possible denial of service vulnerability in Watson Knowledge Catalog for IBM Cloud Pak for Data
Summary There is a possible denial of service vulnerability in some of the Watson Knowledge Catalog for IBM Cloud Pak for Data UI services. This vulnerability has been addressed. Vulnerability Details CVEID: CVE-2019-10744 DESCRIPTION: Node.js lodash module is vulnerable to a denial of service,...
Azure File Sync Agent v10.0 Release – April 2020 (KB4522409)
Update for Azure File Sync agent version 10.0.0.0. For more details, see the associated Microsoft Knowledge Base article...
Azure File Sync Agent v10.0 Release – April 2020 (KB4522409)
Update for Azure File Sync agent version 10.0.0.0. For more details, see the associated Microsoft Knowledge Base article...
Azure File Sync Agent v10.0 Release – April 2020 (KB4522409)
Update for Azure File Sync agent version 10.0.0.0. For more details, see the associated Microsoft Knowledge Base article...
glpi -- multiple related stored XSS vulnerabilities
MITRE Corporation reports: In GLPI before version 9.4.6 there are multiple related stored XSS vulnerabilities. The package is vulnerable to Stored XSS in the comments of items in the Knowledge base. Adding a comment with content "alert1" reproduces the attack. This can be exploited by a user with...
SQL Injection Vulnerability in Star eBook Platform
Star eBook platform is a comprehensive service platform integrating "copyright management, new book release, eBook purchase, sales, lending and knowledge discovery". A SQL injection vulnerability exists in the eBook Platform, which can be exploited by attackers to obtain sensitive information fro...
U.S. Dept Of Defense: Knowledge Base Articles are Globally Modifiable via ██████
Summary: A user is able to create an account on ██████████ and modify or create any knowledge base articles. This includes articles that have been created by the ██████████ as a canned response to help users with frequently asked questions. Description: Knowledge base articles are used within the...
PHPKB Multi-Language 9 - Authenticated Remote Code Execution
Exploit Title: PHPKB Multi-Language 9 - Authenticated Remote Code Execution Google Dork: N/A Date: 2020-03-15 Exploit Author: Antonio Cannito Vendor Homepage: https://www.knowledgebase-script.com/ Software Link: https://www.knowledgebase-script.com/pricing.php Version: Multi-Language v9 Tested on...
Chadha PHPKB OS Command Injection Vulnerability
Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. An OS command injection vulnerability exists in export.php in Chadha PHPKB Standard Multi-Language 9. A remote attacker can exploit...
Chadha PHPKB Remote Code Execution Vulnerability
Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A remote code execution vulnerability exists in admin/save-settings.php in Chadha PHPKB Standard Multi-Language 9. A remote attacker...
Logic Flaw Vulnerability in Cicada Knowledge Enterprise Portal System
The underlying framework of Cicada Knowledge Enterprise Portal System is self-developed with built-in extension mechanism for easy customization and development. Cicada Knowledge Enterprise Portal System has a logic flaw vulnerability, which can be exploited by an attacker to authenticate differe...
Chadha Software Technologies PHPKB Standard Multi-Language admin/download.php Path Traversal Vulnerability
Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A path traversal vulnerability exists in the admin/download.php file in Chadha Software Technologies PHPKB Standard Multi-Language...
Chadha Software Technologies PHPKB Standard Multi-Language File Upload Vulnerability
Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A security vulnerability exists in the admin/manage-glossary.php file in Chadha Software Technologies PHPKB Standard Multi-Language...
2020-03 Servicing Stack Update for Windows Server, version 2004 for x64-based Systems (KB4545706)
Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...
2020-03 Servicing Stack Update for Windows 10 Version 2004 for x86-based Systems (KB4545706)
Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...