Lucene search
K

4 matches found

Redos
Redos
added 2024/08/12 12:0 a.m.15 views

ROS-20240812-13

A vulnerability in GLPI's asset and data center management software involves server-side request forgery. Exploitation of the vulnerability could allow an attacker acting remotely to perform an SSRF-based attack using the creation of an arbitrary object. remotely to execute an SSRF-based attack...

9.6CVSS7.5AI score0.58818EPSS
Exploits2
Vulnrichment
Vulnrichment
added 2024/06/10 12:0 a.m.54 views

CVE-2024-37393

Multiple LDAP injections vulnerabilities exist in SecurEnvoy MFA before 9.4.514 due to improper validation of user-supplied input. An unauthenticated remote attacker could exfiltrate data from Active Directory through blind LDAP injection attacks against the DESKTOP service exposed on the...

7.7AI score0.03304EPSS
Exploits2References3
appercut
appercut
added 2016/05/13 12:0 a.m.534 views

Allfresco Community Edition: source code security analysis report

Several vulnerabilities were discovered in Alfresco Software 'Allfresco Community Edition' software: Утечка пользовательских данных между сессиями Использование XSL трансформации для исполнения произвольного кода Использование метода finalize Отсутствие верификации цифровой подписи исполняемых...

0.6AI score
Exploits0References1Affected Software1
w3af
w3af
added 2013/06/10 11:2 p.m.63 views

ldapi

This plugin will find LDAP injections by sending a specially crafted string to every parameter and analyzing the response for LDAP errors. Plugin type Audit Options This plugin doesnt have any user configured options. Source For more information about this plugin and the associated tests, theres...

Exploits0
Rows per page
Query Builder