5 matches found
CVE-2020-6227
SAP Business Objects Business Intelligence Platform CMS / Auditing issues, version 4.2, allows attacker to send specially crafted GIOP packets to several services due to Improper Input Validation, allowing to forge additional entries in GLF log files...
How to enable debug logging for Citrix WEM Cloud Authentication Service and Citrix WEM Cloud Messaging Service on Cloud Connectors
The Workspace Environment Management WEM service is a Citrix Workspace product. Similar to on-premise WEM, the WEM Service Agent needs to connect to the WEM service Broker. In order to do so, the WEM Service Agent must first request the WEM service Broker's URL and a service key from a Citrix Clo...
Security Bulletin: Vulnerability in lighttpd affects PowerKVM (CVE-2015-3200)
Summary PowerKVM is affected by a vulnerability in lighttpd CVE-2015-3200. This vulnerability is now fixed. Vulnerability Details CVEID: CVE-2015-3200 DESCRIPTION: lighttpd could allow a remote attacker to bypass security restrictions, caused by the improper validation of input. An attacker could...
CVE-2017-16680
Two potential audit log injections in SAP HANA extended application services 1.0, advanced model: 1 Certain HTTP/REST endpoints of controller service are missing user input validation which could allow unprivileged attackers to forge audit log lines. Hence the interpretation of audit log files...
IPSwitch WS_FTP crossite scripting
Crossite scripting with log file entries in Web interface...