98 matches found
EUVD-2006-5945
Malware in sbrugna...
EUVD-2009-3514
Malware in sbrugna...
EUVD-2016-5051
Malware in sbrugna...
EUVD-2018-10521
Malware in sbrugna...
EUVD-2018-10520
Malware in sbrugna...
EUVD-2018-10519
Malware in sbrugna...
EUVD-2019-15514
Malware in sbrugna...
DirectAdmin Evolution Skin 安全漏洞
DirectAdmin Evolution Skin is an application from DirectAdmin, Inc. A security vulnerability exists in DirectAdmin Evolution Skin version 1.680 that stems from a specially crafted GET request that can manipulate the page layout, potentially causing the login screen to be replaced with...
ZITADEL 安全漏洞
ZITADEL is a modern open source alternative to Auth0, Firebase Auth, AWS Cognito, and Keycloak built for the container and serverless era from the Swiss ZITADEL open source. A security vulnerability exists in ZITADEL versions 4.0.0 through 4.0.2, 3.0.0 through 3.3.6, and versions prior to 2.71.15...
Webinar: What the Next Wave of AI Cyberattacks Will Look Like — And How to Survive
The AI revolution isn't coming. It's already here. From copilots that write our emails to autonomous agents that can take action without us lifting a finger, AI is transforming how we work. But here's the uncomfortable truth: Attackers are evolving just as fast. Every leap forward in AI gives bad...
CVE-2023-23126
Connectwise Automate 2022.11 is vulnerable to Clickjacking. The login screen can be iframed and used to manipulate users to perform unintended actions. NOTE: the vendor's position is that a Content-Security-Policy HTTP response header is present to block this attack...
CVE-2019-5946
Open redirect vulnerability in Cybozu Garoon 4.2.4 to 4.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the Login Screen...
Security update for xrdp
This update for xrdp fixes the following issues: CVE-2024-39917: Enforce no login screen if requirecredentials is set bsc1227769 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...
GO-2022-0454 Login screen allows message spoofing if SSO is enabled in github.com/argoproj/argo-cd
Login screen allows message spoofing if SSO is enabled in github.com/argoproj/argo-cd...
Umbraco possible user enumeration
Impact A user enumeration attack is possible. Affected versions Umbraco 10 with access to the native login screen Patches This is fixed in 10.8.5 Workarounds Disabling the native login screen, by exclusively use external logins...
BIT-TYPO3-2023-47126
TYPO3 is an open source PHP based web content management system released under the GNU GPL. In affected versions the login screen of the standalone install tool discloses the full path of the transient data directory e.g. /var/www/html/var/transient/. This applies to composer-based scenarios only...
CVE-2024-26131
Element Android is an Android Matrix Client. Element Android version 1.4.3 through 1.6.10 is vulnerable to intent redirection, allowing a third-party malicious application to start any internal activity by passing some extra parameters. Possible impact includes making Element Android display an...
One Identity Password Manager Security Vulnerability
One Identity Password Manager is a web platform for providing authentication from One Identity, Inc. in the United States. A security vulnerability exists in One Identity Password Manager versions prior to 5.13.1. An attacker could use this vulnerability to reset the Active Directory password of ...
Design/Logic Flaw
TYPO3 is an open source PHP based web content management system released under the GNU GPL. In affected versions the login screen of the standalone install tool discloses the full path of the transient data directory e.g. /var/www/html/var/transient/. This applies to composer-based scenarios only...
TYPO3 Security Vulnerabilities
TYPO3 is a free and open source content management system framework CMS/CMF from the TYPO3 Association in Switzerland. A security vulnerability exists in TYPO3 versions prior to 12.4.8, which stems from the login screen of the standalone installation tool displaying the full path to the transient...