26 matches found
CVE-2018-1593
IBM Multi-Cloud Data Encryption MDE 2.1 could allow an unauthorized user to manipulate data due to missing file checksums. IBM X-Force ID: 143568...
F5 BIG-IP APM client svpn component design vulnerability
F5 BIG-IP APM client is the client software in a suite of access and security solutions from F5 USA. The software provides unified access to business-critical applications and networks. svpn component is one of the VPN components. A security vulnerability exists in the svpn component of the F5...
CVE-2018-5529
The svpn component of the F5 BIG-IP APM client prior to version 7.1.7 for Linux and Mac OS X runs as a privileged process and can allow an unprivileged user to assume super-user privileges on the local client host. A malicious local unprivileged user may gain knowledge of sensitive information,...
Contact Form Maker Component SQL Injection Vulnerability
Joomla! is an open source content management system that provides RSS feeds, site search, etc. Contact Form Maker is a component for creating submission forms. A SQL injection vulnerability exists in the Joomla! Contact Form Maker component that can be exploited by remote attackers to submit a...
NConf delete_attr.php id Parameter SQL Injection
The version of the NConf installed on the remote host is affected by a SQL injection vulnerability because it fails to properly sanitize user-supplied input to the 'id' parameter of the 'deleteattr.php' script. An attacker may be able to leverage this to manipulate data in the back-end database o...
FreeBSD : cacti -- Multiple vulnerabilities (41da2ba4-a24e-11db-bd24-000f3dcc6a5d)
Secunia reports : rgod has discovered four vulnerabilities in Cacti, which can be exploited by malicious people to bypass certain security restrictions, manipulate data and compromise vulnerable systems. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks ...