15 matches found
EUVD-2016-3954
Malware in sbrugna...
EUVD-2023-49485
Malicious code in bioql PyPI...
CVE-2022-48475
Buffer Overflow vulnerability in Control de Ciber version 1.650, in the printing function. Sending a modified request by the attacker could cause a Buffer Overflow when the adminitrator tries to accept or delete the print query created by the request...
Vaadin 信息泄露漏洞
Vaadin is an open source platform for web application development from Vaadin Open Source.The Vaadin platform includes a set of web components, a Java web framework, and a set of tools and application launchers. A security vulnerability exists in Vaadin that stems from a potential information...
PT-2022-26576 · Unknown · Comserver Series
Name of the Vulnerable Software and Affected Versions: ComServer Series affected versions not specified Description: The issue allows an unauthenticated remote attacker to bypass authentication and log in without knowledge of the password by crafting a modified HTTP GET Request. Recommendations: ...
Mail.ru: Дюп предметов lootdog и возможность их продавать.
It was possible to duplicated item for sale infinitely via modified request on lootdog.io...
CVE-2016-2881
IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 and QRadar Incident Forensics 7.2 before 7.2.7 allow remote attackers to bypass intended access restrictions via modified request parameters...
CVE-2015-8148
The LDAP service in Symantec Encryption Management Server SEMS 3.3.2 before MP12 allows remote attackers to obtain sensitive information about administrator accounts via a modified request...
CVE-2015-7249
ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.kPE allow remote authenticated users to bypass intended access restrictions via a modified request, as demonstrated by leveraging the support account to change a password via a cgi-bin/webproc accountpsd action...
CVE-2015-0951
X-Cart before 5.1.11 allows remote authenticated users to read or delete address data of arbitrary accounts via a modified 1 update or 2 remove request...
Buffer overflow
The File Transfer feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center does not verify that a requested file was an offered file, which allows remote attackers to read arbitrary files via a modified request, aka Bug IDs CSCup62442 and CSCup58463...
CVE-2011-2763
The web interface on the LifeSize Room appliance LSRM13.5.3 11 and 4.7.18 allows remote attackers to execute arbitrary commands via a modified request to the LSRoomRemoting.doCommand function in gateway.php. Recent assessments: zeroSteiner at January 13, 2020 5:56pm UTC reported: The request to...
CVE-2009-0588
agent/request/op.cgi in the Registration Authority RA component in Red Hat Certificate System RHCS 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field...
rhpki-ra: improper authorization checks in Cerificate System's Registration Authority
agent/request/op.cgi in the Registration Authority RA component in Red Hat Certificate System RHCS 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field...
Cisco ASA5520 Web VPN Host Header XSS
Cisco ASA5520 Web VPN Host Header XSS - Description Cross-site scripting. - Product Cisco, ASA5520, IOS 7.2222 - PoC Modified request: POST /+webvpn+/index.html HTTP/1.1 Host: "'scriptalert'BugsNotHugs'/scriptmeta httpequiv="" content='"www.owasp.org Accept: image/gif, image/x-xbitmap,...