32 matches found
EUVD-2016-5795
Malware in sbrugna...
EUVD-2019-15586
Malware in sbrugna...
EUVD-2006-4155
Malware in sbrugna...
EUVD-2007-5920
Malware in sbrugna...
CVE-2019-6018
Cross-site scripting vulnerability in NetCommons 3.2.2 and earlier NetCommons3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2019-6018
Cross-site scripting vulnerability in NetCommons 3.2.2 and earlier NetCommons3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2019-6018
Cross-site scripting vulnerability in NetCommons 3.2.2 and earlier NetCommons3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in NetCommons 3.2.2 and earlier NetCommons3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2019-6018
Cross-site scripting vulnerability in NetCommons 3.2.2 and earlier NetCommons3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2019-6018
NetCommons3.x (NetCommons 3.2.2 and earlier) is affected by a cross-site scripting (XSS) vulnerability (CWE-79). The issue arises from insufficient validation of client data in the web application, allowing an attacker to inject arbitrary script/HTML into users’ browsers. Affected versions includ...
JVN#74530672: NetCommons3 vulnerable to cross-site scripting
NetCommons3 provided by The NetCommons Project contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest version according to the information provided by the developer. Products...
NetCommons Cross-Site Scripting Vulnerability
NetCommons is an information sharing platform system. A cross-site scripting vulnerability exists in NetCommons 3.2.2 and prior versions, which stems from a lack of proper validation of client data by the WEB application and can be exploited by an attacker to execute client-side code...
CVE-2016-4813
NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat aka CLERK users to gain privileges by creating a SYSTEMADMIN account...
CVE-2016-4813
NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat aka CLERK users to gain privileges by creating a SYSTEMADMIN account...
Code injection
NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat aka CLERK users to gain privileges by creating a SYSTEMADMIN account...
CVE-2016-4813
NetCommons 2.4.2.1 and earlier are affected by a privilege-escalation flaw where a remote authenticated secretariat user (CLERK) can create a SYSTEM_ADMIN account, granting full admin rights. The root cause is elevation of privileges within the NetCommons privilege model, enabling CLERK to gain a...
CVE-2016-4813
NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat aka CLERK users to gain privileges by creating a SYSTEMADMIN account...
NetCommons Elevation of Privilege Vulnerability
NetCommons is an integrated CMS Content Management System and LMS Learning Management System website maintained by the NetCommons project in Japan. An elevation of privilege vulnerability exists in NetCommons 2.4.2.1 and prior versions. The vulnerability can be exploited to create users with...
NetCommons vulnerable to privilege escalation
Overview NetCommons provided by the NetCommons Project contains a privilege escalation vulnerability. Satoru Nagaoka of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A user wi...
JVN#00460236: NetCommons vulnerable to privilege escalation
NetCommons provided by the NetCommons Project contains a privilege escalation vulnerability. Impact A user with secretariat privileges "CLERK" may create a user with system administrator privileges "SYSTEMADMIN". Solution Update the Software Update the software according to the information provid...