CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: cert-manager-csi-driver, grpcurl, cerbos, cloud-sql-proxy, swagger, frp, extism, task, configmap-reload, knative-serving, kube-state-metrics, apache-exporter, promxy, k8sgpt-operator, knative-operator, custom-pod-autoscaler, bank-vaults, thanos-operator,...

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: longhorn-share-manager-fips, nvidia-container-toolkit, cluster-api-provider-vsphere-fips, protoc-gen-go-grpc, terraform-provider-random-fips, grafana-pyroscope, portieris-fips, rancher-webhook, newrelic-infrastructure-agent-fips, dynamic-localpv-provisioner-fips,...

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: grpcurl, frp, task, k8sgpt, knative-serving, apache-exporter, kube-state-metrics, promxy, k8sgpt-operator, knative-operator, custom-pod-autoscaler, thanos-operator, kubebuilder, migrate, petname, metrics-agent, gobuster, kor, sriov-network-device-plugin, nri-f5,...

EUVD-2008-3636

Malware in sbrugna...

SUSE CVE-2008-3650

Multiple unspecified vulnerabilities in Horde Groupware Webmail before Edition 1.1.1 final have unknown impact and attack vectors related to "unescaped output," possibly cross-site scripting XSS, in the 1 object browser and 2 contact view...

VMware ESX / ESXi Remotely Accessible Method Object Browser API

The remote VMware ESX / ESXi host has a Method Object Browser API accessible in the /mob directory on the web interfaces. This is disabled by default. If enabled, the MOB allows remote attackers to invoke methods on VMware ESX / ESXi objects, including create and destroy. This can allow a remote...

How to get disk changed areas from CBT(changed block tracker) in vSphere

Purpose This article demonstrates how to pull the changed disk areas in a vSphere environment. Performing this task is intended as a way to demonstrate how changed block tracking functions for Veeam Backup & Replication jobs. The most common situation where this article comes into play is when a...

Monitoring of vSphere 4.x fails with Veeam MP v7

Challenge Though everything is configured correctly and you have successfully added vCenter 4.x or standalone ESX 4.x to Veeam Extensions as a Monitoring target, no data is shown in SCOM and you can see "Veeam VMware Collector: VMware connection is unavailable" alerts . Additionally, the followin...

Using the vSphere MOB (Managed Object Browser) to Troubleshoot Snapshot Creation

Purpose This article documents the procedure for manually creating a vSphere VM snapshot using the Managed Object Browser MOB. Solution Start by identifying the Managed Object Reference-ID MORef-ID of the VM for which the snapshot will be created. If the VM is being protected by Veeam Backup &...

How to check the ESXi host license using the Managed Object Browser

Purpose This article documents a method of checking which license is installed on a vSphere ESXi host using the Managed Object Browser. Solution In the recent versions of vSphere ESXi, the Managed Object Browser may be disabled by default. To perform the task below, you may need to enable the...

Cross site scripting

Multiple unspecified vulnerabilities in Horde Groupware Webmail before Edition 1.1.1 final have unknown impact and attack vectors related to "unescaped output," possibly cross-site scripting XSS, in the 1 object browser and 2 contact view...

CVE-2008-3650

Multiple unspecified vulnerabilities in Horde Groupware Webmail before Edition 1.1.1 final have unknown impact and attack vectors related to "unescaped output," possibly cross-site scripting XSS, in the 1 object browser and 2 contact view...

CVE-2008-3650

Multiple unspecified vulnerabilities in Horde Groupware Webmail before Edition 1.1.1 final have unknown impact and attack vectors related to "unescaped output," possibly cross-site scripting XSS, in the 1 object browser and 2 contact view...

Fedora 8 : horde-3.2.1-1.fc8 (2008-5691)

Update to the New Horde Application Framework 3.2.1 Includes security fixes XSS in object browser Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...