4 matches found
CVE-2019-19084
In Octopus Deploy 3.3.0 through 2019.10.4, an authenticated user with PackagePush permission to upload packages could upload a maliciously crafted package, triggering an exception that exposes underlying operating system details...
Aspen: Information leakage on django.aspen.io
Hi Team, I got a error message that disclose the version of nginx with OS detail, since The version of nginx is vulnerable to integer overflow. Impact: By seeing this information attacker can throw only interger overflow attack in order to get sensitive information Finally Request you to remove...
jsDelivr: Using nmap revealing sensitive information
check this = http://prntscr.com/3xlww2 nmap scan result . Starting Nmap 6.46 http://nmap.org at 2014-06-29 15:34 India Standard Time NSE: Loaded 30 scripts for scanning. NSE: Script Pre-scanning. Initiating Parallel DNS resolution of 1 host. at 15:35 Completed Parallel DNS resolution of 1 host. a...
IBM Lotus Domino HTTP Server Filesystem Setup Disclosure
It is possible to get the absolute path leading to the remote /cgi-bin directory by requesting a bogus cgi. This issue can be used to obtain OS and installation details. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...