12 matches found
EUVD-2008-0009
Malware in sbrugna...
Authorization Bypass
roundup is vulnerable to Authorization Bypass. The vulnerability is due to improper property permissions checks, allowing unauthorized manipulation or access to restricted properties through certain methods...
Roundup xml-rpc server improper check of property permissions
The xml-rpc server in Roundup 1.4.4 does not check property permissions, which allows attackers to bypass restrictions and edit or read restricted properties via the 1 list, 2 display, and 3 set methods...
CVE-2008-1475
The xml-rpc server in Roundup 1.4.4 does not check property permissions, which allows attackers to bypass restrictions and edit or read restricted properties via the 1 list, 2 display, and 3 set methods...
GLSA-200805-21 : Roundup: Permission bypass
The remote host is affected by the vulnerability described in GLSA-200805-21 Roundup: Permission bypass Philipp Gortan reported that the xml-rpc server in Roundup does not check property permissions CVE-2008-1475. Furthermore, Roland Meister discovered multiple vulnerabilities caused by unspecifi...
CVE-2008-1475
The xml-rpc server in Roundup 1.4.4 does not check property permissions, which allows attackers to bypass restrictions and edit or read restricted properties via the 1 list, 2 display, and 3 set methods...
PYSEC-2008-10
The xml-rpc server in Roundup 1.4.4 does not check property permissions, which allows attackers to bypass restrictions and edit or read restricted properties via the 1 list, 2 display, and 3 set methods...
CVE-2008-1475
The xml-rpc server in Roundup 1.4.4 does not check property permissions, which allows attackers to bypass restrictions and edit or read restricted properties via the 1 list, 2 display, and 3 set methods...
Design/Logic Flaw
The xml-rpc server in Roundup 1.4.4 does not check property permissions, which allows attackers to bypass restrictions and edit or read restricted properties via the 1 list, 2 display, and 3 set methods...
PYSEC-2008-10
The xml-rpc server in Roundup 1.4.4 does not check property permissions, which allows attackers to bypass restrictions and edit or read restricted properties via the 1 list, 2 display, and 3 set methods...
CVE-2008-1475
The xml-rpc server in Roundup 1.4.4 does not check property permissions, which allows attackers to bypass restrictions and edit or read restricted properties via the 1 list, 2 display, and 3 set methods...
CVE-2008-1475
CVE-2008-1475 concerns the xml-rpc server in Roundup 1.4.4, which does not check property permissions, allowing attackers to bypass restrictions and read or edit restricted properties via the (1) list, (2) display, and (3) set methods. The connected documents corroborate the same description and ...