1826 matches found
Path traversal when MessageBus::Diagnostics is enabled
Impact Users who deployed message bus with diagnostics features enabled default off were vulnerable to a path traversal bug, which could lead to disclosure of secret information on a machine if an unintended user were to gain access to the diagnostic route. The impact is also greater if there is ...
CVE-2021-43815
Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 has a directory traversal for arbitrary .csv files. It only affects instances that have the developer testing tool called TestData DB data source enabled and configured. The vulnerabili...
Fortinet FortiWeb has an unspecified vulnerability (CNVD-2021-101135)
Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. fortinet FortiWeb A security vulnerability...
Fortinet FortiWeb Input Validation Error Vulnerability
Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content.Fortinet FortiWeb An input validation error...
CVE-2021-43813 Directory Traversal in Grafana
Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 contains a directory traversal vulnerability for fully lowercase or fully uppercase .md files. The vulnerability is limited in scope, and only allows access to files with the extension...
CVE-2021-43064
A url redirection to untrusted site 'open redirect' in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to use the device as a proxy and reach external or protected hosts via redirection handlers...
CVE-2021-36191
A url redirection to untrusted site 'open redirect' in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to use the device as proxy via crafted GET parameters in requests to error handlers...
Open redirect
A url redirection to untrusted site 'open redirect' in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to use the device as proxy via crafted GET parameters in requests to error handlers...
CVE-2021-36190
Fortinet FortiWeb is affected by CVE-2021-36190. Vulnerable in FortiWeb 6.4.1 and earlier and 6.3.15 and earlier, where an unintended proxy (the “confused deputy”) can be leveraged via crafted HTTP requests to reach protected hosts. The CVE description states unauthenticated access; Fortinet’s FG...
CVE-2021-36191
A url redirection to untrusted site 'open redirect' in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to use the device as proxy via crafted GET parameters in requests to error handlers...
CVE-2021-43064
A url redirection to untrusted site 'open redirect' in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to use the device as a proxy and reach external or protected hosts via redirection handlers...
Youtube - Php-Mirroring Cross-Site Scripting Vulnerability
Youtube-Php-Mirroring is a Chinese Php development based on Youtube video proxy scripts. ytube-php-mirroring is vulnerable to a cross-site scripting vulnerability that originates in the file ytproxy/index.php. site scripting XSS vulnerability in the file ytproxy/index.php. No detailed vulnerabili...
Exploit for Code Injection in Gitlab
Golang-CVE-2021-22205-POC A bare bones CVE-2021-22205 Gitlab R...
Webcache Poisoning in symfony/http-kernel
Description ----------- When a Symfony application is running behind a proxy or a load-balancer, you can tell Symfony to look for the X-Forwarded- HTTP headers. HTTP headers that are not part of the "trustedheaders" allowed list are ignored and protect you from "Cache poisoning" attacks. In Symfo...
CMSimple 5.4 Local File Inclusion / Remote Code Execution
Exploit Title: CMSimple 5.4 - Local file inclusion LFI to Remote code execution RCE Authenticated Date: 11/15/2021 Exploit Author: S1lv3r Vendor Homepage: https://www.cmsimple.org/en/ Software Link: https://www.cmsimple.org/en/ Version: CMSimple 5.4 Tested on: CMSimple 5.4 writeup:...
CVE-2021-41267: Webcache Poisoning via X-Forwarded-Prefix and sub-request
Description When a Symfony application is running behind a proxy or a load-balancer, you can tell Symfony to look for the X-Forwarded- HTTP headers. HTTP headers that are not part of the "trustedheaders" allowed list are ignored and protect you from "Cache poisoning" attacks. In Symfony 5.2, we'v...
[SECURITY] Fedora 35 Update: guacamole-server-1.3.0-9.fc35
Guacamole is an HTML5 remote desktop gateway. Guacamole provides access to desktop environments using remote desktop protoc ols like VNC and RDP. A centralized server acts as a tunnel and proxy, allowing access to multiple desktops through a web browser. No browser plugins are needed, and no clie...
Error Log Viewer Plugin <= 1.1.1 - Admin+ Arbitrary File Clearing
The plugin does not validate the path of the log file to clear, allowing high privilege users to clear arbitrary files on the web server, including those outside of the blog folder Click the "Log Monitor" available under Error Log Viewer menu item. Choose a log file to clear. Intercept the reques...
Cross site scripting
Multiple Cross Site Scripting XSS vulnerabilities exits in SEO Panel v4.8.0 via the 1 totime parameter in a backlinks.php, b analytics.php, c log.php, d overview.php, e pagespeed.php, f rank.php, g review.php, h saturationchecker.php, i socialmedia.php, and j reports.php; the 2 fromtime parameter...
Veeam Backup for Nutanix AHV Proxy Appliance failure to update to v3
Challenge After installing Veeam Backup & Replication 11a 11.0.1.1261, one or more of the following may occur: An AHV Backup Proxy is listed as Unavailable in the Veeam Backup & Replication console. The AHV Backup Proxy's Web Console dashboard lists the backup server as unavailable. Accessing the...