jenkins: Queue API did show items not visible to the current user (SECURITY-186)

Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to queue/api...

[SECURITY] [DLA 401-1] imlib2 security update

Package : imlib2 Version : 1.4.2-8+deb6u1 CVE ID : CVE-2014-9762 CVE-2014-9763 CVE-2014-9764 CVE-2014-9762 GIF loader: Fix segv on images without colormap CVE-2014-9763 Prevent division-by-zero crashes CVE-2014-9764 Fix segfault when opening input/queue/id:000007,src:000000,op:flip1,pos:51 with f...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Universal Work Queue Work Provider Administration Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Universal Work Queue Work Provider Administration component of Oracle E-Business Suite, which allows remote attackers to exploit the vulnerability to submit...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Universal Work Queue Error Messages Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle E-Business Suite Oracle Universal Work Queue Error Messages component, which could be exploited by a remote attacker to submit a special request to modify data...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Universal Work Queue Work Provider Administration Component (CNVD-2016-00600)

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Universal Work Queue Work Provider Administration component of Oracle E-Business Suite, which allows remote attackers to exploit the vulnerability to submit...

CVE-2016-0536

Unspecified vulnerability in the Oracle Universal Work Queue component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to error messages...

CVE-2016-0525

Unspecified vulnerability in the Oracle Universal Work Queue component in Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Work Provider Administration...

CVE-2016-0524

Unspecified vulnerability in the Oracle Universal Work Queue component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Work Provider Administration...

CVE-2016-0524

Unspecified vulnerability in the Oracle Universal Work Queue component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Work Provider Administration...

CVE-2016-0524

CVE-2016-0524 affects Oracle E-Business Suite 11.5.10.2 via the Oracle Universal Work Queue component, specifically the Work Provider Administration area. The vulnerability is described as allowing remote attackers to impact confidentiality and integrity through unknown vectors; the underlying ro...

Design/Logic Flaw

The queue manager on IBM MQ M2000 appliances before 8.0.0.4 allows local users to bypass an intended password requirement and read private keys by leveraging the existence of a stash file...

CVE-2015-7437

Queue Watcher in IBM Sterling B2B Integrator 5.2 allows local users to obtain sensitive information via unspecified vectors...

Information disclosure

Queue Watcher in IBM Sterling B2B Integrator 5.2 allows local users to obtain sensitive information via unspecified vectors...

CVE-2015-7437

Queue Watcher in IBM Sterling B2B Integrator 5.2 allows local users to obtain sensitive information via unspecified vectors...

WordPress Email Queue 1.0.0 Cross Site Request Forgery

Plugin Name : Email Queue A8-Cross-SiteRequestForgeryCSRF Effected Version : 1.0.0 and most probably lower version's if any Vulnerability : A8-Cross-Site Request Forgery CSRF Identified by : Madhu Akula Technical Details Minimum Level of Access Required : Unauthenticated PoC - Proof of Concept : ...

Distributed Password Cracking: CrackLord

Over the past several years the world of password cracking has exploded with new tools and techniques. These new techniques have made it easier than ever to reverse captured password hashes. With the addition of powerful techniques, from GPGPU cracking to rainbow tables, it is easier than ever to...

iBackDoor: High-Risk Code Hits iOS Apps

Introduction FireEye mobile researchers recently discovered potentially “backdoored” versions of an ad library embedded in thousands of iOS apps originally published in the Apple App Store. The affected versions of this library embedded functionality in iOS apps that used the library to display...

CVE-2015-4299

Cisco Unified Web and E-Mail Interaction Manager 9.02 improperly performs authorization, which allows remote authenticated users to remove default messaging-queue system folders via unspecified vectors, aka Bug ID CSCuo89046...

CVE-2015-4299

Cisco Unified Web and E-Mail Interaction Manager 9.02 improperly performs authorization, which allows remote authenticated users to remove default messaging-queue system folders via unspecified vectors, aka Bug ID CSCuo89046...

Cisco Unified Web Interaction Manager Web Interface Denial of Service Vulnerability

Cisco Unified Web Interaction Manager is a WEB interaction manager. An input validation vulnerability in Cisco Unified Web Interaction Manager allows remote attackers to conduct denial of service attacks by deleting the default system folder in the message queue via the WEB interface...