12 matches found
EUVD-2024-27184
Malicious code in bioql PyPI...
CVE-2024-2228
This vulnerability allows an authenticated user to perform a Lifecycle Manager flow or other QuickLink for a target user outside of the defined QuickLink Population...
CVE-2024-2228
This vulnerability allows an authenticated user to perform a Lifecycle Manager flow or other QuickLink for a target user outside of the defined QuickLink Population...
CVE-2024-2228 IdentityIQ Authorization of QuickLink Target Identities Vulnerability
This vulnerability allows an authenticated user to perform a Lifecycle Manager flow or other QuickLink for a target user outside of the defined QuickLink Population...
CVE-2024-2228
The CVE-2024-2228 issue relates to IdentityIQ/QuickLink authorization in SAP Lifecycle Manager. Connected sources indicate an authenticated user can perform a Lifecycle Manager flow or other QuickLink targeting a user outside the defined QuickLink Population. The root cause details are not fully ...
CVE-2024-2228 IdentityIQ Authorization of QuickLink Target Identities Vulnerability
This vulnerability allows an authenticated user to perform a Lifecycle Manager flow or other QuickLink for a target user outside of the defined QuickLink Population...
QuickLink 安全漏洞
QuickLink is a remote video production solution from QuickLink, Inc. A security vulnerability exists in QuickLink that stems from allowing an authenticated user to execute a Lifecycle Manager stream or other QuickLink for an attacker...
PT-2024-19300
Name of the Vulnerable Software and Affected Versions SAP Lifecycle Manager affected versions not specified Description This issue allows an authenticated user to perform a Lifecycle Manager flow or other QuickLink for a target user outside of the defined QuickLink Population. Recommendations At...
CVE-2022-45435
IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p2, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p5, IdentityIQ 8.1 and all 8.1 patch levels prior to 8.1p7, IdentityIQ 8.0 and all 8.0 patch levels prior to 8.0p6, and all prior versions allow authenticated users assigned the Identity...
CVE-2022-45435 SailPoint IdentityIQ Access Control Bypass
IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p2, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p5, IdentityIQ 8.1 and all 8.1 patch levels prior to 8.1p7, IdentityIQ 8.0 and all 8.0 patch levels prior to 8.0p6, and all prior versions allow authenticated users assigned the Identity...
auto-news.de XSS vulnerability
Open Bug Bounty ID: OBB-591117 Description| Value ---|--- Affected Website:| auto-news.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Files.com: File access controls incorrectly enforced for files shared via QuickLink - Unshared files can be accessed
Enter the support PIN from your test site if applicable: 305056 Enter the name of your test site if applicable: pwn.brickftp.com Enter the subdomain from your test site if applicable: pwn.brickftp.com Summary This is a bug in the file sharing feature QuickLink. The file access control is flawed...