179 matches found
CVE-2023-2902
CVE-2023-2902 affects NFine Rapid Development Platform (version 20230511). The issue lies in the GetTreeGridJson endpoint under SystemManage/Organize, enabling improper access controls that could be exploited remotely. Public exploit information exists per the sources, with confidentiality impact...
CVE-2023-2902 NFine Rapid Development Platform access control
A vulnerability was found in NFine Rapid Development Platform 20230511. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /SystemManage/Organize/GetTreeGridJson?search=false&nd=1681813520783&rows=10000&page=1&sidx=&sord=asc. The manipulation leads ...
CVE-2023-2901 NFine Rapid Development Platform access control
A vulnerability was found in NFine Rapid Development Platform 20230511. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /SystemManage/User/GetGridJson?search=false&nd=1680855479750&rows=50&page=1&sidx=FCreatorTime+desc&sord=asc. The...
CVE-2023-2901
CVE-2023-2901 affects NFine Rapid Development Platform 20230511. The vulnerability exists in an unknown function of the endpoint /SystemManage/User/GetGridJson?... which leads to improper access controls. It is exploitable remotely and, per multiple sources, the exploit has been disclosed publicl...
CVE-2023-2901 NFine Rapid Development Platform access control
A vulnerability was found in NFine Rapid Development Platform 20230511. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /SystemManage/User/GetGridJson?search=false&nd=1680855479750&rows=50&page=1&sidx=FCreatorTime+desc&sord=asc. The...
CVE-2023-2900
A vulnerability was found in NFine Rapid Development Platform 20230511. It has been classified as problematic. Affected is an unknown function of the file /Login/CheckLogin. The manipulation leads to use of weak hash. It is possible to launch the attack remotely. The complexity of an attack is...
Information disclosure
A vulnerability was found in NFine Rapid Development Platform 20230511. It has been classified as problematic. Affected is an unknown function of the file /Login/CheckLogin. The manipulation leads to use of weak hash. It is possible to launch the attack remotely. The complexity of an attack is...
CVE-2023-2900
CVE-2023-2900 affects NFine Rapid Development Platform 20230511. Affected is an unknown function of the file /Login/CheckLogin, where manipulation leads to use of a weak hash. The issue can be exploited remotely; attack complexity is high and exploitability is difficult. Public disclosure has occ...
CVE-2023-2900 NFine Rapid Development Platform CheckLogin weak hash
A vulnerability was found in NFine Rapid Development Platform 20230511. It has been classified as problematic. Affected is an unknown function of the file /Login/CheckLogin. The manipulation leads to use of weak hash. It is possible to launch the attack remotely. The complexity of an attack is...
Fedora: Security Advisory for python-django3 (FEDORA-2023-8f9d949dbc)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for python-django3 (FEDORA-2023-0d20d09f2d)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: python-django3-3.2.19-1.fc38
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
Fedora: Security Advisory for python-django (FEDORA-2023-a53ab7c969)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: python-django-4.0.10-1.fc38
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
[SECURITY] Fedora 37 Update: python-django-4.0.10-1.fc37
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
Tomiris called, they want their Turla malware back
Introduction We introduced Tomiris to the world in September 2021, following our investigation of a DNS-hijack against a government organization in the Commonwealth of Independent States CIS. Our initial report described links between a Tomiris Golang implant and SUNSHUTTLE which has been...
[SECURITY] Fedora 38 Update: python-django3-3.2.18-1.fc38
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
[SECURITY] Fedora 36 Update: python-django3-3.2.18-1.fc36
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
[SECURITY] Fedora 35 Update: origin-3.11.2-6.fc35
OpenShift Origin is a distribution of Kubernetes optimized for enterprise app lication development and deployment. OpenShift Origin adds developer and operational c entric tools on top of Kubernetes to enable rapid application development, easy deployment and scaling, and long-term lifecycle...
[SECURITY] Fedora 36 Update: OpenSceneGraph-3.6.5-5.fc36
The OpenSceneGraph is an OpenSource, cross platform graphics toolkit for the development of high performance graphics applications such as flight simulators, games, virtual reality and scientific visualization. Based around the concept of a SceneGraph, it provides an object oriented framework on...