21 matches found
EUVD-2016-0267
Malware in sbrugna...
sinatra
This is a Sinatra repository, a DSL for creating web applications in Ruby with minimal effort. The repository contains various files, including a .github/workflows/test.yml file that defines a GitHub Actions workflow for testing, and a Gemfile that lists dependencies for the project. The Gemfile...
Determining which CVE fixes are included in a JRE
Question IBM Security Bulletins list CVEs that must be applied to the JRE that RPT scripts use to run tests. How can you determine whether a specific JRE version includes a particular CVE? Answer IBM Security Bulletins list Common Vulnerabilities and Exposures CVE that must be fixed in the T6...
Security Bulletin: IBM Security Access Manager appliances are affected by vulnerabilities in Network Security Services (NSS) (CVE-2016-2834, CVE-2016-5285, CVE-2016-8635)
Summary Vulnerabilities have been identified in the Network Security Services NSS libraries. IBM Security Access Manager appliances use NSS and are affected by these vulnerabilities. Vulnerability Details CVEID: CVE-2016-2834 DESCRIPTION: Mozilla Network Security Services NSS, as used in Mozilla...
Security Bulletin: IBM Security Access Manager appliances are affected by a vulnerability due to incorrect permission assignment (CVE-2016-3022)
Summary IBM Security Access Manager appliances could allow an authenticated user to gain access to sensitive information due to incorrect file permissions. Vulnerability Details CVEID: CVE-2016-3022 DESCRIPTION: IBM Security Access Manager for Web could allow an authenticated user to gain access ...
Security Bulletin: Financial Transaction Manager for Corporate Payment Services Access Control: Information Disclosure - Dojo Readme's (CVE-2016-0232)
Summary IBM Financial Transaction Manager for Corporate Payment Services for Multi-Platform could allow an authenticated attacker to obtain sensitive information from README files that could aid in further attacks against the system. Vulnerability Details CVEID: CVE-2016-0232 DESCRIPTION: IBM...
[SECURITY] Fedora 27 Update: qt3-3.3.8b-74.fc27
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
C5Scan - Vulnerability Scanner And Information Gatherer For The Concrete5 CMS
Vulnerability scanner and information gatherer for the Concrete5 CMS. Is a little out of date presently pending a refactor. concrete5 is an open-source content management system CMS for publishing content on the World Wide Web and intranets. concrete5 is designed for ease of use, for users with a...
GitLab: [RDoc] XSS in project README files
Hi, While experimenting with parser bypass techniques, I discovered that RDoc markup could be used to inject a stored JavaScript payload into a project README.rdoc file. Please note that this issue is separate to my earlier report 200565 XSS with AsciiDoc markup, marked as duplicate. Steps to...
CVE-2016-0232
IBM Financial Transaction Manager FTM for ACH Services, Check Services and Corporate Payment Services CPS 3.0.0 before FP12 allows remote authenticated users to obtain sensitive information by reading README files...
CVE-2016-0232
IBM Financial Transaction Manager FTM for ACH Services, Check Services and Corporate Payment Services CPS 3.0.0 before FP12 allows remote authenticated users to obtain sensitive information by reading README files...
[SECURITY] Fedora 21 Update: qt3-3.3.8b-63.fc21
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
[SECURITY] Fedora 22 Update: qt3-3.3.8b-63.fc22
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
[SECURITY] Fedora 20 Update: qt3-3.3.8b-62.fc20
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
[SECURITY] Fedora 21 Update: qt3-3.3.8b-62.fc21
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
[SECURITY] Fedora 19 Update: qt3-3.3.8b-58.fc19
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
[SECURITY] Fedora 20 Update: qt3-3.3.8b-58.fc20
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
Fedora Update for qt3 FEDORA-2013-22847
Check for the Version of qt3 OpenVAS Vulnerability Test Fedora Update for qt3 FEDORA-2013-22847 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for qt3 FEDORA-2013-22883
Check for the Version of qt3 OpenVAS Vulnerability Test Fedora Update for qt3 FEDORA-2013-22883 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
[SECURITY] Fedora 20 Update: qt3-3.3.8b-56.fc20
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...