EUVD-2016-0380

Malware in sbrugna...

EUVD-2024-3317

Malicious code in bioql PyPI...

CVE-2024-52506

Graylog is a free and open log management platform. The reporting functionality in Graylog allows the creation and scheduling of reports which contain dashboard widgets displaying individual log messages or metrics aggregated from fields of multiple log messages. This functionality, as included i...

Sensitive Information Exposure

org.graylog:graylog-parent is vulnerable to Sensitive Information Exposure. The vulnerability is due to improper handling of concurrent report rendering requests, where a shared headless browser instance may return the report of one user to another, potentially exposing sensitive data...

CVE-2024-52506

Graylog is a free and open log management platform. The reporting functionality in Graylog allows the creation and scheduling of reports which contain dashboard widgets displaying individual log messages or metrics aggregated from fields of multiple log messages. This functionality, as included i...

GHSA-VGGM-3478-VM5M Graylog concurrent PDF report rendering can leak other users' reports

Impact The reporting functionality in Graylog allows the creation and scheduling of reports which contain dashboard widgets displaying individual log messages or metrics aggregated from fields of multiple log messages. This functionality, as included in Graylog 6.1.0 & 6.1.1, is vulnerable to...

Graylog concurrent PDF report rendering can leak other users' reports

Impact The reporting functionality in Graylog allows the creation and scheduling of reports which contain dashboard widgets displaying individual log messages or metrics aggregated from fields of multiple log messages. This functionality, as included in Graylog 6.1.0 & 6.1.1, is vulnerable to...

Design/Logic Flaw

IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain the installation path via vectors involving Birt report rendering. IBM X-Force ID: 111786...

CVE-2016-0345

IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain the installation path via vectors involving Birt report rendering. IBM X-Force ID: 111786...

CVE-2016-0345

IBM TRIRIGA Application Platform 3.3/3.4/3.5 are affected by CVE-2016-0345, which allows remote authenticated users to disclose the installation path through Birt report rendering. Root cause is information disclosure via Birt report rendering paths. Remediations are to upgrade to fixed fix packs...

Unspecified Vulnerability in Oracle E-Business Suite Oracle E-Business Intelligence Overview Page/Report Rendering Component (CNVD-2016-00598)

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle E-Business Suite Oracle E-Business Intelligence Overview Page/Report Rendering component, which could be exploited by remote attackers to submit a special reques...