33 matches found
Ulicms-2023.1-sniffing-vicuna - Privilege escalation
Exploit Title: Ulicms 2023.1 sniffing-vicuna - Privilege escalation Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: Privilege escalation Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link:...
PT-2021-17013 · Unknown · Amd System Management Unit
Name of the Vulnerable Software and Affected Versions: System Management Unit SMU affected versions not specified Description: The issue is related to insufficient bounds checking in the System Management Unit SMU, which may cause invalid memory accesses or updates. This could result in the SMU...
undertow: leak credentials to log files UndertowLogger.REQUEST_LOGGER.undertowRequestFailed
A vulnerability was found in Undertow web server before 2.0.21. An information exposure of plain text credentials through log files because Connectors.executeRootHandler:402 logs the HttpServerExchange object at ERROR level using UndertowLogger.REQUESTLOGGER.undertowRequestFailedt, exchange...
openstack-nova: Nova server resource faults leak external exception details
A vulnerability was found in the Nova Compute resource fault handling. The Nova Compute service might leak configuration information or other sensitive information because of a failed API request. To trigger this vulnerability, the API request needs to fail due to an external exception. The abili...
undertow: leak credentials to log files UndertowLogger.REQUEST_LOGGER.undertowRequestFailed
A vulnerability was found in Undertow web server before 2.0.21. An information exposure of plain text credentials through log files because Connectors.executeRootHandler:402 logs the HttpServerExchange object at ERROR level using UndertowLogger.REQUESTLOGGER.undertowRequestFailedt, exchange...
Error: "Cannot Complete Your Request" Due to Incorrect Citrix Gateway URL Usage
The following error is displayed due to incorrect Citrix Gateway URL usage: Cannot Complete Your Request...
Error: "Cannot Complete Your Request" Due to Expired Certificates on StoreFront
The following error is displayed due to expired certificates on StoreFront: Cannot Complete Your Request...
Error: "Cannot Complete Your Request" Due to Authentication Misconfiguration on StoreFront
The following error is displayed due to authentication misconfiguration on StoreFront: Cannot Complete Your Request...
Error: "Cannot Complete Your Request" Due to DNS Misconfiguration on StoreFront
The following error is displayed due to DNS misconfiguration on StoreFront: Cannot Complete Your Request...
phpGraphy 0.9.13b Cross Site Request Forgery / Cross Site Scripting
===================================== Vulnerability ID: HTB22959 Reference: http://www.htbridge.ch/advisory/csrfcrosssiterequestforgeryinphpgraphy.html Product: phpGraphy Vendor: http://phpgraphy.sourceforge.net/ http://phpgraphy.sourceforge.net/ Vulnerable Version: 0.9.13b Vendor Notification: 1...
Cambio 0.5a Cross Site Request Forgery
Vulnerability ID: HTB22768 Reference: http://www.htbridge.ch/advisory/xsrfcsrfincambio.html Product: Cambio Vendor: Joram van den Boezem http://www.cambiocms.org/ Vulnerable Version: 0.5a nightly r37 and probably prior versions Vendor Notification: 28 December 2010 Vulnerability Type: CSRF...
Open Blog v1.2.1 CSRF Vulnerability
Exploit for php platform in category web applications =================================== Open Blog v1.2.1 CSRF Vulnerability =================================== Vulnerability ID: HTB22496 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinopenblog.html Product: Open Blog Vendor: Toma?? Muraus...
XSRF (CSRF) in phpwcms
Vulnerability ID: HTB22476 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinphpwcms.html Product: phpwcms Vendor: Oliver Georgi http://www.phpwcms.de/ Vulnerable Version: 1.4.5 and Probably Prior Versions Vendor Notification: 01 July 2010 Vulnerability Type: CSRF Cross-Site Request Forgery...