Rocket.Chat 输入验证错误漏洞

Rocket.Chat is an open source team chat software. Rocket.Chat suffers from an input validation error vulnerability that stems from a failure to type validate input data in the getUsersOfRoom Meteor server method. An authenticated attacker could use this vulnerability to enumerate existing rooms a...

IBM Sametime Information Disclosure Vulnerability (CNVD-2017-30590)

IBM Sametime is a suite of next-generation social communication tools from IBM in the United States. The tool helps users realize real-time business collaboration by integrating audio voice, data and video. A security vulnerability exists in IBM Sametime versions 8.5.1 and 9.0. An attacker can...

CVE-2016-2966

IBM Sametime 8.5.1 and 9.0 could allow an authenticated user to enumerate meeting rooms by guessing the meeting room id. IBM X-Force ID: 113847...

CVE-2016-2966

CVE-2016-2966 affects IBM Sametime 8.5.1 and 9.0, where an authenticated user could enumerate meeting rooms by guessing the meeting room ID. The connected sources confirm the impact as information disclosure via room-id guessing, affecting those Sametime versions. Root cause described as an enume...