Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2018-0360

Malware in sbrugna...

9.8CVSS9.2AI score0.04345EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 5:21 a.m.4 views

SUSE CVE-2015-1820

REST client for Ruby aka rest-client before 1.8.0 allows remote attackers to conduct session fixation attacks or obtain sensitive cookie information by leveraging passage of cookies set in a response to a redirect...

9.8CVSS6.7AI score0.04345EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2015-0227)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.5AI score0.04345EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2021/04/21 1:15 p.m.5 views

rubygem-rest-client: unsanitized application logging

REST client for Ruby aka rest-client before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log...

2.1CVSS7.2AI score0.00373EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/06/16 12:28 p.m.5 views

rubygem-rest-client: session fixation vulnerability Set-Cookie headers present in an HTTP 30x redirection responses

REST client for Ruby aka rest-client before 1.8.0 allows remote attackers to conduct session fixation attacks or obtain sensitive cookie information by leveraging passage of cookies set in a response to a redirect...

9.8CVSS7.4AI score0.04345EPSS
Exploits0References4
OSV
OSV
added 2015/05/15 6:23 p.m.11 views

MGASA-2015-0227 Updated ruby-rest-client packages fix security vulnerabilities

Updated ruby-rest-client packages fix security vulnerability: When Ruby rest-client processes an HTTP redirection response, it blindly passes along the values from any Set-Cookie headers to the redirection target, regardless of domain, path, or expiration. This can be used in a session fixation...

9.8CVSS7.7AI score0.04345EPSS
Exploits0References5
OSV
OSV
added 2015/04/29 8:59 p.m.10 views

CVE-2015-3448

REST client for Ruby aka rest-client before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log...

7.1AI score
Exploits0References4
OSV
OSV
added 2015/04/29 8:59 p.m.2 views

DEBIAN-CVE-2015-3448

REST client for Ruby aka rest-client before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log...

2.1CVSS9AI score0.00373EPSS
Exploits0References1
Prion
Prion
added 2015/04/29 8:59 p.m.29 views

Cross site request forgery (csrf)

REST client for Ruby aka rest-client before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log...

2.1CVSS6.1AI score0.00373EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2015/04/29 8:0 p.m.28 views

CVE-2015-3448

REST client for Ruby aka rest-client before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log...

2.1CVSS8.3AI score0.00373EPSS
Exploits0
Rows per page
Query Builder