SUSE CVE-2010-1459

The default configuration of ASP.NET in Mono before 2.6.4 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting XSS attacks, as demonstrated by the VIEWSTATE parameter to 2.0/menu/menu1.aspx in the XSP sample project...

kari (=0.1.0), soos-sample-project (=1.0.1) potentially affected by CVE-2020-36513 +1 more via acc_reader (=2.0.0)

accreader CARGO version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on accreader and may be impacted: - kari =0.1.0 - soos-sample-project =1.0.1 Source cves: CVE-2020-36513, CVE-2020-36514 Source advisory: OSV:GHSA-HV9V-7W3V-RJ6F...

Mono ASP.NET View State Cross-Site Scripting (XSS) vulnerability

The default configuration of ASP.NET in Mono before 2.6.4 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting XSS attacks, as demonstrated by the VIEWSTATE parameter to 2.0/menu/menu1.aspx in the XSP sample project...

kari (=0.1.0), soos-sample-project (=1.0.1) potentially affected by CVE-2020-36513 +1 more via acc_reader (=2.0.0)

accreader CARGO version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on accreader and may be impacted: - kari =0.1.0 - soos-sample-project =1.0.1 Source cves: CVE-2020-36513, CVE-2020-36514 Source advisory: OSV:GHSA-799F-R78P-GQ9C...

kari (=0.1.0), soos-sample-project (=1.0.1) potentially affected by CVE-2020-36513 +1 more via acc_reader (=2.0.0)

accreader CARGO version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on accreader and may be impacted: - kari =0.1.0 - soos-sample-project =1.0.1 Source cves: CVE-2020-36513, CVE-2020-36514 Source advisory: OSV:GHSA-P4CR-64X4-F92F...

kari (=0.1.0), soos-sample-project (=1.0.1) potentially affected by CVE-2020-36513 +1 more via acc_reader (=2.0.0)

accreader CARGO version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on accreader and may be impacted: - kari =0.1.0 - soos-sample-project =1.0.1 Source cves: CVE-2020-36513, CVE-2020-36514 Source advisory: OSV:RUSTSEC-2020-0155...

DEBIAN-CVE-2010-1459

The default configuration of ASP.NET in Mono before 2.6.4 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting XSS attacks, as demonstrated by the VIEWSTATE parameter to 2.0/menu/menu1.aspx in the XSP sample project...