Lucene search
K

1928 matches found

Cvelist
Cvelist
added 2014/02/22 9:0 p.m.17 views

CVE-2013-6734

IBM WebSphere eXtreme Scale Client 7.1 through 8.6.0.4 does not properly isolate the cached data of different users, which allows remote authenticated users to obtain sensitive information in opportunistic circumstances by leveraging access to the same web container...

5.6AI score0.00951EPSS
Exploits0References3
CVE
CVE
added 2014/02/22 9:0 p.m.32 views

CVE-2013-6734

CVE-2013-6734 affects IBM WebSphere eXtreme Scale Client versions 7.1.0.x–8.6.0.4 (and WebSphere DataPower XC10 Appliance) where cached HTTP session data can be read by another user when sharing the same web container. The underlying issue is improper isolation of cached data, enabling informatio...

3.5CVSS5.8AI score0.00951EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2013/10/16 10:52 a.m.12 views

CVE-2013-5394

The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 allows remote authenticated users to conduct phishing attacks via unspecified vectors...

4.9CVSS6AI score0.00951EPSS
Exploits0References3
NVD
NVD
added 2013/10/16 10:52 a.m.17 views

CVE-2013-5390

Cross-site scripting XSS vulnerability in the monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.1AI score0.00936EPSS
Exploits0References3
Prion
Prion
added 2013/10/16 10:52 a.m.14 views

Design/Logic Flaw

The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 does not properly process logoff actions, which has unspecified impact and remote attack vectors...

7.5CVSS7.1AI score0.01265EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2013/10/16 10:0 a.m.23 views

CVE-2013-5394

The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 allows remote authenticated users to conduct phishing attacks via unspecified vectors...

6AI score0.00951EPSS
Exploits0References3
CVE
CVE
added 2013/10/16 10:0 a.m.51 views

CVE-2013-5393

WebSphere eXtreme Scale monitoring console is affected by CVE-2013-5393 due to a logoff handling weakness in versions 7.1.0, 7.1.1, 8.5.0 and 8.6.0. The IBM security bulletin lists the vulnerability and provides remediation: upgrade to WebSphere eXtreme Scale 7.1.1 and apply the interim fix PM974...

7.5CVSS6.7AI score0.01265EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2013/10/16 10:0 a.m.42 views

CVE-2013-5394

IBM WebSphere eXtreme Scale Monitoring Console (versions 7.1.0, 7.1.1, 8.5.0, 8.6.0) is affected by CVE-2013-5394, a phishing vulnerability reported in the IBM Security Bulletin. The issue arises in the monitoring console and is exploitable by remote authenticated users via unspecified vectors. R...

4.9CVSS6.1AI score0.00951EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2013/10/16 10:0 a.m.50 views

CVE-2013-5390

CVE-2013-5390 affects IBM WebSphere eXtreme Scale monitoring console (versions 7.1.0, 7.1.1, 8.5.0, 8.6.0). It is a cross-site scripting vulnerability in the monitoring console that allows remote authenticated users to inject arbitrary script/HTML via unspecified vectors. Root cause: XSS in the c...

3.5CVSS5.2AI score0.00936EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2013/10/16 10:0 a.m.21 views

CVE-2013-5393

The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 does not properly process logoff actions, which has unspecified impact and remote attack vectors...

6.5AI score0.01265EPSS
Exploits0References3
OSV
OSV
added 2013/07/31 1:20 p.m.1 views

DEBIAN-CVE-2013-5003

Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote authenticated users to execute arbitrary SQL commands via 1 the scale parameter to pmdpdf.php or 2 the pdfpagenumber parameter to schemaexport.php...

6.5CVSS10AI score0.01606EPSS
Exploits0References1
Prion
Prion
added 2013/07/31 1:20 p.m.19 views

Sql injection

Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote authenticated users to execute arbitrary SQL commands via 1 the scale parameter to pmdpdf.php or 2 the pdfpagenumber parameter to schemaexport.php...

6.5CVSS8.7AI score0.01606EPSS
Exploits0References3Affected Software1
GithubExploit
GithubExploit
added 2013/07/28 5:35 a.m.3 views

masscan

!unittestshttps://github.com/robertdavidgraham/masscan/actio...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2013/05/27 6:6 p.m.10 views

Israeli Scientists develop advanced biological computer

Researchers at the Technion-Israel Institute of Technology in Haifa have created an advanced biological computer using only bio molecules such as DNA and enzymes. There's no traditional CPU or hard drive powering the bio-computer, no hardware or software, nor is there any tangible interface to th...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2013/05/27 7:6 a.m.18 views

Israeli Scientists develop advanced biological computer

Researchers at the Technion-Israel Institute of Technology in Haifa have created an advanced biological computer using only bio molecules such as DNA and enzymes. There's no traditional CPU or hard drive powering the bio-computer, no hardware or software, nor is there any tangible interface to th...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2013/02/06 12:0 p.m.8 views

Cyberwar Name Game a Dangerous Play

SAN JUAN, Puerto Rico – The term “cyberwar” is the “zero day” of security jargon; it’s getting so that every bug is a zero day and every attack is hash-tagged cyberwar. This serves only to distract smart people from making smart decisions. Too much brainpower and bandwidth is being wasted on...

Exploits0
ThreatPost
ThreatPost
added 2013/01/19 2:4 a.m.8 views

Google Looking Into Hardware to Help Kill the Password

Google is looking at a number of hardware-based authentication mechanisms to bypass one of security’s biggest vulnerabilities: the written password. Wired Magazine got an advanced look at a report submitted by a Google security team for IEEE Security & Privacy Magazine that discusses alternatives...

7.7AI score
Exploits0References1
ThreatPost
ThreatPost
added 2013/01/17 5:37 p.m.17 views

Costin Raiu on the Red October Cyberespionage Campaign

Dennis Fisher talks with Costin Raiu and Ryan Naraine about the newly uncovered Red October cyberespionage campaign that has targeted embassies, diplomats, research facilities and military targets for more than five years now. Raiu explains the origins of the campaign, where the attackers likely...

0.6AI score
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/01/08 9:28 p.m.4 views

Mozilla: Use-after-free and buffer overflow issues found using Address Sanitizer (MFSA 2013-02)

The nsSVGPathElement::GetPathLengthScale function in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.1, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.1, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary...

10CVSS6.2AI score0.05815EPSS
Exploits1References5
ThreatPost
ThreatPost
added 2012/11/29 4:40 a.m.10 views

Researchers Exploit Cloud Browsers to do Anonymous, Large-Scale Computing

Researchers from two U.S. universities have created a way to anonymously use cloud-based Web browsers to perform large-scale computing tasks – a feat that also demonstrates how hackers might secretly harness massive computing power to launch attacks. Using the MapReduce technique developed by...

0.2AI score
Exploits0References1
Rows per page
Query Builder