8 matches found
OESA-2025-2453 redis security update
Redis is an advanced key-value store. It is often referred to as a dattructure server since keys can contain strings, hashes ,lists, sets anorted sets. Security Fixes: Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a...
CVE-2019-13167
Multiple Stored XSS vulnerabilities were found in the Xerox Web Application, used by the Phaser 3320 V53.006.16.000 and other printers. Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the execution of unwanted actions...
Multiple Stored Cross-Site Scripting Vulnerabilities in BINOM3 Electric Power Quality Meter
The BINOM3 Electric Power Quality Meter is a universal multifunctional power quality monitor. BINOM3 Electric Power Quality Meter suffers from multiple stored cross-site scripting vulnerabilities. Attacks that allow authentication by injecting arbitrary JavaScript into specific input fields,...
DEBIAN-CVE-2010-2273
Multiple cross-site scripting XSS vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to...
JavaScript code can cause the browser attack-vulnerability warning-the black bar safety net
Security researchers have found a Use JavaScript to scan the family and the enterprise network, and attacks on the network server, and the router and printer and other equipment of the method. Researchers say the malicious JavaScript code can be embedded in a Web page, use the browser to browse t...
Moderate: Red Hat Security Advisory: tomcat security update for Red Hat Application Server
An updated Tomcat package that fixes multiple security issues is now available for Red Hat Application Server. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tomcat is a servlet container for Java Servlet and JavaServer Pages technologies...
SquirrelMail < 1.4.7 Multiple Vulnerabilities
Binary data 3441.prm...
Fedora Core 2 : squirrelmail-1.4.3-1 (2004-160)
A SQL injection flaw was found in SquirrelMail version 1.4.2 and earlier. If SquirrelMail is configured to store user addressbooks in the database, a remote attacker could use this flaw to execute arbitrary SQL statements. The Common Vulnerabilities and Exposures project has assigned the name...