3 matches found
CVE-2001-1536
Autogalaxy stores usernames and passwords in cleartext in cookies, which makes it easier for remote attackers to obtain authentication information and gain unauthorized access via sniffing or a cross-site scripting attack...
CVE-2024-31204
mailcow: dockerized is an open source groupware/email suite based on docker. A security vulnerability has been identified in mailcow affecting versions prior to 2024-04. This vulnerability resides in the exception handling mechanism, specifically when not operating in DEVMODE. The system saves...
Очередная дырка в Internet Explorer/Outlook
Вызов GetObject позволяет обратиться к любому локальному файлу. SCRIPT alert"This script reads C:TEST.TXTnYou may need to create it"; a=GetObject"c:test.txt","htmlfile"; setTimeout"alerta.body.innerText;",2000; /SCRIPT...