5 matches found
CVE-2020-13290
In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page...
CVE-2024-53198
In the Linux kernel, the following vulnerability has been resolved: xen: Fix the issue of resource not being properly released in xenbusdevprobe This patch fixes an issue in the function xenbusdevprobe. In the xenbusdevprobe function, within the if err branch at line 313, the program incorrectly...
SA-CONTRIB-2014-053 - Field API Tab Editor (FATE) - Access bypass
This module allows each entity field to be individually edited via its own custom page, accessible via a tab on the entity's page. The module returns an incorrect value to hookmenu if the current user does not have access to edit the entity. This allows users who would not normally have access to...
CVE-2004-1653
The default configuration for OpenSSH enables AllowTcpForwarding, which could allow remote authenticated users to perform a port bounce, when configured with an anonymous access program such as AnonCVS...
CVE-2023-41674
...