Lucene search
K

6 matches found

OSV
OSV
added 2023/05/01 2:1 p.m.19 views

GHSA-WWXH-74FX-33C6 Possible prototype pollution in metadata record, when using meta decorator

Impact Possible prototype pollution for the MetadataRecord, when merged with a base class' metadata object, in meta decorator from the @aedart/support package. The likelihood is questionable, given that a class' metadata can only be set or altered when the class is decorated via meta. Furthermore...

3.7CVSS3.8AI score0.00482EPSS
Exploits0References4
NVD
NVD
added 2014/08/20 11:17 a.m.22 views

CVE-2014-2521

EMC Documentum Content Server before 6.7 SP2 P16 and 7.x before 7.1 P07 allows remote authenticated users to read sensitive object metadata via an RPC command...

6.3CVSS6.1AI score0.01709EPSS
Exploits0References5
Cvelist
Cvelist
added 2014/08/20 10:0 a.m.27 views

CVE-2014-2521

EMC Documentum Content Server before 6.7 SP2 P16 and 7.x before 7.1 P07 allows remote authenticated users to read sensitive object metadata via an RPC command...

6.1AI score0.01709EPSS
Exploits0References5
CVE
CVE
added 2014/08/20 10:0 a.m.49 views

CVE-2014-2521

CVE-2014-2521 affects EMC Documentum Content Server versions 6.7 SP2 P16 and 7.x prior to 7.1 P07. The vulnerability stems from improper authorization checks on certain RPC commands, allowing remote authenticated users to read sensitive object metadata. Impact is read access to metadata of unauth...

6.3CVSS6.2AI score0.01709EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2013/05/02 2:55 p.m.25 views

CVE-2013-0305

The administrative interface for Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 does not check permissions for the history view, which allows remote authenticated administrators to obtain sensitive object history information...

4CVSS6AI score0.01805EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2013/02/20 12:0 a.m.30 views

CVE-2013-0305

The administrative interface for Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 does not check permissions for the history view, which allows remote authenticated administrators to obtain sensitive object history information...

4CVSS5.9AI score0.01805EPSS
Exploits1References3
Rows per page
Query Builder