EUVD-2005-0506

Malware in sbrugna...

Information disclosure

Under certain conditions SAP Solution Manager, version - 720, allows a high privileged attacker to get access to sensitive information which has a direct serious impact beyond the exploitable component thereby affecting the confidentiality in the application...

CVE-2021-21483

Under certain conditions SAP Solution Manager, version - 720, allows a high privileged attacker to get access to sensitive information which has a direct serious impact beyond the exploitable component thereby affecting the confidentiality in the application...

Code Injection in donmccurdy/expression-eval

✍️ Description Althrough we have decleared in the README.MD that do not use this package with user-provided inputs, but after i exam some project with this project, i found that many developers still use in that way, which may lead to some serious security problem. So I think that we still need to...

Ruby on Rails vulnerable to code injection

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

XSS vulnerabilities

PMASA-2006-1 Announcement-ID: PMASA-2006-1 Date: 2006-04-06 Summary XSS vulnerabilities Description It was possible to conduct an XSS attack with a direct call to some scripts under the themes directory. We wish to thank Toni Koivunen/CERT-FI for this advisory. Severity We consider these...

CVE-2005-0505

Unknown vulnerability in Information Resource Manager IRM before 1.5.2.1 allows remote attackers to have "potentially serious" impact, related to LDAP logins...