Liferay Portal and Liferay DXP Does Not Properly Restrict Membership to Child Site Based on Parent Site Options

Liferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before service pack 3, 7.2 before fix pack 15, and older unsupported versions does not properly restrict membership of a child site when the "Limit membership to members of the parent site" option is enabled,...

SUSE-SU-2022:2342-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2022-26377: Fixed possible request smuggling in modproxyajp bsc1200338 - CVE-2022-28614: Fixed read beyond bounds via aprwrite bsc1200340 - CVE-2022-28615: Fixed read beyond bounds in apstrcmpmatch bsc1200341 - CVE-2022-29404: Fixed denial...

Air Share v1.2 iOS - Multiple Cross Site Web Vulnerabilities

Document Title: =============== Air Share v1.2 iOS - Multiple Cross Site Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2204 Release Date: ============= 2020-04-21 Vulnerability Laboratory ID VL-ID:...

CVE-2017-5528 TIBCO JasperReports Server cross-site vulnerabilities

Multiple JasperReports Server components contain vulnerabilities which may allow authorized users to perform cross-site scripting XSS and cross-site request forgery CSRF attacks. The impact of this vulnerability includes the theoretical disclosure of sensitive information. Affects TIBCO...

Prezi Desktop Client - Persistent Cross Site Vulnerabilities

Document Title: =============== Prezi Desktop Client - Persistent Cross Site Vulnerabilities References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1834 View Video: https://www.youtube.com/watch?v=ugPQkXmcWYE Release Date: ============= 2016-04-25 Vulnerability Laboratory ID...

Prezi Desktop Client - Persistent Cross Site Vulnerabilities

Document Title: =============== Prezi Desktop Client - Persistent Cross Site Vulnerabilities References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1834 View Video: https://www.youtube.com/watch?v=ugPQkXmcWYE Release Date: ============= 2016-04-24 Vulnerability Laboratory ID...

WP External Links v1.80 - Cross Site Vulnerabilities

Document Title: =============== WP External Links v1.80 - Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1788 Release Date: ============= 2016-03-23 Vulnerability Laboratory ID VL-ID: ==================================== 1788...

phpWebSite 0.7.3/0.8.2/0.8.3/0.9.2 pagemaster Module PAGE_id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site vulnerabilities have been reported in the Calendar,...

phpWebSite 0.7.3/0.8.2/0.8.3/0.9.2 calendar Module day Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site vulnerabilities have been reported in the Calendar,...

phpWebSite 0.7.3/0.8.2/0.8.3/0.9.2 fatcat Module fatcat_id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site vulnerabilities have been reported in the Calendar,...

pdirl PHP Directory Listing 1.0.4 - Cross Site Vulnerabilities

Document Title: =============== pdirl PHP Directory Listing 1.0.4 - Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1130 Release Date: ============= 2013-10-31 Vulnerability Laboratory ID VL-ID:...

Barracuda CudaTel 2.6.02.04 - CS Cross Site Vulnerabilities

Document Title: =============== Barracuda CudaTel 2.6.02.04 - CS Cross Site Vulnerabilities References Source: ==================== http://vulnerability-lab.com/getcontent.php?id=779 BARRACUDA NETWORK SECURITY ID: BNSEC-815 Release Date: ============= 2013-07-16 Vulnerability Laboratory ID VL-ID:...

Barracuda CudaTel 2.6.02.04 - CS Cross Site Vulnerabilities

Document Title: =============== Barracuda CudaTel 2.6.02.04 - CS Cross Site Vulnerabilities References Source: ==================== http://vulnerability-lab.com/getcontent.php?id=779 BARRACUDA NETWORK SECURITY ID: BNSEC-815 Release Date: ============= 2013-07-16 Vulnerability Laboratory ID VL-ID:...

Mozilla Seamonkey Security Bypass Vulnerabilities - Oct 12 (Mac OS X)

The host is installed with Mozilla Seamonkey and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaseamonkeysecbypassvulnoct12macosx.nasl 6115 2017-05-12 09:03:25Z teissa $ Mozilla Seamonkey Security Bypass Vulnerabilities - Oct 12 Mac OS X Authors: Arun Kallavi...

FortiWeb 4kC,3kC,1kC & VA - Cross Site Vulnerabilities

Title: ====== FortiWeb 4kC,3kC,1kC & VA - Cross Site Vulnerabilities Date: ===== 2012-12-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=702 VL-ID: ===== 702 Common Vulnerability Scoring System: ==================================== 2.1 Introduction: =============...

Fortigate UTM WAF Appliance - Cross Site Vulnerabilities

Title: ====== Fortigate UTM WAF Appliance - Cross Site Vulnerabilities Date: ===== 2012-09-07 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=559 VL-ID: ===== 559 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: ============= T...

Fortigate UTM WAF Appliance - Cross Site Vulnerabilities

Document Title: =============== Fortigate UTM WAF Appliance - Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=559 Release Date: ============= 2012-09-23 Vulnerability Laboratory ID VL-ID: ==================================== 55...

Fortigate UTM WAF Appliance - Cross Site Vulnerabilities

Document Title: =============== Fortigate UTM WAF Appliance - Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=559 Release Date: ============= 2012-09-23 Vulnerability Laboratory ID VL-ID: ==================================== 55...

Potential Cross-Site Vulnerabilities in FortiGate

...

ShopperPress v2.7 Wordpress - Cross Site Vulnerabilities

Title: ====== ShopperPress v2.7 Wordpress - Cross Site Vulnerabilities Date: ===== 2012-08-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=670 VL-ID: ===== 670 Common Vulnerability Scoring System: ==================================== 2.4 Introduction: =============...