Lucene search
K

1015 matches found

Atlassian
Atlassian
added 2011/03/23 5:32 a.m.23 views

Searching within restricted pages/spaces

panel:bgColor=e7f4fa NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion|http://jira.atlassian.com/browse/CONFCLOUD-22074. panel This is the issue reference:...

7AI score
Exploits0Affected Software1
Drupal
Drupal
added 2011/03/02 12:0 a.m.21 views

SA-CONTRIB-2011-012 - Spaces - Access bypass

The Spaces module makes sitewide configuration options available to be overridden by individual "spaces" on a Drupal site. Spaces provides a Views module access plugin that does not properly check its permission setting which may allow underprivileged users to visit certain pages. This...

7AI score
Exploits0References10
Atlassian
Atlassian
added 2010/09/22 6:18 p.m.19 views

Page view restriction is not inheriting to child pages in some spaces

When a new page is created using the create-page macro the child page does not have restrictions inherited. This is only happening for a few spaces. If I try the same macro in another space it will work fine. I have rebuilt the ancestors table but this issue is still happening. Please advise...

2.3AI score
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.12 views

Fedora Core 11 FEDORA-2009-13634 (viewvc)

The remote host is missing an update to viewvc announced via advisory FEDORA-2009-13634. OpenVAS Vulnerability Test $Id: fcore200913634.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-13634 viewvc Authors: Thomas Reinke Copyright: Copyright c 2009...

0.2AI score
Exploits0
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.16 views

Fedora Core 12 FEDORA-2009-13610 (viewvc)

The remote host is missing an update to viewvc announced via advisory FEDORA-2009-13610. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

7.4AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/12/29 12:0 a.m.29 views

Fedora 12 : viewvc-1.1.3-1.fc12 (2009-13610)

security fix: add root listing support of per-root authz config security fix: query.py requires 'forbidden' authorizer or none in config fix URL- ification of truncated log messages issue 3 fix regexp input validation issue 426, 427, 440 add support for configurable tab-to-spaces conversion fix...

7.5CVSS5.2AI score0.02602EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2009/12/29 12:0 a.m.29 views

Fedora 11 : viewvc-1.1.3-1.fc11 (2009-13634)

security fix: add root listing support of per-root authz config security fix: query.py requires 'forbidden' authorizer or none in config fix URL- ification of truncated log messages issue 3 fix regexp input validation issue 426, 427, 440 add support for configurable tab-to-spaces conversion fix...

7.5CVSS5.2AI score0.02602EPSS
Exploits0References3
Atlassian
Atlassian
added 2009/09/24 7:28 a.m.20 views

XSS in header for Personal Spaces

Create a user with username "alert'hahahaha' User creates a personal space Try to add a page to the personal space This is caused by code code However since the personal space doesn't work too well with usernames with crazy letters, I don't think its a Blocker...

2.7AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/09/24 7:28 a.m.21 views

XSS in header for Personal Spaces

Create a user with username "alert'hahahaha' User creates a personal space Try to add a page to the personal space This is caused by code code However since the personal space doesn't work too well with usernames with crazy letters, I don't think its a Blocker...

2.7AI score
Exploits0
Prion
Prion
added 2009/08/11 9:0 p.m.24 views

Design/Logic Flaw

Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an xmpp:// URI, a different vector than CVE-2008-6935 and CVE-2008-6936. NOTE: the provenance of this...

10CVSS7.2AI score0.05381EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2009/08/11 9:0 p.m.30 views

Design/Logic Flaw

Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an im:// URI...

10CVSS7.3AI score0.05381EPSS
Exploits1References9Affected Software1
NVD
NVD
added 2009/08/11 9:0 p.m.20 views

CVE-2008-6937

Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an xmpp:// URI, a different vector than CVE-2008-6935 and CVE-2008-6936. NOTE: the provenance of this...

10CVSS6.8AI score0.03212EPSS
Exploits0References2
CVE
CVE
added 2009/08/11 8:25 p.m.45 views

CVE-2008-6935

CVE-2008-6935 concerns Exodus 0.10. The vulnerability is an argument injection flaw that allows remote attackers to craft inputs (via encoded spaces in an im:// URI) to inject arbitrary command-line arguments, overwrite arbitrary files, and trigger denial of service. Related connected records des...

10CVSS7.1AI score0.05381EPSS
Exploits1References9Affected Software1
Debian CVE
Debian CVE
added 2009/07/14 8:16 p.m.23 views

CVE-2009-2347

Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow context-dependent attackers to execute arbitrary code via a TIFF image with large 1 width and 2 height values, which triggers a heap-based buffer overflow in the a cvtwholeimage...

9.3CVSS6.7AI score0.04152EPSS
Exploits1
FreeBSD
FreeBSD
added 2009/05/22 12:0 a.m.21 views

tiff -- Multiple integer overflows

Tielei Wang: Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow context-dependent attackers to execute arbitrary code via a TIFF image with large 1 width and 2 height values, which triggers a heap-based buffer overflow in the a...

9.3CVSS7.8AI score0.04152EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.13 views

Mandriva Update for gimp MDKA-2007:024 (gimp)

Check for the Version of gimp OpenVAS Vulnerability Test Mandriva Update for gimp MDKA-2007:024 gimp Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

7.4AI score
Exploits0References2
Prion
Prion
added 2009/03/23 8:0 p.m.19 views

Integer overflow

Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...

9.3CVSS8.5AI score0.04708EPSS
Exploits1References40Affected Software2
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-493-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.7AI score0.05699EPSS
Exploits2References2
NVD
NVD
added 2008/11/17 6:18 p.m.17 views

CVE-2008-3623

Heap-based buffer overflow in CoreGraphics in Apple Safari before 3.2 on Windows, in iPhone OS 1.0 through 2.2.1, and in iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted image, related to...

9.3CVSS8AI score0.08368EPSS
Exploits1References13
Prion
Prion
added 2008/11/17 6:18 p.m.14 views

Heap overflow

Heap-based buffer overflow in CoreGraphics in Apple Safari before 3.2 on Windows, in iPhone OS 1.0 through 2.2.1, and in iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted image, related to...

9.3CVSS8.3AI score0.08368EPSS
Exploits1References13Affected Software1
Rows per page
Query Builder