3 matches found
GHSA-HWQH-2684-54FC Spring Cloud Gateway's SSL bundle configuration silently bypassed
When configuring SSL bundles in Spring Cloud Gateway by using the configuration property spring.ssl.bundle, the configuration was silently ignored and the default SSL configuration was used instead. Note: The 4.2.x branch is no longer under open source support. If you are using Spring Cloud...
Firefox < 10.0.11 Multiple Vulnerabilities (Mac OS X)
The installed version of Firefox is earlier than 10.0.11 and thus, is potentially affected by the following security issues : - Several memory safety bugs exist in the browser engine used in Mozilla-based products that could be exploited to execute arbitrary code. CVE-2012-5843 - An error exists ...
SA-CONTRIB-2010-054 - Storm - Cross Site Scripting (XSS)
The Storm project provides a group of modules for project management and billing. The module displays data entered by users without sanitising it, allowing for a cross site scripting XSS attack that may lead to a malicious user gaining full administrative access. Versions affected Storm project f...