5 matches found
EUVD-2004-0061
Malware in sbrugna...
Brave Software: JavaScript URL Issues in the latest version of Brave Browser
Summary: The URL javascript: can redirect users to any site, instead of executing JavaScript. Additional Notes Found as partners by @kicker http://hackerone.com/kicker and myself @smelt. Products affected: The current version of Brave Browser on Windows. The current mobile version of Brave Browse...
Superuser - External URLs, Possible privilege escalation, Runtime command execution vulnerabilities
HackApp vulnerability scanner discovered that application Superuser published at the 'play' market has multiple vulnerabilities...
CVE-2004-0989
Multiple buffer overflows in libXML 2.6.12 and 2.6.13 libxml2, and possibly other versions, may allow remote attackers to execute arbitrary code via 1 a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, 2 a long proxy URL containing FTP data that is not properly handled...
should be able to login only via https
you should be able to configure JIRA to login via HTTPS. this is almost possible in 2.4.1. You can specify an https URL in security-config.xml as the login.url parameter. this makes loing links from e.g. the issue view page work correctly. a slight problem here is that the session remiains in the...