Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 7 : java-1.7.0-openjdk-1.7.0.161-2.6.12.0.0.1.el7.AXS7 (AXSA:2017-2478:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2478:04 advisory. Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to...

9.6CVSS6.8AI score0.16181EPSS
Exploits2References17
BDU FSTEC
BDU FSTEC
added 2020/05/07 12:0 a.m.5 views

The vulnerability of the “credentialhelper” component in the distributed Git version control system, related to insufficient protection of registration data, allows a malicious actor to access confidential information.

The vulnerability of the “credentialhelper” component in the distributed Git version control system is related to insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to protected information through ...

5.3CVSS7.4AI score0.03899EPSS
Exploits0References22Affected Software8
RedHat Linux
RedHat Linux
added 2020/04/21 5:51 p.m.4 views

git: Crafted URL containing new lines can cause credential leak

A flaw was found in git. Credentials can be leaked through the use of a crafted URL that contains a newline, fooling the credential helper to give information for a different host. Highest threat from the vulnerability is to data confidentiality...

9.3CVSS7.1AI score0.10047EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2020/04/20 12:0 a.m.42 views

Fedora 31 : git (2020-cdef88bb89)

Security fix for CVE-2020-5260 From the upstream release notes : With a crafted URL that contains a newline in it, the credential helper machinery can be fooled to give credential information for a wrong host. The attack has been made impossible by forbidding a newline character in any value pass...

9.3CVSS7.2AI score0.10047EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2006/05/03 4:9 p.m.5 views

security flaw

Interpretation conflict in the MagicHTML filter in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to conduct cross-site scripting XSS attacks via style sheet specifiers with invalid 1 "/" and "/" comments, or 2 a newline in a "url" specifier, which is processed by certain web browsers...

4.3CVSS5.7AI score0.02034EPSS
Exploits0References4
Rows per page
Query Builder