15 matches found
OPENSUSE-SU-2025-20113-1 Security update for dovecot24
This update for dovecot24 fixes the following issues: - Update dovecot to 2.4.2: - CVE-2025-30189: Fixed users cached with same cache key when auth cache was enabled bsc1252839 - Changes - auth: Remove proxyalways field. - config: Change settings history parsing to use python3. - doveadm: Print...
CVE-2025-30189
When cache is enabled, some passdb/userdb drivers incorrectly cache all users with same cache key, causing wrong cached information to be used for these users. After cached login, all subsequent logins are for same user. Install fixed version or disable caching either globally or for the impacted...
SUSE CVE-2025-30189
When cache is enabled, some passdb/userdb drivers incorrectly cache all users with same cache key, causing wrong cached information to be used for these users. After cached login, all subsequent logins are for same user. Install fixed version or disable caching either globally or for the impacted...
EUVD-2020-7834
Malware in sbrugna...
EUVD-2014-0686
Malware in sbrugna...
EUVD-1999-0771
Malware in sbrugna...
WEM External task not working when "run script " selected
External task configured using below option for "run script" In the WEM logs we could see below error 12:14:13 PM Warning - VuemExternalTaskExecutor.ExecuteExternalTask : External Task - Create User Cache Folder Id:3 - Unable to validate target file existence... 12:14:13 PM Exception -...
Insufficient Session Expiration
admidio/admidio is vulnerable to Insufficient Session Expiration. The vulnerability exists due to the user cache in Session.php which allows a user to use an access token to login even when its invalid...
CVE-2014-0655
The Identity Firewall IDFW functionality in Cisco Adaptive Security Appliance ASA Software allows remote attackers to change the user-cache contents via a replay attack involving crafted RADIUS Change of Authorization CoA messages, aka Bug ID CSCuj45332...
Cisco Adaptive Security Appliance RADIUS Change of Authorization Message Replay Vulnerability
A vulnerability in RADIUS Change of Authorization CoA messages of the Identity Firewall IDFW feature of the Cisco Adaptive Security Appliance ASA could allow an unauthenticated, remote attacker to modify the contents of the IDFW user cache. The vulnerability is due to insufficient validation of...
emlog 4.1.0 敏感信息泄漏漏洞
emlog是一款基于PHP和MySQL平台的功能强大的个人博客系统blog,该版本存在敏感信息泄漏的漏洞。 泄露作者名称: http://site/content/cache/user 泄露配置信息 http://site/content/cache/options 漏洞证明 修复方案: 升级最新官方版本,官方链接:www.emlog.net...
CVE-1999-0790
CVE-1999-0790 involves Netscape where a remote attacker can read information from a Netscape user’s cache via JavaScript. Affected software: Netscape browser. Root cause: JavaScript access enables reading cached data, resulting in partial confidentiality impact. Exploitation details, affected ver...
netscape.4.x-javascript.txt
Date: Wed, 28 Oct 1998 10:22:02 PST From: Georgi Guninski Subject: Javascript bug in Netscape Communicator 4.5 There is a bug in Netscape Communicator 4.5, 4.07, 3.04 under Windows 95 probably others which allows reading user's cache the urls the user has visited, including the info in GET forms...
netscape.title.tag.about.txt
Date: Mon, 24 May 1999 14:24:13 +0300 From: Georgi Guninski To: [email protected] Subject: Netscape Communicator JavaScript in security vulnerability There is a security bug in Netscape Communicator 4.6 Win95, 4.07 Linux guess all 4.x versions are affected in the way they treat JavaScript code...
netscape.find.txt
Date: Mon, 8 Mar 1999 19:48:05 +0200 From: Georgi Guninski To: [email protected] Subject: Netscape Communicator find vulnerabilities There is a design flaw in Netscape Communicator 4.5 Win95, 4.08 WinNT I guess all 4.x version are vulnerable which allows the following security exploits: Readin...