EUVD-2007-5768

Malware in sbrugna...

CVE-2018-5405

The Quest Kace K1000 Appliance, versions prior to 9.0.270, allows an authenticated least privileged user with 'User Console Only' rights to potentially inject arbitrary JavaScript code on the tickets page. Script execution could allow a malicious user of the system to steal session cookies of oth...

PT-2024-22661 · Hitachi Vantara · Pentaho Business Analytics Server

Name of the Vulnerable Software and Affected Versions: Hitachi Vantara Pentaho Business Analytics Server versions prior to 10.1.0.0 Hitachi Vantara Pentaho Business Analytics Server versions prior to 9.3.0.7 Hitachi Vantara Pentaho Business Analytics Server version 8.3.x Description: The issue...

CVE-2022-4771

Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.4.0.1 and 9.3.0.2, including 8.3.x allow a malicious URL to inject content into the Pentaho User Console through session variables...

CVE-2018-5405

The Quest Kace K1000 Appliance, versions prior to 9.0.270, allows an authenticated least privileged user with 'User Console Only' rights to potentially inject arbitrary JavaScript code on the tickets page. Script execution could allow a malicious user of the system to steal session cookies of oth...

KACE System Management Appliance (SMA) 9.0.270 - Multiple Vulnerabilities

KACE System Management Appliance SMA 9.0.270 - Multiple Vulnerabilities Exploit Title: Dell Kace Appliance Multiple Vulnerabilities Date: 12/04/2018 Exploit Author: SlidingWindow, Twitter: @kapilkhot Vendor Homepage: https://www.quest.com/products/kace-systems-management-appliance/ Affected...

Micro Focus NetIQ Identity Manager user console redirection vulnerability

Micro Focus NetIQ Identity Manager is an identity management solution from Micro Focus UK. The solution provides the foundation for account provisioning, user self-service, authorization and Web services, and supports data sharing and synchronization. user console is one of the user console...

CVE-2018-7674

The NetIQ Identity Manager user console, in versions prior to 4.7, is susceptible to URL redirection...

CVE-2018-7674

The NetIQ Identity Manager user console, in versions prior to 4.7, is susceptible to URL redirection...

CVE-2018-7674

The CVE concerns NetIQ Identity Manager’s user console vulnerability: URL redirection in versions before 4.7. Affected element is the user console; the underlying flaw enables redirection to external sites. The documents state the impact as the ability to direct users to other Web sites, with no ...

Pentaho Data Integration and Analytics Detection (HTTP)

HTTP based detection of Pentaho Data Integration and Analytics formerly Pentaho Business Analytics / Pentaho Data Integration. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Fedora 18 : eucalyptus-3.2.1-2.fc18 (2013-3498)

This update addresses CVE-2012-4066, three Fedora-specific issues related to the eucalyptus user console, and various other bugfixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...

CVE-2007-5799

Multiple cross-site request forgery CSRF vulnerabilities in uddigui/navigateTree.do in the UDDI user console in IBM WebSphere Application Server WAS before 6.1.0 Fix Pack 13 6.1.0.13 allow remote attackers to perform some actions as WAS UDDI users via the 1 keyField, 2 nameField, 3 valueField, an...

CVE-2007-5799

Multiple cross-site request forgery CSRF vulnerabilities in uddigui/navigateTree.do in the UDDI user console in IBM WebSphere Application Server WAS before 6.1.0 Fix Pack 13 6.1.0.13 allow remote attackers to perform some actions as WAS UDDI users via the 1 keyField, 2 nameField, 3 valueField, an...

CVE-2007-5798

Multiple cross-site scripting XSS vulnerabilities in uddigui/navigateTree.do in the UDDI user console in IBM WebSphere Application Server WAS before 6.1.0 Fix Pack 13 6.1.0.13 allow remote attackers to inject arbitrary web script or HTML via the 1 keyField, 2 nameField, 3 valueField, and 4...

CVE-2000-0668

CVE-2000-0668 affects the Linux pam_console PAM module when a display manager (gdm or kdm) has XDMCP enabled. The vulnerability allows a user to access the system console and reboot the system, with a Medium severity (CVSS v2 base score 5.0) and a Partial availability impact. The provided sources...