Lucene search
K

4 matches found

OSV
OSV
added 2020/09/30 6:15 p.m.2 views

UBUNTU-CVE-2020-13321

A vulnerability was discovered in GitLab versions prior to 13.1. Username format restrictions could be bypassed allowing for html tags to be added...

8.3CVSS5.8AI score0.01418EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2020/09/29 12:0 a.m.2 views

PT-2020-13462 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions prior to 13.1 Description: A vulnerability was discovered that allows username format restrictions to be bypassed, enabling the addition of html tags. Recommendations: For versions prior to 13.1, update to version 13.1 or late...

8.3CVSS8.1AI score0.01418EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.23 views

Oracle: Security Advisory (ELSA-2008-0295)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.5AI score0.12061EPSS
Exploits1References2
Atlassian
Atlassian
added 2004/04/01 11:52 a.m.20 views

Character not allowed in user name

A user has sign up with the user name "m&m". The i tried to modify this user. Because the username is passed as url parameter FooServlet?name=m&m : GET or POST method the servlet container cut the name and try to retreive the username named "m" !!! The only way is to use a database client, change...

1.7AI score
Exploits0Affected Software1
Rows per page
Query Builder