3 matches found
IBM Datacap 安全漏洞
IBM Datacap is a document capture and processing software from International Business Machines IBM that captures data from various sources e.g., scanner, email, fax, etc. in paper or electronic documents and converts them into editable and searchable digital formats, which are widely used in...
Security Bulletin: Datacap Taskmaster Capture is affected by vulnerable to using a cookie without the "secure" attribute
Summary AppScan found that an encrypted session SSL is using a cookie without the "secure" attribute and this can be fixed by adding a setting in web.config file Vulnerability Details Third Party Entry: PSIRT-ADV0026307 DESCRIPTION: Created from Advisory: ADV0026307 CVSS Base score: 4.3 CVSS...
PHPCMS_V9 (get_linkage.php) 本地文件包含漏洞
由于文件getlinkage.php对于用户提交的变量未过滤,导致本地文件包含漏洞的产生。 相关代码如下: /api/ getlinkage.php codecase 'ajaxselect': $parentid = $GET'parentid' ? intval$GET'parentid' : 0; $keyid = $GET'keyid'; ajaxselect$parentid,$keyid; 函数ajaxselect在相同文件中有定义 function ajaxselect$parentid,$keyid $datas = getcache$keyid,'linkage';...