10 matches found
LdapCherry Cross-site Scripting vulnerbaility
A vulnerability, which was classified as problematic, was found in kakwa LdapCherry up to 0.x. Affected is an unknown function of the component URL Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 1.0.0 is able to address...
Cross site scripting
A vulnerability, which was classified as problematic, was found in kakwa LdapCherry up to 0.x. Affected is an unknown function of the component URL Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 1.0.0 is able to address...
CVE-2017-20160
A vulnerability was found in flitto express-param up to 0.x. It has been classified as critical. This affects an unknown part of the file lib/fetchParams.js. The manipulation leads to improper handling of extra parameters. It is possible to initiate the attack remotely. Upgrading to version 1.0.0...
CVE-2017-20159
A vulnerability was found in rf Keynote up to 0.x on Rails. It has been rated as problematic. Affected by this issue is some unknown functionality of the file lib/keynote/rumble.rb. The manipulation of the argument value leads to cross site scripting. The attack may be launched remotely. Upgradin...
nginx on Windows Directory Aliases Access Restriction Bypass
According to its Server response header, the installed version of nginx is 0.x greater than or equal to 0.7.52 or 1.x earlier than 1.2.1 / 1.3.1 and is, therefore, affected by an access restriction bypass vulnerability. By using a request with a specially crafted directory name, such as...
[SA19095] Oreka RTP Handling Denial of Service Vulnerability
TITLE: Oreka RTP Handling Denial of Service Vulnerability SECUNIA ADVISORY ID: SA19095 VERIFY ADVISORY: http://secunia.com/advisories/19095/ CRITICAL: Less critical IMPACT: DoS WHERE: From local network SOFTWARE: Oreka 0.x http://secunia.com/product/8523/ DESCRIPTION: A vulnerability has been...
[SA17774] unalz Filename Handling Buffer Overflow Vulnerability
TITLE: unalz Filename Handling Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA17774 VERIFY ADVISORY: http://secunia.com/advisories/17774/ CRITICAL: Moderately critical IMPACT: System access WHERE: From remote SOFTWARE: unalz 0.x http://secunia.com/product/6230/ DESCRIPTION: Ulf Harnhammar h...
[SA16975] sblim-sfcb Multiple Requests Denial of Service Vulnerability
TITLE: sblim-sfcb Multiple Requests Denial of Service Vulnerability SECUNIA ADVISORY ID: SA16975 VERIFY ADVISORY: http://secunia.com/advisories/16975/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote SOFTWARE: sblim-sfcb 0.x http://secunia.com/product/5777/ DESCRIPTION: A vulnerability has...
[SA16506] Mantis Cross-Site Scripting and SQL Injection Vulnerabilities
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...
[SA16011] PPA "config[ppa_root_path]" File Inclusion Vulnerability
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...