Celestial AbsoluteTelnet 安全漏洞

Celestial AbsoluteTelnet is a Telnet/SSH terminal client software developed by the American company Celestial. Version 11.12 of Celestial AbsoluteTelnet contains a security vulnerability, which stems from improper handling of the license name input field. This vulnerability could lead to...

CVE-2020-37164 AbsoluteTelnet 11.12 - "license entry" Denial of Service

AbsoluteTelnet 11.12 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an oversized license name. Attackers can generate a 2500-character payload and paste it into the license entry field to trigger an application crash...

Amazon Linux 2 : postgresql (ALASPOSTGRESQL11-2023-003)

The version of postgresql installed on the remote host is prior to 11.12-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL11-2023-003 advisory. A flaw was found in postgresql. While modifying certain SQL array values, missing bounds checks let...

COINS Construction Cloud 跨站脚本漏洞

COINS Construction Cloud is an end-to-end suite of cloud and mobile software solutions from COINS, Inc. designed to help construction executives drive increased profitability across their business. A cross-site scripting vulnerability exists in COINS Construction Cloud 11.12 that stems from...

Construction Industry Solutions Conis Construction Cloud 输入验证错误漏洞

Construction Industry Solutions Conis Construction Cloud is an end-to-end cloud and mobile software solution from Construction Industry Solutions, Inc. Construction Industry Solutions Conis Construction Cloud version 11.12 is vulnerable to an input validation error that could be exploited by an...

PT-2022-12311 · Unknown · Coins Construction Cloud

Name of the Vulnerable Software and Affected Versions: COINS Construction Cloud version 11.12 Description: An issue was discovered due to improper validation of user-controlled HTTP headers, allowing attackers to cause the system to send password-reset e-mails pointing to arbitrary websites...

PT-2022-12307 · Coins · Coins Construction Cloud

Name of the Vulnerable Software and Affected Versions: COINS Construction Cloud version 11.12 Description: An issue was discovered due to logical flaws in the human resources interface, making it vulnerable to privilege escalation by HR personnel. Recommendations: For COINS Construction Cloud...

Security fix for the ALT Linux 8 package postgresql11-1C version 11.12-alt0.M80P.1

11.12-alt0.M80P.1 built June 4, 2021 Alexei Takaseev in task 272119 May 19, 2021 Alexei Takaseev - 11.12 Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 - Update 1C patch...

PT-2021-3135 · Postgresql +9 · Postgresql +9

Name of the Vulnerable Software and Affected Versions: postgresql versions prior to 13.3 postgresql versions prior to 12.7 postgresql versions prior to 11.12 postgresql versions prior to 10.17 postgresql versions prior to 9.6.22 Description: A flaw was found in postgresql that allows authenticate...

ZOHO ManageEngine EventLog Analyzer Cross-Site Scripting Vulnerability (CNVD-2018-17643)

ZOHO ManageEngine EventLog Analyzer is the United States ZhuoHao ZOHO company's set of system, event log analysis software. The software is capable of network-wide hosts, servers, network equipment and a variety of application service systems and other logs generated by the comprehensive collecti...

ZOHO ManageEngine EventLog Analyzer Cross-Site Scripting Vulnerability (CNVD-2018-12558)

ZOHO ManageEngine EventLog Analyzer is the United States ZhuoHao ZOHO company's set of system, event log analysis software. The software is capable of network-wide hosts, servers, network equipment and a variety of application service systems and other logs generated by the comprehensive collecti...

Zoho ManageEngine EventLog Analyzer Cross-Site Scripting Vulnerability

ZOHO ManageEngine EventLog Analyzer is the United States ZhuoHao ZOHO company's set of system, event log analysis software. The software is capable of network-wide hosts, servers, network equipment and a variety of application service systems and other generated logs, comprehensive collection and...

Watchguard Firebox / XTM XXE Injection Vulnerability

Watchguard's Firebox and XTM appliances suffer from XML external entity injection and XML-RPC user enumeration vulnerabilities. Watchguardas Firebox and XTM are a series of enterprise grade network security appliances providing advanced security services like next generation firewall, intrusion...