2 matches found
CVE-2022-4966
CVE-2022-4966 affects sequentech admin-console up to version 6.1.7, impacting the Election Description Handler component. The issue enables cross-site scripting and can be exploited remotely. A fix is available in version 7.0.0-beta.1 (patch 0043a6b1e6e0f5abc9557e73f9ffc524fc5d609d); upgrading th...
tomcat: information leak vulnerability in the handling of 'Transfer-Encoding' header
Apache Tomcat 5.5.0 through 5.5.29, 6.0.0 through 6.0.27, and 7.0.0 beta does not properly handle an invalid Transfer-Encoding header, which allows remote attackers to cause a denial of service application outage or obtain sensitive information via a crafted header that interferes with "recycling...