SSCMS SiteServerCMS 路径遍历漏洞

SSCMS SiteServerCMS SSCMS is an open source, cross-platform, enterprise-level content management system from China-based SSCMS. A security vulnerability exists in SiteServerCMS version 7.1.3. An attacker can read arbitrary files by exploiting the vulnerability...

SiteServer CMS SQL注入漏洞

SiteServer CMS is an open source content management system CMS developed by China Billion Software Technology Development Company. A security vulnerability exists in SiteServer CMS version 7.1.3, which is caused by SQL injection in the backend...

CVE-2022-44297

SiteServer CMS 7.1.3 has a SQL injection vulnerability the background...

Dell EMC CloudLink 信息泄露漏洞

Dell EMC CloudLink is a flexible data encryption and key management solution from Dell, Inc. for data encryption in public, private, and hybrid cloud environments. A security vulnerability exists in Dell EMC CloudLink version 7.1.3 and prior versions. An attacker exploited the vulnerability to...

Liferay CMS Portal 跨站脚本漏洞

Liferay Portal is a J2EE-based portal solution from Liferay, Inc. The solution uses EJB as well as JMS and other technologies , and can be used as a Web publishing and sharing workspaces , enterprise collaboration platforms , social networks and so on. A security vulnerability exists in Liferay C...

GHSA-XG75-3277-GVVJ Directory Traversal in serve

Versions of serve before 7.1.3 are vulnerable to Directory Traversal. File paths are not sanitized leading to unauthorized access of system files. Recommendation Upgrade to version 7.1.3 or later...

Security Bulletin: Vulnerabilities in GSKit affect Rational RequisitePro (CVE-2015-1788)

Summary GSKit is an IBM component that is used by IBM Rational RequisitePro. The GSKit that is shipped with IBM Rational RequisitePro contains a security vulnerability. IBM Rational RequisitePro has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2015-1788 DESCRIPTION: OpenSSL is...

JVN#75453852: LINE for iOS fails to verify SSL server certificates

LINE for iOS provided by LINE Corporation fails to verify SSL server certificates due to the vulnerability existed in the Third Party SDK which is incorporated in the application. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication. According to the...

PHP < 5.6.31, 7.x < 7.0.17, 7.1.x < 7.1.3 DoS Vulnerability (Jul 2017) - Linux

PHP is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

WordPress Support Plus Responsive Ticket System 7.1.3 SQL Injection

Exploit Title: WP Support Plus Responsive Ticket System 7.1.3 a WordPress Plugin a Sql Injection Exploit Author: Lenon Leite Vendor Homepage: https://wordpress.org/plugins/wp-support-plus-responsive-ticket-system/ Software Link:...

IBM Tivoli Storage Manager elevation of privilege vulnerability (CNVD-2015-07342)

IBM Tivoli Storage Manager is an American IBM data protection platform that provides organizations with a single point of control and management for storage management needs. An elevation of privilege vulnerability exists in IBM Tivoli Storage Manager version 6.3 prior to 6.3.6 and version 7.1...

Apple Quicktime <= 7.1.3 (HREFTrack) Cross-Zone Scripting Exploit

No description provided by source. !/usr/bin/ruby c 2006 LMH lmh at info-pull.com Original scripting and POC by Aviv Raff http://aviv.raffon.net. Description: Exploit for MOAB-03-01-2007. If argument 'serve' is passed, it uses port 21 for running the fake FTP server required. HTTP server port can...

Adobe Reader Multiple BOF Vulnerabilities (APSB09-07) - Linux

Adobe Reader is prone to multiple buffer overflow vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Insecure handling of procfs descriptors in UnixWare 7.1.1, 7.1.3 and Open UNIX 8.0.0 can lead to local privilege escalation.

----------------------------------------------------------------------- Texonet Security Advisory 20031024 ----------------------------------------------------------------------- Advisory ID : TEXONET-20031024 Authors : Joel Soderberg and Christer Oberg Issue date : Friday, October 24, 2003 Publi...