Drupal Cache Poisoning Vulnerability (SA-CORE-2023-006) - Windows

Drupal is prone to a cache poisoning vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:drupal:drupal"; ifdescription...

GitLab 8.7.x - 8.15.7, 8.16.x - 8.16.7, 8.17.x - 8.17.3 Information Disclosure Vulnerability

GitLab is prone to an exposure of sensitive information to an unauthorized actor vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Design/Logic Flaw

A remote arbitrary file read vulnerability was discovered in some Aruba Instant Access Point IAP products in versions: Aruba Instant 6.4.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.5.x: 8.5.0.11 and below; Aruba...

CVE-2019-8946

Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS...

Cross site scripting

Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS...

Cross site scripting

Zimbra Collaboration 8.7.x - 8.8.11P2 contains non-persistent XSS...

Drupal Core SA-CORE-2019-010 Multiple Security Vulnerabilities

Description Drupal is prone to multiple security vulnerabilities. An attacker can exploit these issues to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Drupal versions 8.7.x prior to 8.7.11 and versions 8.8.x prior to 8.8.1 are...

Security Bulletin: Vulnerability in the OpenSSL Library Affects IBM Tealeaf Customer Experience (CVE-2017-3735)

Summary A Vulnerability in the OpenSSL library used by the IBM Tealeaf Customer Experience could permit a a remote attacker to obtain sensitive information. Vulnerability Details CVEID: CVE-2017-3735 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an...

Zimbra 8.7.x < 8.7.11 Patch4, 8.8.x < 8.8.8 Patch4 XSS Vulnerability

Zimbra is prone to a persistent cross-site scripting XSS vulnerability. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Sendmail 8.7.x, 8.8.x - 8.8.2 Local Overflow Vulnerability

The remote sendmail server, according to its version number, allows local user to start it in daemon mode and gain root privileges. SPDX-FileCopyrightText: 2003 Xue Yong Zhi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Sendmail 8.6.x, 8.7.x - 8.7.5 Local Starvation and Overflow Vulnerabilities

The remote Sendmail server, according to its version number, has buffer overflow and denial of service problem through GECOS field, it gives root access to local users. SPDX-FileCopyrightText: 2003 Xue Yong Zhi Some text descriptions might be excerpted from a referenced sources, and are Copyright...