8 matches found
CVE-2026-40982
Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead to a directory traversal attack. Spring Cloud Config 3.1.x: affected from...
SUSE CVE-2015-7701
Memory leak in the CRYPTOASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service memory consumption...
SUSE CVE-2016-2519
ntpd in NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service ntpd abort by a large request data value, which triggers the ctlgetitem function to return a NULL value...
DEBIAN-CVE-2022-28890
A vulnerability in the RDF/XML parser of Apache Jena allows an attacker to cause an external DTD to be retrieved. This issue affects Apache Jena version 4.4.0 and prior versions. Apache Jena 4.2.x and 4.3.x do not allow external entities...
PT-2019-15961 · Cyxtera · Cyxtera Appgate Sdp Client
Name of the Vulnerable Software and Affected Versions: Cyxtera AppGate SDP Client versions 4.1.x through 4.3.x before 4.3.2 Description: A local or remote user from the same domain can gain privileges in the affected software. Recommendations: For versions 4.1.x through 4.3.x before 4.3.2, update...
Pivotal Spring Framework Cross Domain Request Vulnerability
Pivotal Spring Framework is the United States Pivotal Software's set of open source Java, Java EE application framework. The framework helps developers build high-quality applications . A security vulnerability exists in Pivotal Spring Framework versions 5.0.x prior to 5.0.7, 4.3.x prior to 4.3.1...
phpMyAdmin Security Bypass Vulnerability (Nov 2015) - Windows
phpMyAdmin is prone to reCaptcha bypass vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin";...
PT-2015-7382
Name of the Vulnerable Software and Affected Versions: phpMyAdmin versions 4.3.x through 4.3.13.1 phpMyAdmin versions 4.4.x through 4.4.14.0 Description: The issue allows remote attackers to bypass a multiple-reCaptcha protection mechanism against brute-force credential guessing by providing a...