8 matches found
SuiteCRM 访问控制错误漏洞
SuiteCRM is a customer relationship management system from the SuiteCRM team. An access control error vulnerability exists in SuiteCRM versions 7.14.6 and 8.8.0 that stems from a legacy iCal service authentication flaw that could lead to unauthorized access to meeting data...
Drupal core 8.8.0-10.2.10,10.3.0-10.3.8,11.0.0-11.0.7 - Authenticated Cross Site Scripting (XSS) vulnerability
Authenticated Cross Site Scripting XSS vulnerability discovered by Jay Beaton in WordPress Core Drupal versions 8.8.0-10.2.10,10.3.0-10.3.8,11.0.0-11.0.7...
IBM Maximo Application Suite 安全漏洞
IBM Maximo Application Suite is a single platform for intelligent asset management, monitoring, maintenance, computer vision, security and reliability from International Business Machines IBM. A security vulnerability exists in IBM Maximo Application Suite - Manage Component version 8.8.0, versio...
PT-2023-21380 · Ibm · Ibm Maximo Application Suite
Name of the Vulnerable Software and Affected Versions: IBM Maximo Application Suite - Manage Component versions 8.8.0 through 8.9.0 Description: The issue concerns the transmission of sensitive information in cleartext, which could be intercepted by an attacker using man-in-the-middle techniques...
IBM Maximo Application Suite Licensing Issue Vulnerability
IBM Maximo Application Suite is a single platform for intelligent asset management, monitoring, maintenance, computer vision, security and reliability from International Business Machines IBM. an authorization issue vulnerability exists in IBM Maximo Application Suite versions 8.8.0 and 8.9.0,...
PT-2023-15024 · Ibm · Ibm Manage Application
Name of the Vulnerable Software and Affected Versions: IBM Manage Application versions 8.8.0 through 8.9.0 Description: The issue is related to incorrect default permissions, which could allow a user to perform actions they should not have access to. Recommendations: For versions 8.8.0 and 8.9.0,...
Apache Wicket Information Disclosure Vulnerability (CNVD-2020-48974)
Apache Wicket is the United States Apache Apache Software Foundation , a set of open source , lightweight , component-based framework , which provides an object-oriented way to develop Web-based dynamic UI applications . An information disclosure vulnerability exists in Apache Wicket versions...
PT-1996-1033 · Sendmail · Sendmail
Name of the Vulnerable Software and Affected Versions: Sendmail versions 8.8.0 through 8.8.1 Description: A buffer overflow issue in the MIME processing of Sendmail allows for root access. Recommendations: For Sendmail versions 8.8.0 and 8.8.1, update to a version that fixes this issue. At the...