5 matches found
Drupal: Vulnerability in the Disabled Login Page
Drupal Disable Login Page is a content blocking plugin for the Drupal community. Versions of Drupal Disable Login Page prior to 1.1.3 contained a security vulnerability. This vulnerability stemmed from an authentication bypass mechanism, which could lead to unauthorized functionality...
SUSE CVE-2021-36779
A Missing Authentication for Critical Function vulnerability in SUSE Longhorn allows any workload in the cluster to execute any binary present in the image on the host without authentication. This issue affects: SUSE Longhorn longhorn versions prior to 1.1.3; longhorn versions prior to 1.2.3...
Pacemaker 授权问题漏洞
Pacemaker is a scalable, high-availability cluster resource manager. An authorization issue vulnerability exists in Pacemaker that stoneth-ng of the product passes passwords as command line arguments. This vulnerability can be exploited to obtain the HA stack password. The following products and...
shescape 参数注入漏洞
shescape is open source a simple shell escaping program package for JavaScript . Use it to escape user-controlled input to shell commands to prevent shell injection . A command injection vulnerability exists in versions of shescape prior to 1.1.3, which can be exploited by an attacker to insert a...
UBUNTU-CVE-2017-15914
Incorrect implementation of access controls allows remote users to override repository restrictions in Borg servers 1.1.x before 1.1.3...