Cybozu Garoon path traversal vulnerability (CNVD-2020-36769)

Cybozu Garoon is a portal-type OA office system from Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, and other functions. A path traversal vulnerability exists in Cybozu Garoon versions 5.0.0 through 5.0.1. An attacker can exploit this...

FortiManager Privilege Management Vulnerability

Fortinet FortiManager VM is a centralized network security management platform for virtual machines. FortiManager versions 5.2.1 and earlier, 5.0.10 and earlier, have a privilege management vulnerability in the WebUI FTP backup page implementation that can be exploited by an attacker to compromis...

Kibana 5.0.1 and 4.6.3 released with a fix for an open redirect vulnerability

Kibana versions 5.0.1 and 4.6.3 fix an open redirect vulnerability in the short URL feature that would allow an attacker to create a redirect from the Kibana domain to a different website. We’ve assigned this vulnerability the identifier ESA-2016-08. Thank you to the GE Digital Security Team for...