Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-28058

Malicious code in bioql PyPI...

5.8CVSS6.6AI score0.00214EPSS
Exploits0References1
OSV
OSV
added 2024/10/23 3:15 p.m.6 views

CVE-2024-30122

HCL Sametime is impacted by misconfigured security related HTTP headers. It was identified that some HTTP headers were missing on web service responses. This will lead to less secure browser default treatment for the policies controlled by these headers...

5.3CVSS5.8AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/23 2:59 p.m.24 views

CVE-2024-30122 HCL Sametime is impacted by misconfigured security related HTTP headers

HCL Sametime is impacted by misconfigured security related HTTP headers. It was identified that some HTTP headers were missing on web service responses. This will lead to less secure browser default treatment for the policies controlled by these headers...

5.8CVSS7.2AI score0.00214EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/23 12:0 a.m.3 views

PT-2024-23197 · Hcl · Hcl Sametime

Name of the Vulnerable Software and Affected Versions: HCL Sametime affected versions not specified Description: The issue is related to misconfigured security-related HTTP headers in HCL Sametime. Specifically, some HTTP headers are missing from web service responses, which can lead to less secu...

5.8CVSS6.8AI score0.00214EPSS
Exploits0References3
Snyk
Snyk
added 2022/04/27 9:56 a.m.1 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS when CSP headers were only sent along with responses that Rails considered as "HTML" responses. This left API requests without CSP headers, which could possibly expose users to this vulnerability. Workaround: Se...

7.5CVSS5.3AI score0.01594EPSS
Exploits0References2
OSV
OSV
added 2019/04/25 6:29 p.m.1 views

CVE-2018-1360

A cleartext transmission of sensitive information vulnerability in Fortinet FortiManager 5.2.0 through 5.2.7, 5.4.0 and 5.4.1 may allow an unauthenticated attacker in a man in the middle position to retrieve the admin password via intercepting REST API JSON responses...

8.1CVSS5.8AI score0.00863EPSS
Exploits0References2
Rows per page
Query Builder