15 matches found
EUVD-2025-208382
An unauthenticated remote attacker can obtain valid session tokens because they are exposed in plaintext within the URL parameters of the wwwupdate.cgi endpoint in UBR...
CVE-2025-56513
NiceHash QuickMiner 6.12.0 perform software updates over HTTP without validating digital signatures or hash checks. An attacker capable of intercepting or redirecting traffic to the update url and can hijack the update process and deliver arbitrary executables that are automatically executed,...
NiceHash QuickMiner 安全漏洞
NiceHash QuickMiner is a cryptocurrency miner software open source by NiceHash.com. A security vulnerability exists in NiceHash QuickMiner version 6.12.0 that originates from executing a software update over HTTP without verifying digital signatures or hash checking, which could lead to remote co...
element-web-1.11.81-1.1 on GA media (moderate)
element-web-1.11.81-1.1 on GA media Announcement ID: openSUSE-SU-2024:14407-1 Rating: moderate Cross-References: CVE-2024-47771 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
SUSE-SU-2023:3237-1 Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: Update to version 2.40.5 bsc1213905: - CVE-2023-38133: Fixed information disclosure. - CVE-2023-38572: Fixed Same-Origin-Policy bypass. - CVE-2023-38592: Fixed arbitrary code execution. - CVE-2023-38594: Fixed arbitrary code execution. -...
SUSE-SU-2022:4244-1 Security update for ganglia-web
This update for ganglia-web fixes the following issues: - updated to 3.7.5 which fixes bsc1179835 - CVE-2019-20378: Fixed a possible XSS via ce and cs parameters in header.php bsc1160761...
SUSE-SU-2022:4243-1 Security update for ganglia-web
This update for ganglia-web fixes the following issues: - updated to 3.7.5 which fixes bsc1179835 - CVE-2019-20378: Fixed a possible XSS via ce and cs parameters in header.php bsc1160761...
DLA-1962-1 graphite-web - security update
Bulletin has no description...
[SECURITY] Fedora 30 Update: icedtea-web-1.8-3.fc30
The IcedTea-Web project provides a Java web browser plugin, an implementati on of Java Web Start originally based on the Netx project and a settings too l to manage deployment settings for the aforementioned plugin and Web Start implementations...
icedtea-web security update
1.7.2-16 - added patch1, patch4 and patch11 to fix CVE-2019-10182 - added patch2 to fix CVE-2019-10181 - added patch3 and patch33 to fix CVE-2019-10185 - Resolves: rhbz1724958 - Resolves: rhbz1725928 - Resolves: rhbz1724989...
MGASA-2016-0130 Updated java packages fix CVE-2016-0636
Updated java-1.8.0-openjdk packages fix security vulnerability: An improper type safety check was discovered in the Hotspot component. An untrusted Java application or applet could use this flaw to bypass Java Sandbox restrictions CVE-2016-0636. Also, the icedtea-web package has been updated to...
JVN#26394323: POST-MAIL vulnerable to cross-site scripting
POST-MAIL provided by KENT-WEB contains an issue in the webpage output of strings entered in the form, which may result in a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest version accordin...
update for icedtea-web (important)
This update of icedtea-web fixed multiple hewap buffer overflows...
icedtea-web security update
1.2.1-1 - Updated to 1.2.1 - Resolves: CVE-2012-3422 - Resolves: CVE-2012-3423...
Fedora Update for wordpress FEDORA-2011-8908
Check for the Version of wordpress OpenVAS Vulnerability Test Fedora Update for wordpress FEDORA-2011-8908 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...