Lucene search
K

4563 matches found

CNVD
CNVD
added 2018/08/29 12:0 a.m.5 views

Zoho ManageEngine ADManager Plus Cross-Site Scripting Vulnerability

ZOHO ManageEngine ADManager Plus is a suite of Microsoft Active Directory management software from ZOHO designed for enterprise users using Windows domains. The software assists AD administrators and helpdesk technicians with day-to-day administrative tasks, such as batch management of user...

6.1CVSS6.1AI score0.06141EPSS
Exploits1References1
NVD
NVD
added 2018/08/28 7:29 p.m.19 views

CVE-2018-15740

Zoho ManageEngine ADManager Plus 6.5.7 has XSS on the "Workflow Delegation" "Requester Roles" screen...

6.1CVSS6.1AI score0.06141EPSS
Exploits1References4
OSV
OSV
added 2018/08/28 7:29 p.m.5 views

CVE-2018-15740

Zoho ManageEngine ADManager Plus 6.5.7 has XSS on the "Workflow Delegation" "Requester Roles" screen...

6.1CVSS5.8AI score
Exploits0References4
Prion
Prion
added 2018/08/28 7:29 p.m.14 views

Design/Logic Flaw

Zoho ManageEngine ADManager Plus 6.5.7 has XSS on the "Workflow Delegation" "Requester Roles" screen...

4.3CVSS6AI score0.06141EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2018/08/28 7:0 p.m.21 views

CVE-2018-15740

Zoho ManageEngine ADManager Plus 6.5.7 has XSS on the "Workflow Delegation" "Requester Roles" screen...

6.1AI score0.06141EPSS
Exploits1References4
CVE
CVE
added 2018/08/28 7:0 p.m.56 views

CVE-2018-15740

Zoho ManageEngine ADManager Plus 6.5.7 contains an XSS vulnerability in the Workflow Delegation > Requester Roles UI. The root cause is a cross-site scripting flaw in that screen, allowing injection of malicious script that could run in an affected user’s browser. Documents consistently identi...

6.1CVSS6AI score0.06141EPSS
Exploits1References4Affected Software1
0day.today
0day.today
added 2018/08/28 12:0 a.m.21 views

ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.manageengine.com/ Hardware Link : https://www.manageengine.com/products/ad-manager/ Software : ZOHO Corp...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2018/08/26 12:0 a.m.29 views

ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting

ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting Exploit Title: ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting Date: 2018-08-21 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.manageengine.com/ Hardware Link : https://www.manageengine.com/products/ad-manager/ Softwa...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2018/08/26 12:0 a.m.64 views

ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting

Exploit Title: ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting Date: 2018-08-21 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.manageengine.com/ Hardware Link : https://www.manageengine.com/products/ad-manager/ Software : ZOHO Corp ManageEngine ADManager Plus Product Versio...

7.4AI score
Exploits0
Hacker One
Hacker One
added 2018/08/24 11:21 p.m.20 views

X (Formerly Twitter): Access MoPub Reports Data even after Company removed you from their MoPub Account.

Description + Attacking approach API Workflow : - The MoPub Reporting API supports two separate CSV outputs where publishers can retrieve inventory or campaign performance data. - Publishers can retrieve daily reports via making a GET request using the request parameters. - This URL will return a...

6.6AI score
Exploits0
OSV
OSV
added 2018/07/27 1:29 p.m.5 views

CVE-2017-2622

An accessibility flaw was found in the OpenStack Workflow mistral service where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...

5.5CVSS5.8AI score0.00372EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/07/27 1:29 p.m.22 views

CVE-2017-2622

An accessibility flaw was found in the OpenStack Workflow mistral service where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...

5.9CVSS6.1AI score0.00372EPSS
Exploits0References2
NVD
NVD
added 2018/07/27 1:29 p.m.30 views

CVE-2017-2622

An accessibility flaw was found in the OpenStack Workflow mistral service where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...

5.9CVSS5.5AI score0.00372EPSS
Exploits0References2
Prion
Prion
added 2018/07/27 1:29 p.m.22 views

Information disclosure

An accessibility flaw was found in the OpenStack Workflow mistral service where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...

2.1CVSS5.3AI score0.00372EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/07/27 1:0 p.m.30 views

CVE-2017-2622

An accessibility flaw was found in the OpenStack Workflow mistral service where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...

5.9CVSS5.5AI score0.00372EPSS
Exploits0References2
CVE
CVE
added 2018/07/27 1:0 p.m.91 views

CVE-2017-2622

CVE-2017-2622 affects OpenStack Workflow (mistral). The vulnerability arises from a log directory being world-readable, enabling an information disclosure vulnerability for a malicious local user. Affected component: mistral service within OpenStack; root cause is improper directory permissions e...

5.9CVSS5.2AI score0.00372EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2018/07/27 1:0 p.m.22 views

CVE-2017-2622

An accessibility flaw was found in the OpenStack Workflow mistral service where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...

5.9CVSS5.4AI score0.00372EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2018/07/27 12:0 a.m.5 views

PT-2018-7143 · Openstack · Openstack Workflow

Name of the Vulnerable Software and Affected Versions: OpenStack Workflow mistral affected versions not specified Description: An accessibility flaw was found in the OpenStack Workflow mistral service where a service log directory was improperly made world readable. A malicious system user could...

5.9CVSS5.2AI score0.00372EPSS
Exploits0References7
OSV
OSV
added 2018/07/18 1:29 p.m.1 views

CVE-2018-2986

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: Workflow. Supported versions that are affected are 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

6.1CVSS7.3AI score0.01542EPSS
Exploits0References3
NVD
NVD
added 2018/07/18 1:29 p.m.16 views

CVE-2018-2985

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: Workflow. Supported versions that are affected are 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

6.1CVSS5.3AI score0.01542EPSS
Exploits0References3
Rows per page
Query Builder