jeudi 24 octobre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

LimeSurvey up to 3.19.1 translateheader_view.php tolang cross site scripting

A vulnerability classified as problematic was found in LimeSurvey up to 3.19.1 (Survey Software). This vulnerability affects an unknown functionality of the file admin/translate/translateheader_view.php. There is no information about possible...
Auteur: VulDB

HongCMS 3.0.0 install/index.php tableprefix cross site scripting

A vulnerability classified as problematic has been found in HongCMS 3.0.0. This affects an unknown function of the file install/index.php. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

HongCMS 3.0.0 install/index.php dbpassword cross site scripting

A vulnerability was found in HongCMS 3.0.0. It has been rated as problematic. Affected by this issue is some unknown processing of the file install/index.php. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

HongCMS 3.0.0 install/index.php dbusername cross site scripting

A vulnerability was found in HongCMS 3.0.0. It has been declared as problematic. Affected by this vulnerability is an unknown code block of the file install/index.php. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

HongCMS 3.0.0 install/index.php dbname cross site scripting

A vulnerability was found in HongCMS 3.0.0. It has been classified as problematic. Affected is an unknown code of the file install/index.php. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

HongCMS 3.0.0 install/index.php servername cross site scripting

A vulnerability was found in HongCMS 3.0.0 and classified as problematic. This issue affects an unknown part of the file install/index.php. There is no information about possible countermeasures known. It may be suggested to replace the affected...
Auteur: VulDB

Dolibarr 10.0.2 Outgoing Email Setup mails.php cross site scripting

A vulnerability has been found in Dolibarr 10.0.2 (Enterprise Resource Planning Software) and classified as problematic. This vulnerability affects some unknown functionality of the file admin/mails.php?action=edit of the component Outgoing Email...
Auteur: VulDB

Dolibarr 10.0.2 Outgoing Email Setup mails.php cross site scripting

A vulnerability, which was classified as problematic, was found in Dolibarr 10.0.2 (Enterprise Resource Planning Software). This affects an unknown functionality of the file admin/mails.php?action=edit of the component Outgoing Email Setup. There...
Auteur: VulDB

Dolibarr 10.0.2 Outgoing Email Setup mails.php cross site scripting

A vulnerability, which was classified as problematic, has been found in Dolibarr 10.0.2 (Enterprise Resource Planning Software). Affected by this issue is an unknown function of the file /admin/mails.php?action=edit of the component Outgoing...
Auteur: VulDB

D-Link DIR-412 A1-1.14WW log_clear.php act=clear&logtype=sysact weak authentication

A vulnerability classified as critical was found in D-Link DIR-412 A1-1.14WW (Router Operating System). Affected by this vulnerability is some unknown processing of the file log_clear.php. There is no information about possible countermeasures...
Auteur: VulDB

Palo Alto GlobalProtect Agent up to 5.0.4 on Linux/macOS privilege escalation

A vulnerability classified as critical has been found in Palo Alto GlobalProtect Agent up to 5.0.4 on Linux/macOS. Affected is an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Palo Alto GlobalProtect Agent up to 4.1.12/5.0.3 on Windows MSI Installer privilege escalation

A vulnerability was found in Palo Alto GlobalProtect Agent up to 4.1.12/5.0.3 on Windows. It has been rated as critical. This issue affects an unknown code of the component MSI Installer. There is no information about possible countermeasures...
Auteur: VulDB

slub_events Extension up to 3.0.2 on TYPO3 Event Registration Remote Code Execution

A vulnerability was found in slub_events Extension up to 3.0.2 on TYPO3. It has been declared as critical. This vulnerability affects an unknown part of the component Event Registration. There is no information about possible countermeasures...
Auteur: VulDB

sr_freecap Extension up to 2.4.5 on TYPO3 Remote Code Execution

A vulnerability was found in sr_freecap Extension up to 2.4.5 on TYPO3. It has been classified as critical. This affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

direct_mail Extension up to 5.2.2 on TYPO3 Access Check privilege escalation

A vulnerability was found in direct_mail Extension up to 5.2.2 on TYPO3 and classified as critical. Affected by this issue is an unknown functionality of the component Access Check. There is no information about possible countermeasures known. It...
Auteur: VulDB

url_redirect Extension up to 1.2.1 on TYPO3 sql injection [CVE-2019-16682]

A vulnerability has been found in url_redirect Extension up to 1.2.1 on TYPO3 and classified as critical. Affected by this vulnerability is an unknown function. There is no information about possible countermeasures known. It may be suggested to...
Auteur: VulDB

Cisco TelePresence Collaboration Endpoint CLI /root privilege escalation

A vulnerability, which was classified as critical, was found in Cisco TelePresence Collaboration Endpoint (version unknown). Affected is some unknown processing of the file /root of the component CLI. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco Identity Services Engine Web-based Management Interface Request information disclosure

A vulnerability, which was classified as problematic, has been found in Cisco Identity Services Engine (unknown version). This issue affects an unknown code block of the component Web-based Management Interface. Upgrading eliminates this...
Auteur: VulDB

Cisco Identity Services Engine Web-based Management Interface Stored cross site scripting

A vulnerability classified as problematic was found in Cisco Identity Services Engine (the affected version is unknown). This vulnerability affects an unknown code of the component Web-based Management Interface. Upgrading eliminates this...
Auteur: VulDB

Cisco FirePOWER Management Center Web-based Management Interface Stored cross site scripting

A vulnerability classified as problematic has been found in Cisco FirePOWER Management Center (the affected version unknown). This affects an unknown part of the component Web-based Management Interface. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco TelePresence Collaboration Endpoint Privileges privilege escalation

A vulnerability was found in Cisco TelePresence Collaboration Endpoint (affected version not known). It has been rated as critical. Affected by this issue is some unknown functionality of the component Privileges. Upgrading eliminates this...
Auteur: VulDB

Cisco TelePresence Collaboration Endpoint CLI Command privilege escalation

A vulnerability was found in Cisco TelePresence Collaboration Endpoint (affected version unknown). It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component CLI. Upgrading eliminates this...
Auteur: VulDB

Cisco TelePresence Collaboration Endpoint CLI command injection

A vulnerability was found in Cisco TelePresence Collaboration Endpoint (Unified Communication Software) (version unknown). It has been classified as critical. Affected is an unknown function of the component CLI. Upgrading eliminates this...
Auteur: VulDB

Cisco TelePresence Collaboration Endpoint CLI privilege escalation

A vulnerability was found in Cisco TelePresence Collaboration Endpoint (unknown version) and classified as critical. This issue affects some unknown processing of the component CLI. Upgrading eliminates this vulnerability.
Auteur: VulDB

Cisco FirePOWER Management Center Web-based Management Interface cross site scripting

A vulnerability has been found in Cisco FirePOWER Management Center (the affected version is unknown) and classified as problematic. This vulnerability affects an unknown code block of the component Web-based Management Interface. Upgrading...
Auteur: VulDB
First567891011121314Last

Événements SSI

BLOCKCHAIN

Conférence et exposition sur les applications d'entreprise de la blockchain à Paris, cité universitaire internationale, les 13 et 14 novembre 2019. Organisés par Corp Agency.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS