Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Apache OFBiz 16.11.01/16.11.02/16.11.03/16.11.04 HTTP Engine httpService serviceName/serviceMode/serviceContext privilege escalation

A vulnerability classified as critical was found in Apache OFBiz 16.11.01/16.11.02/16.11.03/16.11.04. Affected by this vulnerability is an unknown function of the file /webtools/control/httpService of the component HTTP Engine. The manipulation ...
Auteur: VulDB

Micro Focus Fortify Software Security Center 17.10/17.20/18.10 privilege escalation

A vulnerability classified as critical has been found in Micro Focus Fortify Software Security Center 17.10/17.20/18.10. Affected is an unknown function. The manipulation with an unknown input leads to a privilege escalation vulnerability. CWE...
Auteur: VulDB

Micro Focus Fortify Software Security Center 17.10/17.20/18.10 privilege escalation

A vulnerability was found in Micro Focus Fortify Software Security Center 17.10/17.20/18.10. It has been rated as critical. This issue affects an unknown function. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Eclipse Mosquitto up to 1.5.4 ACL Bypass privilege escalation

A vulnerability, which was classified as critical, was found in Eclipse Mosquitto up to 1.5.4. Affected is an unknown function of the component ACL Handler. The manipulation with an unknown input leads to a privilege escalation vulnerability...
Auteur: VulDB

PHP Scripts Mall Entrepreneur B2B Script 3.0.6 Account Settings FirstName/LastName Stored cross site scripting

A vulnerability, which was classified as problematic, has been found in PHP Scripts Mall Entrepreneur B2B Script 3.0.6. This issue affects an unknown function of the component Account Settings. The manipulation of the argument FirstName/LastName...
Auteur: VulDB

Fuel CMS 1.4.3 1 Page title/Meta description/Meta keywords cross site scripting

A vulnerability classified as problematic was found in Fuel CMS 1.4.3. This vulnerability affects an unknown function of the file pages/edit/1?lang=english. The manipulation of the argument Page title/Meta description/Meta keywords with an...
Auteur: VulDB

Fuel CMS 1.4.3 Page Creation 1 Header/Body cross site scripting

A vulnerability classified as problematic has been found in Fuel CMS 1.4.3. This affects an unknown function of the file pages/edit/1?lang=english of the component Page Creation. The manipulation of the argument Header/Body as part of a Variable...
Auteur: VulDB

QEMU hw/9pfs/9p.c v9fs_wstat denial of service

A vulnerability was found in QEMU (affected version not known). It has been rated as problematic. Affected by this issue is the function v9fs_wstat of the file hw/9pfs/9p.c. The manipulation with an unknown input leads to a denial of service...
Auteur: VulDB

Oracle Secure Global Desktop 4.4 20080807152602 helpwindow.jsp Parameter cross site scripting

A vulnerability was found in Oracle Secure Global Desktop 4.4 20080807152602. It has been declared as problematic. Affected by this vulnerability is an unknown function of the file helpwindow.jsp. The manipulation as part of a Parameter leads to...
Auteur: VulDB

QEMU hw/9pfs/cofile.c memory corruption

A vulnerability was found in QEMU (version unknown). It has been classified as critical. Affected is an unknown function of the file hw/9pfs/cofile.c. The manipulation with an unknown input leads to a memory corruption vulnerability...
Auteur: VulDB

Abisoft Ticketly up to 1.0 action/addproject.php name/category_id/description Parameter sql injection

A vulnerability, which was classified as critical, was found in Abisoft Ticketly up to 1.0. This affects the function name/category_id/description of the file action/addproject.php. The manipulation as part of a Parameter leads to a sql...
Auteur: VulDB

IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0 Default Credentials weak encryption

A vulnerability classified as critical was found in IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0. Affected by this vulnerability is an unknown function. The manipulation with an unknown input leads to a weak...
Auteur: VulDB

IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0 information disclosure

A vulnerability classified as problematic has been found in IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0. Affected is an unknown function. The manipulation with an unknown input leads to a information disclosure...
Auteur: VulDB

IBM Security Guardium 10/10.5 Default Credentials weak encryption

A vulnerability was found in IBM Security Guardium 10/10.5. It has been declared as critical. This vulnerability affects an unknown function. The manipulation with an unknown input leads to a weak encryption vulnerability (Default Credentials)....
Auteur: VulDB

IBM Security Guardium 10/10.5 Web UI cross site scripting

A vulnerability was found in IBM Security Guardium 10/10.5. It has been classified as problematic. This affects an unknown function of the component Web UI. The manipulation with an unknown input leads to a cross site scripting vulnerability....
Auteur: VulDB

IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0 Web UI cross site scripting

A vulnerability was found in IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0 and classified as problematic. Affected by this issue is an unknown function of the component Web UI. The manipulation with an unknown...
Auteur: VulDB

IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0 weak encryption

A vulnerability has been found in IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0 and classified as critical. Affected by this vulnerability is an unknown function. The manipulation with an unknown input leads to a...
Auteur: VulDB

IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0 Blacklist privilege escalation

A vulnerability, which was classified as critical, was found in IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0. Affected is an unknown function of the component Blacklist. The manipulation with an unknown input...
Auteur: VulDB

IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0 Error Message information disclosure

A vulnerability was found in IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0. It has been rated as problematic. Affected by this issue is an unknown function of the component Error Message Handler. The manipulation ...
Auteur: VulDB

IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0 Session Man-in-the-Middle weak encryption

A vulnerability was found in IBM Security Access Manager Appliance 9.0.1.0/9.0.2.0/9.0.3.0/9.0.4.0/9.0.5.0. It has been declared as critical. Affected by this vulnerability is an unknown function of the component Session Handler. The manipulation...
Auteur: VulDB

Pixar Tractor software up to 2.2 Request Stored cross site scripting

A vulnerability was found in Pixar Tractor software up to 2.2. It has been classified as problematic. This affects an unknown function. The manipulation as part of a Request leads to a cross site scripting vulnerability (Stored). CWE is...
Auteur: VulDB

Zoho ManageEngine ADAudit up to 5.1 Stack-based memory corruption

A vulnerability was found in Zoho ManageEngine ADAudit up to 5.1 and classified as critical. This issue affects an unknown function. The manipulation with an unknown input leads to a memory corruption vulnerability (Stack-based). Using CWE to...
Auteur: VulDB

Grafana up to 4.6.4/5.3.2 directory traversal [CVE-2018-19039]

A vulnerability has been found in Grafana up to 4.6.4/5.3.2 and classified as critical. This vulnerability affects an unknown function. The manipulation with an unknown input leads to a directory traversal vulnerability. The CWE definition for...
Auteur: VulDB

Abisoft Ticketly 1.0 action/add_user.php add_user POST Request privilege escalation

A vulnerability, which was classified as critical, has been found in Abisoft Ticketly 1.0. Affected by this issue is the function add_user of the file action/add_user.php. The manipulation as part of a POST Request leads to a privilege...
Auteur: VulDB

IBM Operational Decision Management 8.5/8.6/8.7/8.8/8.9 XML Data XML External Entity

A vulnerability was found in IBM Operational Decision Management 8.5/8.6/8.7/8.8/8.9. It has been rated as critical. This issue affects an unknown function of the component XML Data Handler. The manipulation with an unknown input leads to a...
Auteur: VulDB
First1734173517361737173817391740174117421743Last

Événements SSI