samedi 18 janvier 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Serpico 1.3.0 admin/add_user/UID author cross site scripting

A vulnerability has been found in Serpico 1.3.0 and classified as problematic. Affected by this vulnerability is an unknown code block of the file admin/add_user/UID. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

Serpico 1.3.0 Password Change privilege escalation

A vulnerability, which was classified as critical, was found in Serpico 1.3.0. Affected is an unknown code of the component Password Change Handler. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

Serpico 1.3.0 admin/list_user type cross site scripting

A vulnerability, which was classified as problematic, has been found in Serpico 1.3.0. This issue affects an unknown part of the file admin/list_user. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

Serpico 1.3.0 admin/list_user auth_type cross site scripting

A vulnerability classified as problematic was found in Serpico 1.3.0. This vulnerability affects some unknown functionality of the file admin/list_user. There is no information about possible countermeasures known. It may be suggested to replace...
Auteur: VulDB

Serpico 1.3.0 cross site request forgery [CVE-2019-19854]

A vulnerability classified as problematic has been found in Serpico 1.3.0. This affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative...
Auteur: VulDB

OSIsoft PI Vision up to 2018 Access Control information disclosure

A vulnerability was found in OSIsoft PI Vision up to 2018. It has been declared as problematic. Affected by this vulnerability is some unknown processing of the component Access Control. Upgrading to version 2019 eliminates this vulnerability.
Auteur: VulDB

OSIsoft PI Vision 2017 R2/2017 R2 SP1 cross site scripting [CVE-2019-18273]

A vulnerability was found in OSIsoft PI Vision 2017 R2/2017 R2 SP1. It has been classified as problematic. Affected is an unknown code block. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

OSIsoft PI Vision up to 2018 Administration Site cross site request forgery

A vulnerability was found in OSIsoft PI Vision up to 2018 and classified as problematic. This issue affects an unknown code of the component Administration Site. Upgrading to version 2019 eliminates this vulnerability.
Auteur: VulDB

Adobe Experience Manager up to 6.5 Expression Language Injection information disclosure

A vulnerability, which was classified as problematic, was found in Adobe Experience Manager up to 6.5 (Content Management System). This affects some unknown functionality of the component Expression Language Handler. Applying a patch is able to...
Auteur: VulDB

Adobe Experience Manager up to 6.5 User Interface Injection information disclosure

A vulnerability, which was classified as problematic, has been found in Adobe Experience Manager up to 6.5 (Content Management System). Affected by this issue is an unknown functionality of the component User Interface. Applying a patch is able...
Auteur: VulDB

Adobe Experience Manager up to 6.5 Reflected cross site scripting

A vulnerability classified as problematic was found in Adobe Experience Manager up to 6.5 (Content Management System). Affected by this vulnerability is an unknown function. Applying a patch is able to eliminate this problem.
Auteur: VulDB

Adobe Experience Manager up to 6.5 Reflected cross site scripting

A vulnerability classified as problematic has been found in Adobe Experience Manager up to 6.5 (Content Management System). Affected is some unknown processing. Applying a patch is able to eliminate this problem.
Auteur: VulDB

OSIsoft PI Vision 2017 R2/2017 R2 SP1/2019 Log Password information disclosure

A vulnerability has been found in OSIsoft PI Vision 2017 R2/2017 R2 SP1/2019 and classified as problematic. This vulnerability affects an unknown part of the component Log Handler. There is no information about possible countermeasures known. It...
Auteur: VulDB

ClamAV Antivirus up to 0.101.4/0.102.0 MIME Parser denial of service

A vulnerability was found in ClamAV Antivirus up to 0.101.4/0.102.0. It has been rated as problematic. This issue affects an unknown code block of the component MIME Parser. There is no information about possible countermeasures known. It may be...
Auteur: VulDB

LearnDash LMS Plugin up to 3.1.1 on WordPress Search cross site scripting

A vulnerability classified as problematic was found in LearnDash LMS Plugin up to 3.1.1 on WordPress. This vulnerability affects an unknown part of the component Search. Upgrading to version 3.1.2 eliminates this vulnerability.
Auteur: VulDB

Bitbucket Server/Data Center up to 6.9.0 Edit-File Request Remote Code Execution

A vulnerability was found in Bitbucket Server and Data Center up to 6.9.0. It has been declared as critical. This vulnerability affects an unknown code of the component Edit-File Request Handler. Upgrading to version 5.16.11, 6.0.11, 6.1.9,...
Auteur: VulDB

Bitbucket Server/Data Center up to 6.9.0 Input Field Remote Code Execution

A vulnerability was found in Bitbucket Server and Data Center up to 6.9.0. It has been classified as critical. This affects an unknown part of the component Input Field Handler. Upgrading to version 5.16.11, 6.0.11, 6.1.9, 6.2.7, 6.3.6, 6.4.4,...
Auteur: VulDB

Oracle Secure Global Desktop 5.4/5.5 information disclosure [CVE-2019-1547]

A vulnerability, which was classified as critical, was found in Oracle Secure Global Desktop 5.4/5.5 (Connectivity Software). Affected is an unknown function. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle Secure Global Desktop 5.4/5.5 Web Server unknown vulnerability

A vulnerability, which was classified as critical, has been found in Oracle Secure Global Desktop 5.4/5.5 (Connectivity Software). This issue affects some unknown processing of the component Web Server. Upgrading eliminates this vulnerability. A...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1 information disclosure

A vulnerability classified as critical was found in Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1 (Virtualization Software). This vulnerability affects an unknown code block. Upgrading eliminates this vulnerability. A possible mitigation has...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1 information disclosure

A vulnerability classified as critical has been found in Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1 (Virtualization Software). This affects an unknown code. Upgrading eliminates this vulnerability. A possible mitigation has been published...
Auteur: VulDB

Oracle Secure Global Desktop 5.4/5.5 unknown vulnerability [CVE-2019-17091]

A vulnerability was found in Oracle Secure Global Desktop 5.4/5.5. It has been rated as critical. Upgrading eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1 unknown vulnerability

A vulnerability was found in Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1. It has been declared as critical. Upgrading eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1 denial of service

A vulnerability was found in Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1 (Virtualization Software). It has been classified as critical. Affected is an unknown functionality. Upgrading eliminates this vulnerability. A possible mitigation has...
Auteur: VulDB

Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1 information disclosure

A vulnerability was found in Oracle VM VirtualBox up to 5.2.35/6.0.15/6.1.1 (Virtualization Software) and classified as critical. This issue affects an unknown function. Upgrading eliminates this vulnerability. A possible mitigation has been...
Auteur: VulDB
12345678910Last

Événements SSI

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS