dimanche 17 novembre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Oracle MICROS Retail-J 13.0.0/12.1.2 Back Office unknown vulnerability

A vulnerability was found in Oracle MICROS Retail-J 13.0.0/12.1.2. It has been rated as critical. This issue affects an unknown function of the component Back Office. Impacted is confidentiality, and integrity. The weakness was released ...
Auteur: VulDB

Oracle Retail Xstore Point of Service up to 17.0.2 Xenvironment unknown vulnerability

A vulnerability was found in Oracle Retail Xstore Point of Service up to 17.0.2. It has been declared as critical. This vulnerability affects an unknown function of the component Xenvironment. As an impact it is known to affect confidentiality,...
Auteur: VulDB

Oracle Retail Xstore Point of Service 15.0.2/16.0.4/17.0.2 Xenvironment unknown vulnerability

A vulnerability was found in Oracle Retail Xstore Point of Service 15.0.2/16.0.4/17.0.2. It has been classified as critical. This affects an unknown function of the component Xenvironment. This is going to have an impact on confidentiality,...
Auteur: VulDB

Oracle Retail Open Commerce Platform 6.0/6.0.1/5.3 Integrations unknown vulnerability

A vulnerability was found in Oracle Retail Open Commerce Platform 6.0/6.0.1/5.3 and classified as critical. Affected by this issue is an unknown function of the component Integrations. Impacted is confidentiality, and integrity. The weakness was...
Auteur: VulDB

Oracle Retail Returns Management 14.1 Apache Batik unknown vulnerability

A vulnerability has been found in Oracle Retail Returns Management 14.1 and classified as critical. Affected by this vulnerability is an unknown function of the component Apache Batik. As an impact it is known to affect confidentiality,...
Auteur: VulDB

CentOS Web Panel 0.9.8.480 CentOS-WebPanel.com file_editor cross site scripting

A vulnerability has been found in CentOS Web Panel 0.9.8.480 and classified as problematic. This vulnerability affects an unknown function of the file CentOS-WebPanel.com. The manipulation of the argument file_editor as part of a Parameter leads...
Auteur: VulDB

CentOS Web Panel 0.9.8.480 admin/index.php file Local File Inclusion

A vulnerability, which was classified as critical, was found in CentOS Web Panel 0.9.8.480. This affects an unknown function of the file admin/index.php. The manipulation of the argument file with the input value /../ leads to a directory...
Auteur: VulDB

CentOS Web Panel 0.9.8.480 CentOS-WebPanel.com command injection

A vulnerability, which was classified as critical, has been found in CentOS Web Panel 0.9.8.480. Affected by this issue is an unknown function of the file CentOS-WebPanel.com. The manipulation of the argument...
Auteur: VulDB

Merlin.PHP 0.6.6 on AsusWRT-Merlin exec.php Code Execution

A vulnerability classified as critical was found in Merlin.PHP 0.6.6 on AsusWRT-Merlin. Affected by this vulnerability is an unknown function of the file exec.php. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Merlin.PHP 0.6.6 on AsusWRT-Merlin api.php Code Execution

A vulnerability classified as critical has been found in Merlin.PHP 0.6.6 on AsusWRT-Merlin. Affected is an unknown function of the file /6/api.php?function=command&class=remote&Cc='ls'. The manipulation with an unknown input leads to a...
Auteur: VulDB

Qiku 360 Phone N6 Pro 1801-A01 Kernel Module /dev/block/mmcblk0rpmb denial of service

A vulnerability was found in Qiku 360 Phone N6 Pro 1801-A01. It has been rated as problematic. This issue affects an unknown function of the file /dev/block/mmcblk0rpmb of the component Kernel Module. The manipulation with an unknown input leads...
Auteur: VulDB

DESHANG DSCMS 1.1 add.html cross site request forgery

A vulnerability was found in DESHANG DSCMS 1.1. It has been declared as problematic. This vulnerability affects an unknown function of the file public/index.php/admin/admin/add.html. The manipulation with an unknown input leads to a cross site...
Auteur: VulDB

emlog 6.0.0 user.php cross site request forgery

A vulnerability was found in emlog 6.0.0. It has been classified as problematic. This affects an unknown function of the file admin/user.php?action=new. The manipulation with an unknown input leads to a cross site request forgery vulnerability....
Auteur: VulDB

lemon 1.9.0 CdnController.java copyMultipartFileToFile spaceName privilege escalation

A vulnerability was found in lemon 1.9.0 and classified as critical. Affected by this issue is the function copyMultipartFileToFile of the file com/mossle/cdn/CdnController.java. The manipulation of the argument spaceName as part of a Parameter...
Auteur: VulDB

elfutils up to 0.174 libdwfl dwfl_segment_report_module.c denial of service

A vulnerability has been found in elfutils up to 0.174 and classified as problematic. Affected by this vulnerability is an unknown function of the file dwfl_segment_report_module.c of the component libdwfl. The manipulation with an unknown input...
Auteur: VulDB

GNU binutils 2.31 libbfd reloc.c _bfd_clear_contents denial of service

A vulnerability, which was classified as problematic, was found in GNU binutils 2.31. Affected is an unknown function of the file reloc.c of the component libbfd. The manipulation of the argument _bfd_clear_contents with an unknown input leads...
Auteur: VulDB

MetInfo 6.1.2 /admin/index.php bigclass cross site scripting

A vulnerability, which was classified as problematic, has been found in MetInfo 6.1.2. This issue affects an unknown function of the file /admin/index.php. The manipulation of the argument bigclass as part of a Parameter leads to a cross site...
Auteur: VulDB

nc-cms up to 2017-03-10 index.php name cross site scripting

A vulnerability was found in nc-cms up to 2017-03-10. It has been declared as problematic. Affected by this vulnerability is an unknown function of the file index.php?action=edit_html. The manipulation of the argument name as part of a IMG...
Auteur: VulDB

Camaleo CMS 2.4 User Settings upload Profile Image cross site scripting

A vulnerability was found in Camaleo CMS 2.4. It has been classified as problematic. Affected is an unknown function of the file /admin/media/upload?actions=false of the component User Settings. The manipulation as part of a Profile Image leads...
Auteur: VulDB

LUYA CMS 1.0.12 create-page cross site scripting

A vulnerability was found in LUYA CMS 1.0.12 and classified as problematic. This issue affects an unknown function of the file /admin/api-cms-nav/create-page. The manipulation with an unknown input leads to a cross site scripting vulnerability...
Auteur: VulDB

Artifex Ghostscript Sandbox Protection Mechanism Stack-based privilege escalation

A vulnerability has been found in Artifex Ghostscript (the affected version is unknown) and classified as critical. This vulnerability affects an unknown function of the component Sandbox Protection Mechanism. The manipulation with an unknown...
Auteur: VulDB

NoMachine up to 5.3.26 wintab32.dll privilege escalation

A vulnerability, which was classified as problematic, was found in NoMachine up to 5.3.26. This affects an unknown function in the library wintab32.dll. The manipulation with an unknown input leads to a privilege escalation vulnerability. CWE is...
Auteur: VulDB

Artifex Ghostscript up to 9.25 Sandbox Protection Mechanism privilege escalation

A vulnerability, which was classified as critical, has been found in Artifex Ghostscript up to 9.25. Affected by this issue is an unknown function of the component Sandbox Protection Mechanism. The manipulation with an unknown input leads to a...
Auteur: VulDB

Teltonika RUT9XX up to 00.04 Serial Interface privilege escalation

A vulnerability classified as critical was found in Teltonika RUT9XX up to 00.04. Affected by this vulnerability is an unknown function of the component Serial Interface. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Teltonika RUT9XX up to 00.05.01.0 hotspotlogin.cgi cross site scripting

A vulnerability classified as problematic has been found in Teltonika RUT9XX up to 00.05.01.0. Affected is an unknown function of the file hotspotlogin.cgi. The manipulation with an unknown input leads to a cross site scripting vulnerability....
Auteur: VulDB
First753754755756757758759760761762Last

Événements SSI

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS