Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ...Result(s) : 48772

Alerts Feed Alerts

DateNameCategoriesDetail
6.52016-11-04CVE-2016-9187cve Unrestricted file upload vulnerability in the double extension support in the "image" module in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploa...
6.52016-11-04CVE-2016-9186cve Unrestricted file upload vulnerability in the "legacy course files" and "file manager" modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by upl...
42016-11-04CVE-2016-9185cve =6.1.0, and ==7.0.0.
52016-11-04CVE-2016-9184cve In /framework/modules/core/controllers/expHTMLEditorController.php of Exponent CMS 2.4.0, untrusted input is used to construct a table name, and in the selectObject method in my...
52016-11-04CVE-2016-9183cve In /framework/modules/ecommerce/controllers/orderController.php of Exponent CMS 2.4.0, untrusted input is passed into selectObjectsBySql. The method selectObjectsBySql of class ...
52016-11-04CVE-2016-9182cve editor=ckeditor. An anonymous user will be rejected for the former but can access the latter.
52016-11-04CVE-2016-9177cve Directory traversal vulnerability in Spark 2.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.
6.82016-11-04GLSA-201611-03Gentoo LibreOffice, OpenOffice: Multiple vulnerabilities
52016-11-03CVE-2016-6455cve A vulnerability in the Slowpath of StarOS for Cisco ASR 5500 Series routers with Data Processing Card 2 (DPC2) could allow an unauthenticated, remote attacker to cause a subset ...
4.32016-11-03CVE-2016-6454cve A cross-site request forgery (CSRF) vulnerability in the web interface of the Cisco Hosted Collaboration Mediation Fulfillment application could allow an unauthenticated, remote...
4.92016-11-03CVE-2016-6453cve A vulnerability in the web framework code of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary SQL commands on the database...
4.32016-11-03CVE-2016-6451cve Multiple vulnerabilities in the web framework code of the Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to conduct a cross-site scriptin...
6.62016-11-03CVE-2016-6430cve A vulnerability in the command-line interface of the Cisco IP Interoperability and Collaboration System (IPICS) could allow an authenticated, local attacker to elevate the privi...
4.32016-11-03CVE-2016-6429cve A vulnerability in the web framework code of the Cisco IP Interoperability and Collaboration System (IPICS) could allow an unauthenticated, remote attacker to conduct a cross-si...
52016-11-03CVE-2016-9136cve Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context-dependent attackers to obtain sensitive information by using the "crafted JavaScript" ...
52016-11-03CVE-2016-9135cve Exponent CMS 2.3.9 suffers from a SQL injection vulnerability in "/framework/modules/help/controllers/helpController.php" affecting the version parameter. Impact is Information ...
52016-11-03CVE-2016-9134cve Exponent CMS 2.3.9 suffers from a SQL injection vulnerability in "/expPaginator.php" affecting the order parameter. Impact is Information Disclosure.
42016-11-03CVE-2016-9086cve GitLab versions 8.9.x and above contain a critical security flaw in the "import/export project" feature of GitLab. Added in GitLab 8.9, this feature allows a user to export and ...
52016-11-03CVE-2016-7452cve The Pixidou Image Editor in Exponent CMS prior to v2.3.9 patch 2 could be used to upload a malicious file to any folder on the site via a cpi directory traversal.
52016-11-03RHSA-2016:2615RedHat bind security update
Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ...Result(s) : 48772