• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    公众号
登陆 注册
OStack程序员社区-中国程序员成长平台 门户 漏洞

漏洞

RSS

下级分类:

  • CVE-2022-36954
    CVE漏洞
    CVE-2022-36954
    In Veritas NetBackup OpsCenter, under specific conditions, an authenticated remote attacker may be able to create or modify OpsCenter user accounts. This affects 8.x through 8.3.0.2, 9.x through 9.0.0 ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:847 | 回复:0
  • CVE-2022-36953
    CVE漏洞
    CVE-2022-36953
    In Veritas NetBackup OpsCenter, certain endpoints could allow an unauthenticated remote attacker to gain sensitive information. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1 ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1130 | 回复:0
  • CVE-2022-36952
    CVE漏洞
    CVE-2022-36952
    In Veritas NetBackup OpsCenter, a hard-coded credential exists that could be used to exploit the underlying VxSS subsystem. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1 ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1091 | 回复:0
  • CVE-2022-36951
    CVE漏洞
    CVE-2022-36951
    In Veritas NetBackup OpsCenter, an unauthenticated remote attacker may compromise the host by exploiting an incorrectly patched vulnerability. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9. ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:735 | 回复:0
  • CVE-2022-36950
    CVE漏洞
    CVE-2022-36950
    In Veritas NetBackup OpsCenter, an unauthenticated remote attacker may be able to perform remote command execution through a Java classloader manipulation. This affects 8.x through 8.3.0.2, 9.x throug ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:836 | 回复:0
  • CVE-2022-36949
    CVE漏洞
    CVE-2022-36949
    In Veritas NetBackup OpsCenter, an attacker with local access to a NetBackup OpsCenter server could potentially escalate their privileges. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:735 | 回复:0
  • CVE-2022-36948
    CVE漏洞
    CVE-2022-36948
    In Veritas NetBackup OpsCenter, a DOM XSS attack can occur. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1, and 10.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:807 | 回复:0
  • CVE-2022-35911
    CVE漏洞
    CVE-2022-35911
    On Patlite NH-FB series devices through 1.46, remote attackers can cause a denial of service by omitting the query string.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:955 | 回复:0
  • CVE-2021-42537
    CVE漏洞
    CVE-2021-42537
    VISAM VBASE version 11.6.0.6 processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorre ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:780 | 回复:0
  • CVE-2021-42535
    CVE漏洞
    CVE-2021-42535
    VISAM VBASE version 11.6.0.6 does not neutralize or incorrectly neutralizes user-controllable input before the data is placed in output used as a public-facing webpage.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:942 | 回复:0
  • CVE-2021-38417
    CVE漏洞
    CVE-2021-38417
    VISAM VBASE version 11.6.0.6 is vulnerable to improper access control via the web-remote endpoint, which may allow an unauthenticated user viewing access to folders and files in the directory listing.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1143 | 回复:0
  • CVE-2021-38410
    CVE漏洞
    CVE-2021-38410
    AVEVA Software Platform Common Services (PCS) Portal versions 4.5.2, 4.5.1, 4.5.0, and 4.4.6 are vulnerable to DLL hijacking through an uncontrolled search path element, which may allow an attacker co ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1658 | 回复:0
  • CVE-2020-6998
    CVE漏洞
    CVE-2020-6998
    The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creati ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1182 | 回复:0
  • CVE-2022-36946
    CVE漏洞
    CVE-2022-36946
    nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one- ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1345 | 回复:0
  • CVE-2022-34121
    CVE漏洞
    CVE-2022-34121
    Cuppa CMS v1.0 was discovered to contain a local file inclusion (LFI) vulnerability via the component /templates/default/html/windows/right.php.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:891 | 回复:0
  • CVE-2022-34120
    CVE漏洞
    CVE-2022-34120
    Barangay Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the module editing function at /pages/activity/activity.php.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1031 | 回复:0
  • CVE-2022-35672
    CVE漏洞
    CVE-2022-35672
    Adobe Acrobat Reader version 22.001.20085 (and earlier), 20.005.30314 (and earlier) and 17.012.30205 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, whic ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:863 | 回复:0
  • CVE-2022-35669
    CVE漏洞
    CVE-2022-35669
    Acrobat Reader versions 22.001.20142 (and earlier), 20.005.30334 (and earlier) and 20.005.30334 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensi ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1027 | 回复:0
  • CVE-2022-33943
    CVE漏洞
    CVE-2022-33943
    Authenticated (contributor or higher user role) Cross-Site Scripting (XSS) vulnerability in Nico Amarilla's BxSlider WP plugin = 2.0.0 at WordPress.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1033 | 回复:0
  • CVE-2022-36922
    CVE漏洞
    CVE-2022-36922
    Jenkins Lucene-Search Plugin 370.v62a5f618cd3a and earlier does not escape the search query parameter displayed on the 'search' result page, resulting in a reflected cross-site scripting (XSS) ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:907 | 回复:0
  • CVE-2022-36921
    CVE漏洞
    CVE-2022-36921
    A missing permission check in Jenkins Coverity Plugin 1.11.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1400 | 回复:0
  • CVE-2022-36920
    CVE漏洞
    CVE-2022-36920
    A cross-site request forgery (CSRF) vulnerability in Jenkins Coverity Plugin 1.11.4 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtain ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:941 | 回复:0
  • CVE-2022-36919
    CVE漏洞
    CVE-2022-36919
    A missing permission check in Jenkins Coverity Plugin 1.11.4 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:846 | 回复:0
  • CVE-2022-36918
    CVE漏洞
    CVE-2022-36918
    Jenkins Buckminster Plugin 1.1.1 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:889 | 回复:0
  • CVE-2022-36917
    CVE漏洞
    CVE-2022-36917
    A missing permission check in Jenkins Google Cloud Backup Plugin 0.6 and earlier allows attackers with Overall/Read permission to request a manual backup.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:922 | 回复:0
  • CVE-2022-36916
    CVE漏洞
    CVE-2022-36916
    A cross-site request forgery (CSRF) vulnerability in Jenkins Google Cloud Backup Plugin 0.6 and earlier allows attackers to request a manual backup.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:972 | 回复:0
  • CVE-2022-36915
    CVE漏洞
    CVE-2022-36915
    Jenkins Android Signing Plugin 2.2.5 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Item/Read permission but without Item/Workspace o ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:1131 | 回复:0
  • CVE-2022-36914
    CVE漏洞
    CVE-2022-36914
    Jenkins Files Found Trigger Plugin 1.5 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existe ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:1260 | 回复:0
  • CVE-2022-36913
    CVE漏洞
    CVE-2022-36913
    Jenkins Openstack Heat Plugin 1.5 and earlier does not perform permission checks in methods implementing form validation, allowing attackers with Overall/Read permission to check for the existence of ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:1473 | 回复:0
  • CVE-2022-36912
    CVE漏洞
    CVE-2022-36912
    A missing permission check in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:1173 | 回复:0
  • CVE-2022-36911
    CVE漏洞
    CVE-2022-36911
    A cross-site request forgery (CSRF) vulnerability in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers to connect to an attacker-specified URL.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:1030 | 回复:0
  • CVE-2022-36910
    CVE漏洞
    CVE-2022-36910
    Jenkins Lucene-Search Plugin 370.v62a5f618cd3a and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to reindex the database and to ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:739 | 回复:0
  • CVE-2022-36909
    CVE漏洞
    CVE-2022-36909
    A missing permission check in Jenkins OpenShift Deployer Plugin 1.2.0 and earlier allows attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jen ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:711 | 回复:0
  • CVE-2022-36908
    CVE漏洞
    CVE-2022-36908
    A cross-site request forgery (CSRF) vulnerability in Jenkins OpenShift Deployer Plugin 1.2.0 and earlier allows attackers to check for the existence of an attacker-specified file path on the Jenkins c ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:1044 | 回复:0
  • CVE-2022-36907
    CVE漏洞
    CVE-2022-36907
    A missing permission check in Jenkins OpenShift Deployer Plugin 1.2.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified usernam ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:833 | 回复:0
  • CVE-2022-36906
    CVE漏洞
    CVE-2022-36906
    A cross-site request forgery (CSRF) vulnerability in Jenkins OpenShift Deployer Plugin 1.2.0 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified username and ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:710 | 回复:0
  • CVE-2022-36905
    CVE漏洞
    CVE-2022-36905
    Jenkins Maven Metadata Plugin for Jenkins CI server Plugin 2.2 and earlier does not perform URL validation for the Repository Base URL of List maven artifact versions parameters, resulting in a stored ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:1189 | 回复:0
  • CVE-2022-36904
    CVE漏洞
    CVE-2022-36904
    Jenkins Repository Connector Plugin 2.2.0 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the exi ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:712 | 回复:0
  • CVE-2022-36903
    CVE漏洞
    CVE-2022-36903
    A missing permission check in Jenkins Repository Connector Plugin 2.2.0 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:719 | 回复:0
  • CVE-2022-36902
    CVE漏洞
    CVE-2022-36902
    Jenkins Dynamic Extended Choice Parameter Plugin 1.0.1 and earlier does not escape several fields of Moded Extended Choice parameters, resulting in a stored cross-site scripting (XSS) vulnerability ex ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:19 | 阅读:778 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap