CVE-2020-13422 (openiam)
OpenIAM before 4.2.0.3 does not verify if a user has permissions to perform /webconsole/rest/api/* administrative actions. Devamını Oku
Devamını oku
Day: Nisan 6, 2021
CVE-2020-13420 (openiam)
OpenIAM before 4.2.0.3 allows remote attackers to execute arbitrary code via Groovy Script. Devamını Oku
CVE-2020-13422
OpenIAM before 4.2.0.3 does not verify if a user has permissions to perform /webconsole/rest/api/* administrative actions. Devamını Oku
CVE-2020-13421
OpenIAM before 4.2.0.3 has Incorrect Access Control for the Create User, Modify User Permissions, and Password Reset actions. Devamını Oku
CVE-2020-13420
OpenIAM before 4.2.0.3 allows remote attackers to execute arbitrary code via Groovy Script. Devamını Oku
CVE-2020-13419 (openiam)
OpenIAM before 4.2.0.3 allows Directory Traversal in the Batch task. Devamını Oku
CVE-2020-13418 (openiam)
OpenIAM before 4.2.0.3 allows XSS in the Add New User feature. Devamını Oku
CVE-2020-13419
OpenIAM before 4.2.0.3 allows Directory Traversal in the Batch task. Devamını Oku
CVE-2020-13418
OpenIAM before 4.2.0.3 allows XSS in the Add New User feature. Devamını Oku
CVE-2020-36309
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty allows unsafe characters in an argument when using the API to mutate a URI, or a request or…