Güncel Güvenlik Açıkları

Redmine before 4.0.7 and 4.1.x before 4.1.1 has stored XSS via textile inline links. Devamını Oku

Redmine before 4.0.7 and 4.1.x before 4.1.1 allows attackers to discover the subject of a non-visible issue by performing a CSV export and reading time entries. Devamını Oku

WSO2 Management Console through 5.10 allows XSS via the carbon/admin/login.jsp msgId parameter. Devamını Oku

WSO2 Management Console through 5.10 allows XSS via the carbon/admin/login.jsp msgId parameter. Devamını Oku

Buffer overflow vulnerability in Core FTP Server v2 Build 697, via a crafted username. Devamını Oku

Buffer overflow vulnerability in Core FTP Server v1.2 Build 583, via a crafted username. Devamını Oku

IBM Edge 4.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 189441. Devamını Oku

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 192914 Devamını Oku

HNAP1/control/SetMasterWLanSettings.php in D-Link D-Link Router DIR-846 DIR-846 A1_100.26 allows remote attackers to execute arbitrary commands via shell metacharacters in the ssid0 or ssid1 parameter. Devamını Oku

Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module. Devamını Oku

Buffer overflow in Core FTP LE v2.2 allows local attackers to cause a denial or service (crash) via a long string in the Setup->Users->Username editbox. Devamını Oku

Directory traversal in coreframe/app/template/admin/index.php in WUZHI CMS 4.1.0 allows attackers to list files in arbitrary directories via the dir parameter. Devamını Oku