Download
| Alert*
oval:org.secpod.oval:def:49033
The host is installed with Adobe Connect 9.6.2 or earlier and is prone to a UI Redress (or Clickjacking) vulnerability. A flaw is present in the application, which fails to properly handle crafted data. Successful exploitation allows remote attackers to connect to hosts and ports on the target serve ... oval:org.secpod.oval:def:49023 Adobe connect is installed oval:org.secpod.oval:def:49034 The host is installed with Adobe Connect 9.6.2 or earlier and is prone to a reflected cross-site scripting vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to view potentially sensitive information on the target system. oval:org.secpod.oval:def:49031 The host is installed with Adobe Connect 9.6.1 or earlier and is prone to a clickjacking vulnerability. A flaw is present in the application, which fails to properly handle crafted data. Successful exploitation allows remote users to conduct clickjacking attack. oval:org.secpod.oval:def:49042 The host is installed with Adobe Connect before 9.4 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle the web app. Successful exploitation remote attackers to inject arbitrary web script or HTML via the query parameter. oval:org.secpod.oval:def:49032 The host is installed with Adobe Connect 9.6.2 or earlier and is prone to a server-side request forgery vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to bypass network access controls. oval:org.secpod.oval:def:49040 The host is installed with Adobe Connect 9.5.2 or earlier and is prone to a cross-site request forgery vulnerability. A flaw is present in the application, which fails to handle the crafted HTML page. Successful exploitation allows remote attackers to hijack the authentication of unspecified victims ... oval:org.secpod.oval:def:49030 The host is installed with Adobe Connect 9.6.1 or earlier and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle the user input. Successful exploitation allows attackers to conduct a reflected cross-site scripting attack. oval:org.secpod.oval:def:49041 The host is installed with Adobe connect before 9.4 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle the web app. Successful exploitation allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. oval:org.secpod.oval:def:49028 The host is installed with Adobe connect 9.7 or earlier and is prone to an unrestricted SWF file upload vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to view potentially sensitive information on the target system. oval:org.secpod.oval:def:49039 The host is installed with Adobe Connect 9.5.2 or earlier and is prone to an input validation vulnerability. A flaw is present in the application, which fails to handle the crafted URL. Successful exploitation allows attackers to cause an unspecified impact. oval:org.secpod.oval:def:49029 The host is installed with Adobe Connect 9.6.1 or earlier and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to conduct cross-site scripting attacks. oval:org.secpod.oval:def:49026 The host is installed with Adobe Connect 9.7.5 or earlier and is prone to an insecure library loading vulnerability. A flaw is present in the application, which fails to handle the DLL files. Successful exploitation could lead to privilege escalation. oval:org.secpod.oval:def:49037 The host is installed with Adobe Connect 9.5.6 or earlier and is prone to authentication bypass vulnerability. A flaw is present in the application, which fails to handle events registration module. Successful exploitation could allow attackers to conduct cross-site scripting attacks. oval:org.secpod.oval:def:49027 The host is installed with Adobe Connect 9.7 or earlier and is prone to OS command injection vulnerability. A flaw is present in the application, which fails to handle the URI handler. Successful exploitation could lead to arbitrary file deletion. oval:org.secpod.oval:def:49038 The host is installed with Adobe Connect 9.5.2 or earlier and is prone to a content spoofing vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to cause information presented in the user interface to be misrepresented. oval:org.secpod.oval:def:49024 The host is installed with Adobe Connect 9.7.5 or earlier and is prone to authentication bypass vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to bypass authentication and view potentially sensitive information on the ... oval:org.secpod.oval:def:49035 The host is installed with Adobe Connect 9.6.2 or earlier and is prone to a reflected cross-site scripting vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to view potentially sensitive information on the target system. oval:org.secpod.oval:def:49025 The host is installed with Adobe Connect 9.7.5 or earlier and is prone to authentication bypass vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to hijack the target user's session. oval:org.secpod.oval:def:49036 The host is installed with Adobe Connect 9.6.2 or earlier and is prone to a reflected cross-site scripting vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to view potentially sensitive information on the target system. |