[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

253650

 
 

909

 
 

197367

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 31491 Download | Alert*

The host is installed with IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 and is prone to multiple SQL injection vulnerabilities. The flaws are present in the application, which fails to handle specially-crafted SQL statements. Successful exploitation allows remote attackers to execute arbitrary SQL commands.

The host is installed with SAP BusinessObjects Business Intelligence Platform and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle crafted InfoObject queries. Successful exploitation could allow remote attackers to expose the CMS InfoObjects database.

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing a malicious XEL file containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external entity declaration. To exploit the vulnerability, an attacker must entice a user on an affected SSMS server to open a s ...

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing a malicious XMLA file containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external entity declaration. To exploit the vulnerability, an attacker must entice a user on an affected SSMS server to open a ...

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing malicious XML content containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external entity declaration. To exploit the vulnerability, an attacker must entice a user on an affected SSMS server to open a ...

The host is installed with NetMechanica NetDecision before 4.6.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle an invalid version number. Successful exploitation could allow attackers to obtain the source code of NetDecision script files with a .nd extension.

The host is installed with NetMechanica NetDecision before 4.6.1 and is prone an information disclosure vulnerability. A flaw is present in the application, which fails to handle a request with a trailing "?". Successful exploitation could allow attackers to obtain the installation path.

The host is installed with Symantec Altiris WISE Package Studio before 8.0MR1 and is prone to multiple sql injection vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation could allow remote attackers to execute arbitrary SQL commands.

The host is installed with Team Foundation 2018 Server Update 1.1 or Update 3 and is prone to a cross-site scripting vulnerability. The application fails to properly sanitize user provided input. On successful exploitation, an attacker could send a specially crafted payload to the Team Foundation Server, which will get executed in the context of the user every time a user visits the compromised pa ...

An information disclosure vulnerability exists in Lync 2013. An attacker who exploited it could read arbitrary files on the victim's machine. To exploit the vulnerability, an attacker needs to instantiate a conference and modify the meeting link with malicious content and send the link to a victim. The update addresses the vulnerability by changing how the URL is being resolved.


Pages:      Start    3067    3068    3069    3070    3071    3072    3073    3074    3075    3076    3077    3078    3079    3080    ..   3149

© SecPod Technologies