[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248268

 
 

909

 
 

195051

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26604 Download | Alert*

The host is installed with Apache Tomcat 7.x through 7.0.105 and is prone to a denial of service vulnerability. A flaw is present in the application, which does not properly handle issues in partial HTTP requests. Successful exploitation allows attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris.

The host is installed with PHP versions 7.3.x below 7.3.31, 7.4.x below 7.4.24, or 8.0.x below 8.0.11 sand is prone to a path traversal vulnerability. A flaw is present in the application, which fails to properly handle issue in the ZipArchive::extractTo function. Successful exploitation could allow attackers to trick users into writing a file outside target directory when extracting a ZIP file, t ...

The host is installed with Couchbase Server 2.x before 7.1.5, or 7.2.0 and is prone to a path traversal vulnerability. A flaw is present in the application, which fails to handle Couchbase Server admin UI's URL. Successful exploitation could allow attackers to traverse the filesystem and display files that Couchbase has access to.

The host is installed with Couchbase Server 7.2.0 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue while adding a pre-7.0 node to a 7.2 cluster. Successful exploitation could allow attackers to cause a private key leak in debug.log.

A remote code execution vulnerability exists in ASP.NET Core that could lead to arbitrary code execution. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. To exploit the vulnerability, A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to the ASP.NET Core application. The upda ...

A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an ASP.NET Core web application. The vulnerability can be exploited remotely, without authentication. To exploit the vulnerability, A remote unauthenticated attacker could exploit this vulnerability by issuing ...

A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an ASP.NET Core web application. The vulnerability can be exploited remotely, without authentication. A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to ...

A spoofing vulnerability exists in ASP.NET Core that could lead to an open redirect. An attacker who successfully exploited the vulnerability could redirect a targeted user to a malicious website. To exploit the vulnerability, an attacker could send a link that has a specially crafted URL, and convince the user to click the link. The update addresses the vulnerability by correcting how ASP.NET Cor ...

An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests. An attacker who successfully exploited this vulnerability could perform content injection attacks and run script in the security context of the logged-on user. To exploit the vulnerability, an attacker could send a specially crafte ...

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure. An attacker who successfully exploited this vulnerability could potentially modify files and folders that are unpackaged on a system. To exploit this vulnerability, an attacker would need to log on to the affected system and tamper ...


Pages:      Start    1290    1291    1292    1293    1294    1295    1296    1297    1298    1299    1300    1301    1302    1303    ..   2660

© SecPod Technologies