CVE-2018-19754 – Tarantella Enterprise Security Bypass
https://notcve.org/view.php?id=CVE-2018-19754
Tarantella Enterprise before 3.11 allows bypassing Access Control. Tarantella Enterprise en versiones anteriores a la 3.11 permite la omisión de los controles de acceso. Tarantella Enterprise versions prior to 3.11 suffer from an access control bypass vulnerability. • http://packetstormsecurity.com/files/150542/Tarantella-Enterprise-Security-Bypass.html http://seclists.org/fulldisclosure/2018/Nov/67 • CWE-862: Missing Authorization •
CVE-2018-19753 – Tarantella Enterprise Directory Traversal
https://notcve.org/view.php?id=CVE-2018-19753
Tarantella Enterprise before 3.11 allows Directory Traversal. Tarantella Enterprise en versiones anteriores a la 3.11 permite el salto de directorio. Tarantella Enterprise versions prior to 3.11 suffer from a directory traversal vulnerability. • http://packetstormsecurity.com/files/150541/Tarantella-Enterprise-Directory-Traversal.html http://seclists.org/fulldisclosure/2018/Nov/66 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •