NotCVE - vendor:"Debian" product:"Debian Linux" version:"

Page 2 of 1846 results (0.012 seconds)

CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0

CVE-2010-2471

https://notcve.org/view.php?id=CVE-2010-2471

Drupal versions 5.x and 6.x has open redirection Drupal versiones 5.x y 6.x, tiene un redireccionamiento abierto • http://www.openwall.com/lists/oss-security/2014/02/12/8 https://access.redhat.com/security/cve/cve-2010-2471 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=592716 https://security-tracker.debian.org/tracker/CVE-2010-2471 https://www.drupal.org/node/731710 https://www.openwall.com/lists/oss-security/2010/06/28/8 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •

CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0

CVE-2011-4900

https://notcve.org/view.php?id=CVE-2011-4900

TYPO3 before 4.5.4 allows Information Disclosure in the backend. TYPO3 versiones anteriores a la versión 4.5.4, permite una divulgación de información en el back-end. • https://security-tracker.debian.org/tracker/CVE-2011-4900 https://typo3.org/security/advisory/typo3-core-sa-2011-001/#Information_Disclosure • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0

CVE-2010-3674

https://notcve.org/view.php?id=CVE-2010-3674

TYPO3 before 4.4.1 allows XSS in the frontend search box. TYPO3 versiones anteriores a la versión 4.4.1, permite un ataque de tipo XSS en el cuadro de búsqueda de la interfaz. • https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=590719 https://security-tracker.debian.org/tracker/CVE-2010-3674 https://typo3.org/security/advisory/typo3-sa-2010-012/#XSS • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.5EPSS: 4%CPEs: 4EXPL: 0

CVE-2013-4412

https://notcve.org/view.php?id=CVE-2013-4412

slim has NULL pointer dereference when using crypt() method from glibc 2.17 slim presenta una desreferencia del puntero NULL cuando es usado el método crypt() de glibc versión 2.17. • http://www.openwall.com/lists/oss-security/2013/10/09/6 http://www.securityfocus.com/bid/62906 https://access.redhat.com/security/cve/cve-2013-4412 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4412 https://exchange.xforce.ibmcloud.com/vulnerabilities/89675 https://security-tracker.debian.org/tracker/CVE-2013-4412 • CWE-476: NULL Pointer Dereference •

CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0

CVE-2013-1934

https://notcve.org/view.php?id=CVE-2013-1934

A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.0rc1 before 1.2.14 allows remote authenticated users to inject arbitrary web script or HTML via a complex value. Una vulnerabilidad de tipo cross-site scripting (XSS) en la página de reporte de la configuración (archivo adm_config_report.php) en MantisBT versiones 1.2.0rc1 anteriores a 1.2.14, permite a usuarios autenticados remotos inyectar script web o HTML arbitrario por medio de un valor complejo. • http://www.debian.org/security/2015/dsa-3120 http://www.openwall.com/lists/oss-security/2013/04/09/1 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-1934 https://mantisbt.org/bugs/view.php?id=15416 https://security-tracker.debian.org/tracker/CVE-2013-1934 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

1 2 3 4 5