Backdoor.Win32.Ncx.b malware suffers from a code execution vulnerability.
Backdoor.Win32.Ncx.b malware suffers from a code execution vulnerability.
IBM Sterling B2B Integrator suffers from a cross site scripting vulnerability. Versions affected include 5.2.0.0 through 5.2.6.5_3, 6.0.0.0 through 6.0.3.4, and 6.1.0.0 through 6.1.0.2.
PHP Event Calendar Lite Edition suffers from a persistent cross site scripting vulnerability.
Pentaho Business Analytics and Pentaho Business Server versions 9.1 and below suffer from an authentication bypass vulnerability related to Spring APIs.
Backdoor.Win32.Jokerdoor malware suffers from a buffer overflow vulnerability.
Pentaho implements a series of web services using the SOAP protocol to allow scripting interaction with the backend server. HAWSEC identified that the services userRoleListService and ServiceAction exposed through the…
HealthForYou version 1.11.1 and HealthCoach version 2.9.2 are missing a server-side password policy. When creating an account or changing your password the mobile and web application both check the password…
Pentaho allows users to create and manage Data Sources. Users can select a Data Source when creating a Dashboard through the Pentaho User Console. When a Data Source is added,…
Pentaho allows users to create and manage Data Sources. Users can select a Data Source when creating a Dashboard through the Pentaho User Console. When a Data Source is added,…
Opencart 3 Extension TMD Vendor System suffers from a remote blind SQL injection vulnerability.