Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27123 of 28407

CVE-2017-10839

Posted by Cyberthreat Blog | Aug 28, 2017 | CVE Notifications |

SQL injection vulnerability in the SEO Panel prior to version 3.11.0 allows authenticated attackers to execute arbitrary SQL commands via unspecified vectors.

CVE-2017-1489

Posted by Cyberthreat Blog | Aug 28, 2017 | CVE Notifications |

IBM Security Access Manager 6.1, 7.0, 8.0, and 9.0 e-community configurations may be affected by a redirect vulnerability. ECSSO Master Authentication can redirect to a server not participating in an e-community domain. IBM...

CVE-2017-3757

Posted by Cyberthreat Blog | Aug 28, 2017 | CVE Notifications |

An unquoted service path vulnerability was identified in the driver for the ElanTech Touchpad, various versions, used on some Lenovo brand notebooks (not ThinkPads). This could allow an attacker with local privileges to execute...

CVE-2017-2255

Posted by Cyberthreat Blog | Aug 28, 2017 | CVE Notifications |

Cross-site scripting vulnerability in Cybozu Garoon 3.7.0 to 4.2.5 allows an attacker to inject arbitrary web script or HTML via “Rich text” funtion of the application “Space”.

CVE-2017-2257

Posted by Cyberthreat Blog | Aug 28, 2017 | CVE Notifications |

Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.5 allows an attacker to inject arbitrary web script or HTML via mail function.

Author: Cyberthreat Blog

CVE-2017-10839

CVE-2017-1489

CVE-2017-3757

CVE-2017-2255

CVE-2017-2257