Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27151 of 28220

CVE-2017-12655

Posted by Cyberthreat Blog | Aug 7, 2017 | CVE Notifications |

Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the query parameter to log.php in a dailylog action.

CVE-2016-3113

Posted by Cyberthreat Blog | Aug 7, 2017 | CVE Notifications |

Cross-site scripting (XSS) vulnerability in ovirt-engine allows remote attackers to inject arbitrary web script or HTML.

CVE-2016-6220

Posted by Cyberthreat Blog | Aug 7, 2017 | CVE Notifications |

The default error pages in Trend Micro Control Manager SP3 6.0 reveals the stack trace, which allows local users to have unspecified impact via unknown vectors.

CVE-2017-12637

Posted by Cyberthreat Blog | Aug 7, 2017 | CVE Notifications |

Directory traversal vulnerability in scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS in SAP NetWeaver Application Server Java 7.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the query string, as...

CVE-2016-7976

Posted by Cyberthreat Blog | Aug 7, 2017 | CVE Notifications |

The PS Interpreter in Ghostscript 9.18 and 9.20 allows remote attackers to execute arbitrary code via crafted userparams.

Author: Cyberthreat Blog

CVE-2017-12655

CVE-2016-3113

CVE-2016-6220

CVE-2017-12637

CVE-2016-7976