Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27776 of 28129

CVE-2017-8304

Posted by Cyberthreat Blog | May 5, 2017 | CVE Notifications |

An issue was discovered on Accellion FTA devices before FTA_9_12_180. courier/1000@/oauth/playground/callback.html allows XSS with a crafted URI.

CVE-2017-8788

Posted by Cyberthreat Blog | May 5, 2017 | CVE Notifications |

An issue was discovered on Accellion FTA devices before FTA_9_12_180. There is a CRLF vulnerability in settings_global_text_edit.php allowing ?display=x%0Dnewline attacks.

CVE-2017-8795

Posted by Cyberthreat Blog | May 5, 2017 | CVE Notifications |

An issue was discovered on Accellion FTA devices before FTA_9_12_180. There is XSS in home/seos/courier/smtpg_add.html with the param parameter.

CVE-2017-8303

Posted by Cyberthreat Blog | May 5, 2017 | CVE Notifications |

An issue was discovered on Accellion FTA devices before FTA_9_12_180. seos/1000/find.api allows Remote Code Execution with shell metacharacters in the method parameter.

CVE-2016-9691

Posted by Cyberthreat Blog | May 5, 2017 | CVE Notifications |

IBM WebSphere Cast Iron Solution 7.0.0 and 7.5.0.0 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to...

Author: Cyberthreat Blog

CVE-2017-8304

CVE-2017-8788

CVE-2017-8795

CVE-2017-8303

CVE-2016-9691