Show filters
15 Total Results
Displaying 11-15 of 15
Sort by:
Attacker Value
Unknown

CVE-2017-15964

Disclosure Date: October 29, 2017 (last updated November 26, 2024)
Job Board Script Software allows SQL Injection via the PATH_INFO to a /job-details URI.
0
0
Attacker Value
Unknown

CVE-2016-7031

Disclosure Date: October 03, 2016 (last updated November 25, 2024)
The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL.
0
0
Attacker Value
Unknown

CVE-2015-3010

Disclosure Date: June 16, 2015 (last updated October 05, 2023)
ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.
0
0
Attacker Value
Unknown

CVE-2015-4053

Disclosure Date: June 08, 2015 (last updated October 05, 2023)
The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.
0
0
Attacker Value
Unknown

CVE-2008-6525

Disclosure Date: March 25, 2009 (last updated October 04, 2023)
SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote attackers to execute arbitrary SQL commands via the Password parameter (aka the pass field).
0
0
View More Topics  < Previous