Missing "no cache" headers in HCL Leap permits sensitive data to be cached.
Missing "no cache" headers in HCL Leap permits sensitive data to be cached.
Missing "no cache" headers in HCL Leap permits user directory information to be cached.
Insufficient default configuration in HCL Leap
allows anonymous access to directory information.
Insufficient default configuration in HCL Leap
allows anonymous access to directory information.
Improper access control of endpoint in HCL Domino Leap
allows certain admin users to import applications from the
server's filesystem.
HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could allow an attacker to obtain sensitive information via unspecified vectors.
Insufficient URI protocol whitelist in HCL Leap
allows script injection through query parameters.
HCL Nomad server on Domino did not configure the frame-ancestors directive in the Content-Security-Policy header by default which could allow an attacker to obtain sensitive information via unspecifie
Insufficient URI protocol whitelist in HCL Domino Volt and Domino Leap
allow script injection through query parameters.
Insufficient sanitization in HCL Leap allows
client-side script injection in the authoring environment.
HCL Nomad server on Domino is vulnerable to the cache containing sensitive information which could potentially give an attacker the ability to acquire the sensitive information.
Unsafe default file type filter policy in HCL
Leap allows execution of unsafe JavaScript in deployed applications.
Improper access control of endpoint in HCL Leap
allows certain admin users to import applications from the
server's filesystem.
LeapFTP < 3.1.x contains a stack-based buffer overflow vulnerability in its FTP client parser. When the client receives a directory listing containing a filename longer than 528 bytes, the application
Multiple vectors in HCL Domino Volt and Domino Leap allow client-side
script injection in the authoring environment and deployed applications.
Multiple vectors in HCL Leap allow client-side
script injection in the authoring environment and deployed applications.
A vulnerability was found in master-nan Sweet-CMS up to 5f441e022b8876f07cde709c77b5be6d2f262e3f. It has been rated as problematic. This issue affects the function LogHandler of the file middleware/lo
In the Linux kernel, the following vulnerability has been resolved:
cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read()
We got the following issue in a fuzz test of randomly iss
In the Linux kernel, the following vulnerability has been resolved:
ipc: fix memory leak in init_mqueue_fs()
When setup_mq_sysctls() failed in init_mqueue_fs(), mqueue_inode_cachep is
not released.
Page 1+ Next →