Affected versions of Jira Server & Data Center allow a remote attacker with limited (non-admin) privileges to view a Jira instance’s Support Entitlement Number (SEN) via an Information Disclosure vulnerability in the HTTP Response headers. The affected versions are before version 7.13.18, from version 8.0.0 before 8.5.9, and from version 8.6.0 before 8.12.1.
Published at: October 06, 2020 at 07:15PM
View on website
"HCL AppScan Enterprise makes use of broken or risky cryptographic algorithm to store REST API user details."
Published at: October 06, 2020 at 02:15PM
View on website
"HCL AppScan Enterprise security rules update administration section of the web application console is missing HTTP Strict-Transport-Security Header."
Published at: October 06, 2020 at 02:15PM
View on website
A potential DOS vulnerability was discovered in GitLab versions 13.1, 13.2 and 13.3. The api to update an asset as a link from a release had a regex check which caused exponential number of backtracks for certain user supplied values resulting in high CPU usage.
Published at: October 06, 2020 at 03:15PM
View on website
An issue has been discovered in GitLab affecting all versions starting from 11.2. Unauthorized Users Can View Custom Project Template
Published at: October 06, 2020 at 03:15PM
View on website
Educ Arte Económico 