Vulnerabilities

neos-sa-2015-001 Privilege Escalation

GMS-2015-3 XSS via file names

CVE-2015-0201 Insufficiently random session id in Java SockJS client

CVE-2014-7816 Information disclosure via directory traversal

OSVDB-119205 Private information access through CSRF

CVE-2014-9682 dns-sync Command Injection

CVE-2014-1832 Server Instance Directory Creation Local Symlink File Overwrite

CVE-2014-1831 Instance Directory Creation Symlink Arbitrary File Overwrite

CVE-2015-2179 MySQL credential exposure

OSVDB-118830 Sensitive information in production logs

← Previous