Showing 1 - 3 of 3

Files from Ramon Pinuaga Cascales

s21sec-040-en.txt: Posted Feb 25, 2008; Authored by Ramon Pinuaga Cascales | Site s21sec.com; S21Sec Advisory - BEA Weblogic versions 7.0sp6, 8.1sp4, and 9.0sp2 suffer from a flaw where it is possible to launch a credential brute force attack against known users through an internal servlet that permits the bypass of the user locking mechanism.; tags | advisory; SHA-256 | a5fb6b68cd55bdb29a6f99a3c3665b929686e92efde94604ece0630b44ed64f8; Download | Favorite | View

S21SEC-017-en.txt: Posted May 28, 2003; Authored by Ramon Pinuaga Cascales | Site s21sec.com; S 2 1 S E C Advisory 017 - The Vignette Content Management and Application Portal software is vulnerable to a remote attacker accessing the SQL database without authentication by modifying a cookie. Affected versions: StoryServer 4 and 5 and Vignette V/5.; tags | advisory, remote; SHA-256 | 71e86e2b59d1310641859df7e5da7efd9c2cdd6dcc72e7971a5e708a03dbdc31; Download | Favorite | View

S21SEC-016-en.txt: Posted May 28, 2003; Authored by Ramon Pinuaga Cascales | Site s21sec.com; S 2 1 S E C Advisory 016 - Vignette Content Management and Application Portal software has a vulnerability that allows a remote attacker to inject a server side include that could lead to remote command execution. Affected versions include, but are not limited to, StoryServer 4 and 5 and Vignette V/5 and V/6.; tags | advisory, remote; SHA-256 | 6e683b01ef73501f7cca1af2773c0055d0e02e01749b77df85c5932c64cee74a; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days