During a security investigation multiple security issues have been discovered in the MOVEit File Transfer web- and mobile application from Ipswitch, Inc. * CVE-2015-7675: Unauthorized access to arbitrary files and documents http://ift.tt/1PFpRKa * CVE-2015-7676: Insecure default configuration (Persistant XSS) http://ift.tt/1KFWTT2 * CVE-2015-7677: Enumeration of existing FileIDs http://ift.tt/1PFpRKc * CVE-2015-7678: CSRF http://ift.tt/1KFWVKL * CVE-2015-7679: Reflected XSS http://ift.tt/1PFpRKf * CVE-2015-7680: Enumeration of existing usernames http://ift.tt/1KFWW0Z
Source: Gmail -> IFTTT-> Blogger
No comments:
Post a Comment