MiracleLinux 7 : java-1.7.0-openjdk-1.7.0.99-2.6.5.0.1.el7.AXS7 (AXSA:2016-197:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-197:01 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2016-0636 RESERVED This candidate has been reserved by an organization or...

MiracleLinux 4 : rdesktop-1.6.0-8.AXS4.1 (AXSA:2011-197:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2011-197:01 advisory. rdesktop is an open source client for Windows NT Terminal Server and Windows 2000 & 2003 Terminal Services, capable of natively speaking Remote Desktop Protoc...

$197 Bounty Awarded for Unauthenticated Arbitrary Post Deletion Vulnerability Patched in LeadConnector WordPress Plugin

🎉 Did you know were running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through May 27th, 2024 when you opt to have Wordfence handle responsible disclosure! On February 8th, 2024, during our Bug Bounty Extravaganza, we...

Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-197)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-197 advisory. Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version between 4.0.0 to 4.0.5, by default, is susceptible to a heap-based buffer overflow, and...

Debian: Security Advisory (DLA-197-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

What is AES Advanced Encryption Standard ❓

In any case, AES cipher is the famous framework that aids in digital encoding facts making use of a maintained 128-digit, 192-piece, or 256-cycle symmetric encryption estimate from the Advanced Encryption Standard AES, additionally called FIPS 197. The AES is a PC protection general for obtaining...

CVE-2017-18471

cPanel before 62.0.4 allows self XSS on the paperlantern password-change screen SEC-197...

Default credentials

cPanel before 62.0.4 allows self XSS on the paperlantern password-change screen SEC-197...

CVE-2017-18471

cPanel before 62.0.4 allows self XSS on the paperlantern password-change screen SEC-197...

CVE-2017-18471

Summary: CVE-2017-18471 affects cPanel versions before 62.0.4. The issue is a self‑XSS vulnerability on the paper_lantern password‑change screen. Affected software/component: cPanel hosting control panel; paper_lantern password‑change UI. Root cause: Self‑XSS due to insufficient input/output hand...

Alienvault OSSIM av-centerd Util.pm sync_rserver Command Execution

require 'msf/core' class MetasploitModule 'Alienvault OSSIM av-centerd Util.pm syncrserver Command Execution', 'Description' = %q This module exploits a command injection vulnerability found within the syncrserver function in Util.pm. The vulnerability is triggered due to an incomplete blacklist...

Alienvault OSSIM av-centerd - Util.pm sync_rserver Command Execution (Metasploit)

require 'msf/core' class MetasploitModule 'Alienvault OSSIM av-centerd Util.pm syncrserver Command Execution', 'Description' = %q This module exploits a command injection vulnerability found within the syncrserver function in Util.pm. The vulnerability is triggered due to an incomplete blacklist...

Alienvault OSSIM av-centerd Util.pm sync_rserver - Command Execution Exploit

Exploit for linux platform in category remote exploits require 'msf/core' class MetasploitModule 'Alienvault OSSIM av-centerd Util.pm syncrserver Command Execution', 'Description' = %q This module exploits a command injection vulnerability found within the syncrserver function in Util.pm. The...

Alienvault OSSIM av-centerd - Util.pm sync_rserver Command Execution (Metasploit)

Alienvault OSSIM av-centerd - Util.pm syncrserver Command Execution Metasploit require 'msf/core' class MetasploitModule 'Alienvault OSSIM av-centerd Util.pm syncrserver Command Execution', 'Description' = %q This module exploits a command injection vulnerability found within the syncrserver...

CVE-2016-9381

Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by changing certain data on shared rings, aka a "double fetch" vulnerability...

Fedora 25 : xen (2016-999e1a6927)

xen : various security flaws 1397383 x86 null segments not always treated as unusable XSA-191, CVE-2016-9386 x86 task switch to VM86 mode mis-handled XSA-192, CVE-2016-9382 x86 segment base write emulation lacking canonical address checks XSA-193, CVE-2016-9385 guest 32-bit ELF symbol table load...

Fedora 23 : xen (2016-68b71978a1)

xen : various security flaws 1397383 x86 null segments not always treated as unusable XSA-191, CVE-2016-9386 x86 task switch to VM86 mode mis-handled XSA-192, CVE-2016-9382 x86 segment base write emulation lacking canonical address checks XSA-193, CVE-2016-9385 x86 64-bit bit test instruction...

Amazon Linux: Security Advisory (ALAS-2013-197)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mandriva Update for php MDVSA-2011:197 (php)

Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDVSA-2011:197 php Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Inout Ad server Ultimate - Arbitrary File Upload

============================================================== Inout Ad server Ultimate -- Shell upload Vulnerabilty ============================================================== Name : Inout Ad server Ultimate Shell upload Vulnerabilty Date : july 9,2010 Critical Level :VERY HIGH vendor URL...