Barco ClickShare Devices Cross-site Scripting (CVE-2017-12460)

An issue was discovered in Barco ClickShare CSM-1 firmware before v1.7.0.3 and CSC-1 firmware before v1.10.0.10. An authenticated user can manage the wallpaper collection in the webUI to be shown as background on the ClickShare product. By uploading a wallpaper with a specially crafted name, an...

Barco ClickShare Devices OS Command Injection (CVE-2017-9377)

A command injection was identified on Barco ClickShare Base Unit devices with CSM-1 firmware before 1.7.0.3 and CSC-1 firmware before 1.10.0.10. An attacker with access to the product's web API can exploit this vulnerability to completely compromise the vulnerable device. This plugin only works...

CVE-2024-43941

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Propovoice Propovoice Pro allows SQL Injection.This issue affects Propovoice Pro: from n/a through 1.7.0.3...

CVE-2024-43941

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Propovoice Propovoice Pro allows SQL Injection.This issue affects Propovoice Pro: from n/a through 1.7.0.3...

PT-2024-30802 · Unknown · Propovoice Pro

Name of the Vulnerable Software and Affected Versions: Propovoice Pro versions 1.7.0.3 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows unauthorized access and can be exploited fo...

WordPress Propovoice Pro plugin <= 1.7.0.3 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Propovoice Pro versions = 1.7.0.3...

Unspecified Vulnerability in Barco ClickShare CSM-1 and ClickShare CSC-1

The Barco ClickShare CSM-1 and ClickShare CSC-1 are both host devices for the wireless presentation system from Barco Belgium. A security vulnerability exists in the Barco ClickShare CSM-1 using firmware versions prior to 1.7.0.3 and the Barco ClickShare CSC-1 using firmware versions prior to...

OpenClassifieds 1.7.0.3 Chained: Captcha Bypass->SQLi->Persistent XSS on Frontpage

No description provided by source...

[SECURITY] Fedora 17 Update: java-1.7.0-openjdk-1.7.0.3-2.1.fc17

The OpenJDK runtime environment...

[SECURITY] Fedora 16 Update: java-1.7.0-openjdk-1.7.0.3-2.1.fc16

The OpenJDK runtime environment...

OpenClassifieds 1.7.0.3 Chained: Captcha Bypass -> SQL Injection -> XSS on Frontpage

Author:Michael Brooks Rook Application:OpenClassifieds 1.7.0.3 download: http://open-classifieds.com/download/ Exploit chain:captcha bypass-sqliinsert-persistant xss on front page If registration is required an extra link in the chain is added: Exploit chain:blind sqliselect-captcha...