7 matches found
PT-2018-5371 · Unknown · Tinysvcmdns
Name of the Vulnerable Software and Affected Versions: tinysvcmdns library version 2017-11-05 Description: An exploitable NULL pointer dereference issue exists in the tinysvcmdns library. A specially crafted packet can cause the library to dereference a NULL pointer, leading to a server crash and...
Trape SQL Injection Vulnerability
Trape is a set of open source Internet tracking and identification tools. It is capable of remotely identifying sessions and simulating phishing attacks. A SQL injection vulnerability exists in versions of Trape prior to 2017-11-05. A remote attacker can exploit the vulnerability to execute SQL...
CVE-2017-17713
Trape before 2017-11-05 has SQL injection via the /nr red parameter, the /nr vId parameter, the /register User-Agent HTTP header, the /register country parameter, the /register countryCode parameter, the /register cpu parameter, the /register isp parameter, the /register lat parameter, the...
Design/Logic Flaw
Trape before 2017-11-05 has XSS via the /nr red parameter, the /nr vId parameter, the /register User-Agent HTTP header, the /register country parameter, the /register countryCode parameter, the /register cpu parameter, the /register isp parameter, the /register lat parameter, the /register lon...
Sql injection
Trape before 2017-11-05 has SQL injection via the /nr red parameter, the /nr vId parameter, the /register User-Agent HTTP header, the /register country parameter, the /register countryCode parameter, the /register cpu parameter, the /register isp parameter, the /register lat parameter, the...
CVE-2017-17714
Trape before 2017-11-05 has XSS via the /nr red parameter, the /nr vId parameter, the /register User-Agent HTTP header, the /register country parameter, the /register countryCode parameter, the /register cpu parameter, the /register isp parameter, the /register lat parameter, the /register lon...
Pixel / Nexus Security Bulletin—November 2017Stay organized with collectionsSave and categorize content based on your preferences.
The Pixel/Nexus Security Bulletin contains details of security vulnerabilities and functional improvements affecting supported Google Pixel and Nexus devices Google devices. For Google devices, security patch levels of 2017-11-05 or later also address all issues in this bulletin. To learn how to...