RedHat Update for firefox RHSA-2016:1551-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 5 / 6 / 7 : firefox (RHSA-2016:1551)

An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

CentOS 5 / 6 / 7 : firefox (CESA-2016:1551)

An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Critical: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

CVE-2016-5259

Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code via a script that closes its own Service Worker within a nested sync event loop...

CVE-2016-5259

Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code via a script that closes its own Service Worker within a nested sync event loop...

Apache Subversion svn Protocol Parser Integer Overflow (CVE-2015-5259)

An integer overflow vulnerability exists in Apache Subversion. The vulnerability is due to a flaw in the svn protocol parser. A remote, unauthenticated attacker could exploit this vulnerability by sending crafted requests that will be processed by the svnserve protocol...

Fedora Update for subversion FEDORA-2015-6

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2015-5259

Integer overflow in the readstring function in libsvnrasvn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read...

CVE-2015-5259

The CVE-2015-5259 issue affects Apache Subversion 1.9.x prior to 1.9.3. It arises from an overflow in the read_string path in libsvn_ra_svn/marshal.c when handling svn:// strings, causing a heap-based buffer overflow and an out-of-bounds read. This is exploitable remotely and can allow an attacke...

Reflected Cross-Site Scripting (XSS) in BlackCat CMS

Advisory ID: HTB23228 Product: BlackCat CMS Vendor: Black Cat Development Vulnerable Versions: 1.0.3 and probably prior Tested Version: 1.0.3 Advisory Publication: August 13, 2014 without technical details Vendor Notification: August 13, 2014 Vendor Patch: August 13, 2014 Public Disclosure:...

CVE-2014-5259

Cross-site scripting XSS vulnerability in cattranslate.php in the CatTranslate JQuery plugin in BlackCat CMS 1.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg parameter...

CVE-2014-5259

CVE-2014-5259 is a reflected XSS in BlackCat CMS up to version 1.0.3, caused by insufficient sanitization of the GET parameter “msg” passed to /modules/lib_jquery/plugins/cattranslate/cattranslate.php. A remote attacker can entice a logged-in user to open a crafted link and execute arbitrary HTML...

BlackCat CMS 1.0.3 Cross Site Scripting Vulnerability

BlackCat CMS version 1.0.3 suffers from a cross site scripting vulnerability. Product: BlackCat CMS Vendor: Black Cat Development Vulnerable Versions: 1.0.3 and probably prior Tested Version: 1.0.3 Advisory Publication: August 13, 2014 without technical details Vendor Notification: August 13, 201...

BlackCat CMS 1.0.3 Cross Site Scripting

Advisory ID: HTB23228 Product: BlackCat CMS Vendor: Black Cat Development Vulnerable Versions: 1.0.3 and probably prior Tested Version: 1.0.3 Advisory Publication: August 13, 2014 without technical details Vendor Notification: August 13, 2014 Vendor Patch: August 13, 2014 Public Disclosure:...

openSUSE Security Update : flash-player (openSUSE-SU-2013:0370-1)

Flash Player was updated to 11.2.202.243 - CVE-2012-5248, CVE-2012-5249, CVE-2012-5250, CVE-2012-5251, CVE-2012-5252, CVE-2012-5253, CVE-2012-5254, CVE-2012-5255, CVE-2012-5256, CVE-2012-5257, CVE-2012-5258, CVE-2012-5259, CVE-2012-5260, CVE-2012-5261, CVE-2012-5262, CVE-2012-5263, CVE-2012-5264,...

Adobe Air Multiple Vulnerabilities - October 12 (Windows)

This host is installed with Adobe Air and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeairmultvulnoct12win.nasl 8176 2017-12-19 12:50:00Z cfischer $ Adobe Air Multiple Vulnerabilities - October 12 Windows Authors: Thanga Prakash S Copyright: Copyright c 2013...

CVE-2011-5259

CVE-2011-5259 describes a SQL injection in OrangeHRM before 2.6.11.2, caused by unsafely handling the id parameter in lib/controllers/CentralController.php. Public records from NVD/NVD-derived sources confirm that remote attackers could execute arbitrary SQL commands via that parameter, with impa...

SuSE 11.2 Security Update : flash-player (SAT Patch Number 6937)

flash player was updated to version 11.2.202.243, fixing a lot of security issues : CVE-2012-5248 / CVE-2012-5249 / CVE-2012-5250 / CVE-2012-5251 / CVE-2012-5252 / CVE-2012-5253 / CVE-2012-5254 / CVE-2012-5255 / CVE-2012-5256 / CVE-2012-5257 / CVE-2012-5258 / CVE-2012-5259 / CVE-2012-5260 /...

SuSE Update for flash-player openSUSE-SU-2012:1324-1 (flash-player)

Check for the Version of flash-player OpenVAS Vulnerability Test $Id: gbsuse201213241.nasl 8336 2018-01-09 07:01:48Z teissa $ SuSE Update for flash-player openSUSE-SU-2012:1324-1 flash-player Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...