Lucene search
K

84 matches found

NVD
NVD
added 2015/04/21 3:59 p.m.18 views

CVE-2014-5370

Directory traversal vulnerability in the CFChart servlet com.naryx.tagfusion.cfm.cfchartServlet in New Atlanta BlueDragon before 7.1.1.18527 allows remote attackers to read or possibly delete arbitrary files via a .. dot dot in the QUERYSTRING to cfchart.cfchart...

7.5CVSS6.9AI score0.07509EPSS
Exploits4References5
Prion
Prion
added 2015/04/21 3:59 p.m.18 views

Directory traversal

Directory traversal vulnerability in the CFChart servlet com.naryx.tagfusion.cfm.cfchartServlet in New Atlanta BlueDragon before 7.1.1.18527 allows remote attackers to read or possibly delete arbitrary files via a .. dot dot in the QUERYSTRING to cfchart.cfchart...

7.5CVSS7.5AI score0.07509EPSS
Exploits4References5Affected Software1
exploitpack
exploitpack
added 2015/04/21 12:0 a.m.75 views

BlueDragon CFChart Servlet 7.1.1.17759 - Arbitrary File RetrievalDeletion

BlueDragon CFChart Servlet 7.1.1.17759 - Arbitrary File RetrievalDeletion Vulnerability title: Arbitrary File Retrieval + Deletion In New Atlanta BlueDragon CFChart Servlet CVE: CVE-2014-5370 Vendor: New Atlanta Product: BlueDragon CFChart Servlet Affected version: 7.1.1.17759 Fixed version:...

7.5CVSS0.4AI score0.07509EPSS
Exploits4
Exploit DB
Exploit DB
added 2015/04/21 12:0 a.m.61 views

BlueDragon CFChart Servlet 7.1.1.17759 - Arbitrary File Retrieval/Deletion

Vulnerability title: Arbitrary File Retrieval + Deletion In New Atlanta BlueDragon CFChart Servlet CVE: CVE-2014-5370 Vendor: New Atlanta Product: BlueDragon CFChart Servlet Affected version: 7.1.1.17759 Fixed version: 7.1.1.18527 Reported by: Mike Westmacott Details: The CFChart servlet of...

7.5CVSS6.7AI score0.07509EPSS
Exploits4
Packet Storm
Packet Storm
added 2015/04/19 12:0 a.m.52 views

BlueDragon CFChart Servlet 7.1.1.17759 Directory Traversal

Vulnerability title: Arbitrary File Retrieval + Deletion In New Atlanta BlueDragon CFChart Servlet CVE: CVE-2014-5370 Vendor: New Atlanta Product: BlueDragon CFChart Servlet Affected version: 7.1.1.17759 Fixed version: 7.1.1.18527 Reported by: Mike Westmacott Details: The CFChart servlet of...

7.5CVSS6.7AI score0.07509EPSS
Exploits4
NVD
NVD
added 2014/10/19 10:55 a.m.15 views

CVE-2014-7315

The Where Atlanta aka com.magzter.whereatlanta application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00292EPSS
Exploits0References3
Prion
Prion
added 2014/10/19 10:55 a.m.17 views

Design/Logic Flaw

The Where Atlanta aka com.magzter.whereatlanta application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00292EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/10/19 10:0 a.m.40 views

CVE-2014-7315

The CVE-2014-7315 entry applies to the Android app Where Atlanta (com.magzter.whereatlanta) version 3.0.2. The vulnerability is caused by the app not verifying X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information through a cra...

5.4CVSS6AI score0.00292EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/19 10:0 a.m.20 views

CVE-2014-7315

The Where Atlanta aka com.magzter.whereatlanta application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00292EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

Scientific Atlanta DPX2100 Cable Modem LanD Packet Denial of Service Vulnerability

No description provided by source. source: www.securityfocus.com/bid/15870/info Scientific Atlanta DPX2100 cable modems are prone to a denial of service vulnerability. These devices are susceptible to a remote denial of service vulnerability when handling TCP 'LanD' packets. This issue allows...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2013/12/10 7:0 p.m.22 views

CVE-2013-7043

Multiple cross-site request forgery CSRF vulnerabilities on Cisco Scientific Atlanta DPR2320R2 routers with software 2.0.2r1262-090417 allow remote attackers to hijack the authentication of administrators for requests that 1 change a password via the Password parameter to goform/RgSecurity; 2...

7.4AI score0.02074EPSS
Exploits1References2
CVE
CVE
added 2013/12/10 7:0 p.m.39 views

CVE-2012-3047

The CVE-2012-3047 issue affects Cisco Scientific Atlanta D20 and D30 cable modems, where the web-wizard setup page is vulnerable to Cross-site Scripting (XSS). The root cause is insufficient sanitization of user-supplied input on the web wizard setup page, enabling an unauthenticated, remote atta...

4.3CVSS5.8AI score0.00942EPSS
Exploits0References1Affected Software37
CVE
CVE
added 2013/12/10 7:0 p.m.43 views

CVE-2013-7043

CVE-2013-7043 covers multiple CSRF vulnerabilities in Cisco Scientific Atlanta DPR2320R2 routers running 2.0.2r1262-090417. The issues allow remote attackers to hijack administrator sessions and perform actions such as: (1) change a password via the Password parameter to goform/RgSecurity, (2) re...

8.3CVSS7.6AI score0.02074EPSS
Exploits1References2Affected Software2
Exploit DB
Exploit DB
added 2013/11/30 12:0 a.m.42 views

Scientific-Atlanta, Inc. DPR2320R2 - Multiple Cross-Site Request Forgery Vulnerabilities

Exploit Title: DPR2320R2 Scientific-Atlanta, Inc.A Cisco COMPANY :: Multiple CSRF vulnerability Author: sajith Category: Hardware/Wireless Router vendor home page: http://www.cisco.com/web/consumer/support/modemDPR2320.html Software Version: v2.0.2r1262-090417 1 Attacker can change the modem...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2013/05/04 12:35 a.m.10 views

Algerian Hacker linked to SpyEye virus extradited to US

The Algerian hacker linked with the SpyEye computer virus, designed to steal financial and personal information was extradited by Thailand to the United States to face charges that he hijacked customer accounts at more than 200 banks and financial institutions and have been used to steal more tha...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2013/04/08 1:0 p.m.13 views

How I Got Here: Paul Judge

Dennis Fisher talks with Paul Judge, the CTO of Barracuda Labs, about his roots in the security industry, his near-miss with organic chemistry, the start-up and security community in Atlanta and what his next venture might be. Download: 03pauljudge.mp3...

1.2AI score
Exploits0References2
Cisco
Cisco
added 2012/06/13 3:31 p.m.30 views

Cisco Scientific Atlanta D20 and D30 Based Cable Modem Cross-Site Scripting Vulnerability

Cisco Scientific Atlanta cable modems D20 and D30 based products contain a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to insufficient sanitization of user-supplied input to the web wizard setup web page. An...

4.3CVSS6.5AI score0.00942EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2011/09/29 5:53 p.m.8 views

Atlanta IT Worker Hacked Ex-Employers Database

Atlanta IT Worker Hacked Ex-Employers Database An Atlanta man could receive up to five years in prison after pleading guilty Wednesday to hacking into a former employer's patient database, stealing information and then wiping the database clean. Federal prosecutors said Eric McNeal, 37, used the...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2011/09/29 5:53 p.m.4 views

Atlanta IT Worker Hacked Ex-Employers Database

Atlanta IT Worker Hacked Ex-Employers Database An Atlanta man could receive up to five years in prison after pleading guilty Wednesday to hacking into a former employer's patient database, stealing information and then wiping the database clean. Federal prosecutors said Eric McNeal, 37, used the...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2011/06/04 1:14 a.m.2 views

Lulzsec hack Infragard Atlanta Members Alliance & challenge FBI !

Lulzsec hackInfragard Atlanta Members Alliance & challengeFBI ! Lulzsec yesterday hack Sony and Today they hack Infragard Atlanta Members Alliance , which having partnership with FBI. There is a Video Posted By Lulzsec on Their site after hack : The message written by them : LET IT FLOW YOU STUPI...

6.7AI score
Exploits0
Rows per page
Query Builder