CVE-2012-5471

The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to access the Dropbox of a different user by leveraging an unattended workstation after a logout...

Design/Logic Flaw

The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to access the Dropbox of a different user by leveraging an unattended workstation after a logout...

CVE-2012-5471

The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to access the Dropbox of a different user by leveraging an unattended workstation after a logout...

CVE-2012-5471

The vulnerability CVE-2012-5471 affects Moodle’s Dropbox Repository File Picker in Moodle 2.1.x (before 2.1.9), 2.2.x (before 2.2.6), and 2.3.x (before 2.3.3). It allows remote authenticated users to access another user’s Dropbox by using an unattended workstation after logout. The issue is addre...

DropBox iOS / Android App File Theft

DropBox version 1.4.6 on iOS, 2.0.1 on Android, and Google Drive version 1.0.1 on iOS suffer from a file theft vulnerability due to allowing arbitrary javascript to be executed inside of the privileged file zone. 1 Introduction ================================================ Recently, I discover...

Joomla Commedia Plugin (index.php, task parameter) SQL Injection

Exploit for php platform in category web applications Exploit Title: Joomla commedia Remote Exploit dork: inurl:index.php?option=comcommedia Date: 18-10-2012 Author: Daniel Barragan "D4NB4R" Twitter: @D4NB4R Vendor: http://www.ecolora.org/ Version: 3.1 last update on Oct 7, 2012 and lowers Licens...

Looking to Bolster Security, Dropbox Adds Two-Factor Authentication

Several weeks after announcing that some of its users’ log-ins and passwords had been stolen, file storage company Dropbox announced it has added a two-step authentication process over the weekend to help reinforce the security of its users’ accounts. The added layer of security is currently...

EncFS and TrueCrypt for Android: Cryptonite

Cryptonite brings EncFS and TrueCrypt to Android. You can browse, export and open EncFS-encrypted directories and files on your Dropbox and on your phone. On rooted phones that support FUSE e.g. CyanogenMod you can also mount EncFS and TrueCrypt volumes. TrueCrypt is only available as a...

Dropbox Blames Breach for Recent Spam Targeting Customers

Over the last few weeks an attacker used a collection of illicitly obtained usernames and passwords to infiltrate a number of Dropbox accounts, including one belonging to a Dropbox employee. The usernames and passwords were stolen from other, third-party websites, Dropbox officials said, finally...

Dropbox Users Cry "Spam!" Company Investigates

Support forums frequented by users of the online storage service Dropbox were alive with reports of spam e-mail messages sent to supposedly secret, Dropbox-affiliated addresses. The reports have raised the dark spectre of a data leak at the cloud based personal storage firm. Hundreds of Dropbox...

Dropbox Detection

Binary data 6484.prm...

Facebook Reassures Users, But Hole May Put Mobile Data at Risk

UPDATED: Facebook Security assured users on Thursday who access their Facebook account via Android or iOS devices that mobile sessions on the social networking site aren’t vulnerable to hacking. However, research published this week suggests otherwise. A blog entry posted by UK-based mobile...

Spammers Using Dropbox to Push Fake Pills, Malware

Spammers have jumped on the Dropbox bandwagon to push rogue-pharmaceuticals and malware, according to a report by Symantec’s Nick Johnston. Dropbox, a free, cloud-based file-sharing service, has a couple of features that make it attractive to spammers and malware-writers. One feature allows Dropb...

Dropbox Software Detection (uncredentialed check)

Dropbox is installed on the remote host. Dropbox is an application for storing and synchronizing files between computers, possibly outside the organization. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if NASLLEVEL 4400 exit1, "'bpfopen' first appeared in Nessus 4.4.0.";...

Dropbox Software Detection (listener)

Dropbox is installed on the remote host. Dropbox is an application for storing and synchronizing files between computers, possibly outside the organization. TRUSTED...

KLA10142 OSI vulnerability in Dropbox

Improper permission granting was found in Dropbox for Android. By exploiting this vulnerability malicious users can obtain dropbox session information. This vulnerability can be exploited remotely via a specially designed app. Original advisories Blog post Related products Dropbox-for-Android CVE...

Android版Dropbox内容提供程序安全绕过漏洞

No description provided by source...

Dropbox Installed (Mac OS X)

Dropbox is installed on the remote Mac OS X host. Dropbox is an application for storing and synchronizing files between computers, possibly outside the organization. TRUSTED...

Nmap NSE net: broadcast-dropbox-listener

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Dropbox potential security flaw revealed, could be exploited by hackers !

It seems that information which Dropbox, the popular web-based file-sharing site/service, issued in response to a US Federal Trade Commission complaint, has revealed a potential security flaw that, according to Ray Bryant, CEO of Idappcom, could be exploited by hackers. According to Bryant, after...