Linkus Photo Manager Pro 4.4.0 Local File Inclusion Vulnerability

Linkus Photo Manager Pro version 4.4.0 suffers from a local file inclusion vulnerability. Document Title: =============== Photo Manager Pro v4.4.0 iOS - File Include Vulnerability Product & Service Introduction: =============================== Do you have troubles for managing thousands of photos...

UBUNTU-CVE-2015-1126

WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not properly handle the userinfo field in FTP URLs, which allows remote attackers to trigger incorrect resource access via unspecified vectors...

Apple Safari Incorrectly Handles FTP URL Authentication Credentials Vulnerability

Apple Safari is a popular WEB browser. Apple Safari fails to properly handle FTP URL authentication credentials vulnerability, allowing attackers to exploit the vulnerability to access other restricted resources...

LFTP Man-in-the-Middle Information Disclosure Vulnerability

LFTP is a multi-platform , multi-mode ftp, ftps, http, https, hftp, etc. based on the command line FTP client . LFTP suffers from a man-in-the-middle information disclosure vulnerability, which allows attackers to exploit this vulnerability to conduct man-in-the-middle attacks and obtain sensitiv...

Qi Bo CMS variable coverage leads to sql injection vulnerability analysis report-vulnerability warning-the black bar safety net

Blog post author: Alibaba security research lab—supporting su Release date: 2015-3-10 Blog post content: The recent Alibaba security research laboratory vulnerability monitoring system to monitor attendance Bo cms exist high-risk vulnerabilities that can lead to SQL vulnerability and thus affect...

Honeywell XL Web Controller Directory Traversal Vulnerability

Honeywell XL Web Controller is a web-based SCADA system. A security vulnerability exists in Honeywell XL Web Controller, which can be exploited by an attacker to access the Web Root directory of an affected system via a directory traversal vulnerability within the FTP server...

Photo Manager Pro v4.4.0 iOS - File Include Vulnerability

Document Title: =============== Photo Manager Pro v4.4.0 iOS - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1445 Release Date: ============= 2015-03-12 Vulnerability Laboratory ID VL-ID: ====================================...

[SECURITY] Fedora 22 Update: lftp-4.6.1-4.fc22

LFTP is a sophisticated ftp/http file transfer program. Like bash, it has j ob control and uses the readline library for input. It has bookmarks, built-in mirroring, and can transfer several files in parallel. It is designed with reliability in mind...

[SECURITY] Fedora 20 Update: lftp-4.5.4-3.fc20

LFTP is a sophisticated ftp/http file transfer program. Like bash, it has j ob control and uses the readline library for input. It has bookmarks, built-in mirroring, and can transfer several files in parallel. It is designed with reliability in mind...

[SECURITY] Fedora 21 Update: lftp-4.5.4-4.fc21

LFTP is a sophisticated ftp/http file transfer program. Like bash, it has j ob control and uses the readline library for input. It has bookmarks, built-in mirroring, and can transfer several files in parallel. It is designed with reliability in mind...

Wireless File Transfer Pro Android Cross Site Request Forgery Vulnerability

Wireless File Transfer Pro Android suffers from a cross site request forgery vulnerability. Document Title: =============== Wireless File Transfer Pro Android - CSRF Vulnerabilities Common Vulnerability Scoring System: ==================================== 2.3 Product & Service Introduction:...

Wireless File Transfer Pro 1.0.1 CSRF

Document Title: =============== Wireless File Transfer Pro 1.0.1 - Android CSRF Remote Command Execution Creat, Delete Release Date: ============= 2015-02-10 Product & Service Introduction: =============================== Wireless File Transfer Pro is the advanced version of Wireless File Transfe...

libvncserver: server stacked-based buffer overflow flaws in file transfer handling

Two stack-based buffer overflow flaws were found in the way LibVNCServer handled file transfers. A remote attacker could use this flaw to crash the VNC server using a malicious VNC client...

Schneider Electric ETG3000 FactoryCast HMI Gateway FTP Built-in Password Vulnerability

The Schneider Electric ETG3000 FactoryCast HMI Gateway is a new intelligent Web gateway. A default account vulnerability exists in the Schneider Electric ETG3000 FactoryCast HMI Gateway FTP server, allowing an attacker to access the service without authentication...

Attachmate Reflection FTP Client Stack Buffer Overflow Vulnerability

Attachmate Reflection is a Unix terminal emulation software. A stack buffer overflow vulnerability exists in the Attachmate Reflection FTP client, which allows an attacker to exploit the vulnerability to execute arbitrary code within the context of the application...

Oracle Solaris Third-Party Patch Update : pidgin (multiple_vulnerabilities_in_pidgin)

The remote Solaris system is missing necessary patches to address security updates : - proxy.c in libpurple in Pidgin before 2.10.4 does not properly handle canceled SOCKS5 connection attempts, which allows user-assisted remote authenticated users to cause a denial of service application crash vi...

Hide vnc HVNC (Hide VNC/VNC User Desktop/WebCam/Download & Upload Files)

src -server -backconnect server -bot -builder -resextract -removal !This project is stopped with the end of 2013. !Not supported !EXE files posted on the public! !identified as a virus. !need to correct and modifying. !src for creative interest. !today all RIP from zeus +Download & Upload Files...

WiFi File Browser Pro v2.0.8 - Code Execution Vulnerability

Document Title: =============== WiFi File Browser Pro v2.0.8 - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1406 Release Date: ============= 2015-01-14 Vulnerability Laboratory ID VL-ID: ===================================...

[SECURITY] Fedora 21 Update: curl-7.37.0-12.fc21

curl is a command line tool for transferring data with URL syntax, supporti ng FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, I MAP, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies,...

Easewe FTP OCX Arbitrary File Execution Vulnerability

Easewe FTP OCX is easy to use ftp activex component that supports all standard ftp features. Easewe FTP OCX version 4.5.0.9 EaseWeFtp.FtpLibrary ActiveX control in EaseWeFtp.ocx fails to restrict access to certain methods, allowing remote attackers to exploit a vulnerability to execute arbitrary...