Accellion File Transfer - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/30796/info Accellion File Transfer is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script cod...

Kyocera Mita Scanner File Utility 3.3.0.1 File Transfer Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30855/info Kyocera Mita Scanner File Utility is prone to a directory-traversal vulnerability because it fails to adequately sanitize user-supplied input. Attackers can exploit this issue to create and overwrite arbitrary...

Chilkat Software FTP2 ActiveX Component Remote Code Execution

No description provided by source. !-- Chilkat Software FTP2 ActiveX Component ChilkatFtp2.DLL 2.6.1.1 Remote Code Execution poc by rgod tested against Internet Explorer 7 on Vista should also work with 8/9 ActiveX Settings: CLSID: 302124C4-30A0-484A-9C7A-B51D5BA5306B Progid:...

Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities

No description provided by source. Document Title: =============== Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1229 Release Date: ============= 2014-03-19 Vulnerability Laboratory ID VL-ID:...

Remote File Manager 1.2 iOS - Multiple Vulnerabilities

No description provided by source. Title: ====== Remote File Manager v1.2 iOS - Multiple Web Vulnerabilities Date: ===== 2013-02-23 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=882 VL-ID: ===== 882 Common Vulnerability Scoring System:...

Accellion File Transfer Appliance Error Report Message - Open Email Relay Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31178/info Accellion File Transfer Appliance is prone to an open-email-relay vulnerability. An attacker could exploit this issue by constructing a script that would send unsolicited spam to an unrestricted amount of email...

OliveOffice Mobile Suite 2.0.3 iOS - File Include Vulnerability

No description provided by source. Document Title: =============== OliveOffice Mobile Suite 2.0.3 iOS - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1110 Release Date: ============= 2013-10-13 Vulnerability Laboratory ID...

freeFTPd 1.0 Username Overflow

No description provided by source. $Id: freeftpduser.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

IBM WebSphere MQ File Transfer Edition Web Gateway Insufficient Access Control

No description provided by source. Exploit Author: Nir Valtman Affected Platforms: Version 7.0.4 and all previous versions of WebSphereMQ File Transfer Editionhttp://publib.boulder.ibm.com/infocenter/wmqfte/v7r0/index.jsprunning on all platforms are affected. Apparently they published the CVE abo...

IBM WebSphere MQ File Transfer Edition Web Gateway CSRF Vulnerability

No description provided by source. Exploit Author: Nir Valtman Description: Malicious user is able to add userspace, change permissions on existing userspace and add MQMD MQ Message Descriptor user IDs. All of the these vulnerabilities can be exploited using a CSRF Cross Site Request Forgery...

SmartSPLAT - Tool to troubleshoot Checkpoint firewall issues and perform management tasks

Smart SPLAT is a freeware software to troubleshoot Checkpoint firewall issues and perform management tasks. It periodically checks for an update and when a new release is published, updates itself via the SmartSPLAT web site. SmartSPLAT lets you connect to your firewall via secure channel SSH...

PT-2014-2179 · D Link · D-Link Dir-601 Wireless N150 Home Router

Name of the Vulnerable Software and Affected Versions: D-Link DIR-601 Wireless N150 Home Router version 1.02NA Description: A directory traversal issue in the TFTP server of the affected router allows remote attackers to read arbitrary files. The exact vectors used for exploitation are not...

openSUSE Security Update : filezilla (openSUSE-SU-2013:1347-1)

FileZilla was updated to version 3.7.3 to add various features, fix bugs and also security issues in the embedded putty ssh client. Full changelog: https://filezilla-project.org/changelog.php - Noteworthy changes : - Apply a fix for a security vulnerability in PuTTY as used in FileZilla to handle...

[SECURITY] Fedora 19 Update: mingw-curl-7.37.0-1.fc19

cURL is a tool for getting files from HTTP, FTP, FILE, LDAP, LDAPS, DICT, TELNET and TFTP servers, using any of the supported protocols. cURL is designed to work without user interaction or any kind of interactivity. cURL offers many useful capabilities, like proxy support, user authentication, F...

[SECURITY] Fedora 20 Update: mingw-curl-7.37.0-1.fc20

cURL is a tool for getting files from HTTP, FTP, FILE, LDAP, LDAPS, DICT, TELNET and TFTP servers, using any of the supported protocols. cURL is designed to work without user interaction or any kind of interactivity. cURL offers many useful capabilities, like proxy support, user authentication, F...

Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities

Document Title: =============== Bluetooth Photo-File Share v2.1 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1270 Release Date: ============= 2014-05-30 Vulnerability Laboratory ID VL-ID:...

Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities

Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities Document Title: =============== Bluetooth Photo-File Share v2.1 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1270 Release Date: ============= 2014-05-30...

Bluetooth Photo-File Share v2.1 - Multiple Vulnerabilities

Document Title: =============== Bluetooth Photo-File Share v2.1 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1270 Release Date: ============= 2014-05-30 Vulnerability Laboratory ID VL-ID: ====================================...

[CVE-2014-0072] Apache Cordova File-Transfer insecure defaults

CVE-2014-0072: Apache Cordova File-Transfer insecure defaults Severity: Important Vendor: The Apache Software Foundation Versions Affected: Cordova File-Transfer iOS plugin from Cordova versions 2.4.0 to 2.9.0 Cordova File-Transfer iOS standalone plugin org.apache.cordova.file-transfer versions...

Cross site request forgery (csrf)

TIBCO Managed File Transfer Internet Server before 7.2.2, Managed File Transfer Command Center before 7.2.2, Slingshot before 1.9.1, and Vault before 1.0.1 allow remote attackers to obtain sensitive information via a crafted HTTP request...