Lucene search
K

113 matches found

NVD
NVD
added 2016/12/05 5:59 p.m.17 views

CVE-2016-9836

The file scanning mechanism of JFilterInput::isFileSafe in Joomla! CMS before 3.6.5 does not consider alternative PHP file extensions when checking uploaded files for PHP content, which enables a user to upload and execute files with the .php6, .php7, .phtml, and .phpt extensions. Additionally,...

9.8CVSS9.7AI score0.01883EPSS
Exploits2References2
OSV
OSV
added 2016/12/05 5:59 p.m.9 views

CVE-2016-9836

The file scanning mechanism of JFilterInput::isFileSafe in Joomla! CMS before 3.6.5 does not consider alternative PHP file extensions when checking uploaded files for PHP content, which enables a user to upload and execute files with the .php6, .php7, .phtml, and .phpt extensions. Additionally,...

9.8CVSS6.9AI score
Exploits0References2
Cvelist
Cvelist
added 2016/12/05 5:0 p.m.34 views

CVE-2016-9836

The file scanning mechanism of JFilterInput::isFileSafe in Joomla! CMS before 3.6.5 does not consider alternative PHP file extensions when checking uploaded files for PHP content, which enables a user to upload and execute files with the .php6, .php7, .phtml, and .phpt extensions. Additionally,...

9.6AI score0.01883EPSS
Exploits2References2
CVE
CVE
added 2016/12/05 5:0 p.m.146 views

CVE-2016-9836

CVE-2016-9836 affects Joomla! CMS versions up to 3.6.4 (self-reported). The file scanning in JFilterInput::isFileSafe() fails to consider alternative PHP extensions (e.g., .php6, .php7, .phtml, .phpt) when validating uploaded files, enabling execution of uploaded PHP content. Additionally, JHelpe...

9.8CVSS9.4AI score0.01883EPSS
Exploits2References2Affected Software1
Exploit DB
Exploit DB
added 2016/06/10 12:0 a.m.31 views

Armadito Antimalware - Backdoor Access/Bypass

/ Exploit Title : Armadito antimalware - Backdoor/Bypass Date : 07-06-2016 DD-MM-YYYY Exploit Author : Ax. Vendor Homepage : http://www.teclib-edition.com/teclib-products/armadito-antivirus/ Software Link : https://github.com/41434944/armadito-av Version : No version specified. Fixed 07-06-2016...

7AI score
Exploits0
myhack58
myhack58
added 2015/11/05 12:0 a.m.32 views

Baidu really fixed all of the WormHole vulnerability?-vulnerability warning-the black bar safety net

You can’t have a back door in the software because you can’t have a back door that's only for the good guys.“ - Apple CEO Tim Cook You should not give software to install the back door, because you can't guarantee that this Backdoor only the good guys can use the--Apple CEO cook 0×0 developments...

0.1AI score
Exploits0
Kitploit
Kitploit
added 2015/10/28 7:53 p.m.25 views

LMD - Linux Malware Detect

Linux Malware Detect LMD is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that is actively being used in attacks and...

7AI score
Exploits0References1
OSV
OSV
added 2015/09/18 3:57 p.m.7 views

MGASA-2015-0378 Updated owncloud packages fix security vulnerabilities

Updated owncloud package fixes security vulnerabilities: In ownCloud before 8.0.6, due to an incorrect usage of an ownCloud internal file system function the passed path to the file scanner was resolved relatively. An authenticated adversary may thus be able to get a listing of directories but no...

7.5CVSS6.3AI score0.02627EPSS
Exploits0References5
Veeam
Veeam
added 2015/06/22 12:0 a.m.27 views

Antivirus Exclusions for Veeam ONE

Purpose This article documents antivirus exclusions that may be created to reduce the impact that antivirus software has on the functionality of Veeam ONE. These antivirus exclusions may be applied to the Windows built-in antivirus or third-party antivirus software. Note: Antivirus will not alway...

6.7AI score
Exploits0Affected Software1
Kitploit
Kitploit
added 2013/09/24 1:46 a.m.13 views

[ByteScanner] Check your file that dangerous or not

This website is web service for checking file that you're uploaded is the malicious file or not. It's similar Virustotal.com, try it by yourself. ByteScanner...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/08/17 12:0 a.m.30 views

Ubuntu 11.04 / 11.10 / 12.04 LTS : clamav regression (USN-1482-3)

USN-1482-1 fixed vulnerabilities in ClamAV. The updated package could fail to properly scan files in some situations. This update fixes the problem. We apologize for the inconvenience. It was discovered that ClamAV incorrectly handled certain malformed TAR archives. A remote attacker could create...

4.3CVSS5.5AI score0.99809EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2012/05/06 12:0 a.m.15 views

Symantec Web Gateway Cross Site Scripting

Exploit Title: Symantec Web Gateway Cross Site Scripting Google Dork: N/A Date: 05/02/2012 Author: B00y@ Software Link: http://www.symantec.com/ Version: 5.0 Tested on: Windows XP Browser: IE 8.0 and Firefox 11.0 Symantec Web Gateway is susceptible to cross site scripting when scanning downloaded...

Exploits0
ThreatPost
ThreatPost
added 2012/02/08 8:18 p.m.27 views

Google Fixes 20 Flaws in Chrome, Adds Scanning of Downloaded Files

Google has released a major update for its Chrome browser, fixing 20 security vulnerabilities and including a new feature that scans downloaded executables and warns users if they’re potentially malicious. The new file-scanning feature is a major upgrade to the way that Chrome handles user...

9.3CVSS8.6AI score0.02348EPSS
Exploits0References20
OpenVAS
OpenVAS
added 2011/05/05 12:0 a.m.15 views

Fedora Update for fail2ban FEDORA-2011-5151

Check for the Version of fail2ban OpenVAS Vulnerability Test Fedora Update for fail2ban FEDORA-2011-5151 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.4AI score
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2010/02/25 12:0 a.m.7 views

CA Products AV Engine CHM File Handling Denial of Service (CVE-2007-3875)

CA provides an anti-virus engine that is shared among multiple applications and products. The anti-virus engine is capable of scanning files stored in numerous archive format. One of these archive formats is the Microsoft compiled help files, as known as CHM. There exists a denial of service...

4.3CVSS6.3AI score0.03539EPSS
Exploits1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/07/07 2:12 a.m.1 views

Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java Possible Unauthorized Access through Zip File Scanning Utility

Overview Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java have a vulnerability that allows unauthorized access through a zip file scanning API. Impact Unauthorized access may be done when loading and scanning an external zip file. Solution Please refer to the 'Vendor...

10CVSS6.8AI score
Exploits0References2
Packet Storm
Packet Storm
added 2009/02/26 12:0 a.m.19 views

BitDefender Cross Site Scripting

Application: BitDefender Internet Security 2009 OS: Windows Xp All patches a day ------------------------------------------------------ 1 - Description 2 - Vulnerability 3 - POC/EXPLOIT ------------------------------------------------------ Description BitDefender Internet Security is a security...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/02/26 12:0 a.m.35 views

BitDefender Internet Security XSS

Application: BitDefender Internet Security 2009 OS: Windows Xp All patches a day ------------------------------------------------------ 1 - Description 2 - Vulnerability 3 - POC/EXPLOIT ------------------------------------------------------ Description BitDefender Internet Security is a security...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2008/09/13 12:0 a.m.18 views

ZoneAlarm Security Suite buffer overflow

Buffer overflow on oversized path to file being scanned...

3.5AI score
Exploits0References1
Fedora
Fedora
added 2007/06/21 8:7 p.m.19 views

[SECURITY] Fedora 7 Update: fail2ban-0.8.0-9.fc7

Fail2ban scans log files like /var/log/pwdfail or /var/log/apache/errorlog and bans IP that makes too many password failures. It updates firewall rules to reject the IP address...

1.5AI score
Exploits0
Rows per page
Query Builder