Cisco Unified Communications Manager Java Interface SQL Injection Vulnerability

A vulnerability in BulkViewFileContentsAction.java of Cisco Unified Communications Manager Cisco Unified CM could allow an authenticated, remote attacker to access sensitive information. The vulnerability is due to improper filename parameters. An attacker could exploit this vulnerability by...

CVE-2014-3287

Affected software : Cisco Unified Communications Manager (Cisco Unified CM) – Java interface, specifically the BulkViewFileContentsAction.java. Vulnerability : SQL injection via crafted filename parameters in a URL, leading to arbitrary SQL execution. Impact : Authenticated, remote attacker could...

NG WifiTransfer Pro 1.1 Local File Inclusion

Document Title: =============== NG WifiTransfer Pro 1.1 - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1260 Release Date: ============= 2014-04-28 Vulnerability Laboratory ID VL-ID: ==================================== 1260...

AllReader 1.0 Local File Inclusion

Document Title: =============== AllReader v1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1269 Release Date: ============= 2014-05-26 Vulnerability Laboratory ID VL-ID: ==================================== 1269...

Privacy Pro 1.2 HZ iOS - Local File Inclusion

Privacy Pro 1.2 HZ iOS - Local File Inclusion Document Title: =============== Privacy Pro v1.2 HZ iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1267 Release Date: ============= 2014-05-23 Vulnerability Laboratory ID...

Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities

Document Title: =============== Bluetooth Photo-File Share v2.1 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1270 Release Date: ============= 2014-05-30 Vulnerability Laboratory ID VL-ID:...

WinRAR Filename Spoofing

A vulnerability in WinRAR allows attackers to spoof filenames within a compressed archive. A remote attacker can exploit this vulnerability to entice victims to run arbitrary files...

Privacy Pro v1.2 HZ iOS - File Include Web Vulnerability

Document Title: =============== Privacy Pro v1.2 HZ iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1267 Release Date: ============= 2014-05-22 Vulnerability Laboratory ID VL-ID: ====================================...

RARLAB WinRAR Zip Format Filename Spoofing

A file name spoofing vulnerability has been reported in RARLAB's WinRAR. The vulnerability is due to a design weakness when processing zip format archives. Successful exploitation could allow for arbitrary code execution in the security context of the logged in user...

Files Desk Pro v1.4 iOS - File Include Web Vulnerability

Document Title: =============== Files Desk Pro v1.4 iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1266 Release Date: ============= 2014-05-15 Vulnerability Laboratory ID VL-ID: ====================================...

UBUNTU-CVE-2013-2226

Multiple SQL injection vulnerabilities in GLPI before 0.83.9 allow remote attackers to execute arbitrary SQL commands via the 1 usersidassign parameter to ajax/ticketassigninformation.php, 2 filename parameter to front/document.form.php, or 3 table parameter to ajax/comments.php...

DEBIAN-CVE-2011-2514

The Java Network Launching Protocol JNLP implementation in IcedTea6 1.9.x before 1.9.9 and before 1.8.9, and IcedTea-Web 1.1.x before 1.1.1 and before 1.0.4, allows remote attackers to trick victims into granting access to local files by modifying the content of the Java Web Start Security Warnin...

Executable File With Non-Executable File Extension Arbitrary File Execution

Certain malicious executable files can be hidden using arbitrary filename extensions. A remote attacker could exploit this vulnerability to entice unsuspecting users to execute arbitrary files...

74CMS设计缺陷导致被脱裤（有服务器环境限制）

简要描述： 详细说明： 首先我们来科普一下windows的短文件名，也就是下面我们要用到的。 WooYun: ThinkSAAS某处设计缺陷可能导致被拖库利用（环境与功能条件限制） 见上面漏洞的科普介绍，这里我们直接利用吧。 74cms的数据库备份如下： //执行备份 elseif$act =='dobackup' checkpermissions$SESSION'adminpurview',"database"; if !fileexists"../data/".$backupdir."/"adminmsg"备份文件存放目录data/".$backupdir."不存在！",0; if...

Free Download Manager buffer overflow

Buffer overflow via filename...

[SECURITY] [DSA 2915-2] dpkg security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2915-2 [email protected] http://www.debian.org/security/ Raphael Geissert April 30, 2014 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2915-2] dpkg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2915-2 [email protected] http://www.debian.org/security/ Raphael Geissert April 30, 2014 http://www.debian.org/security/faq -...

DEBIAN-CVE-2014-0471

Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quoting."...

Directory traversal

Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quoting."...

CVE-2014-0471

Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quoting."...