72 matches found
EUVD-2004-2091
Malware in sbrugna...
EUVD-2007-4408
Malware in sbrugna...
EUVD-2007-4124
Malware in sbrugna...
EUVD-2014-5808
Malware in sbrugna...
WordPress Index WP MySQL For Speed plugin < 1.4.18 - Reflected XSS vulnerability
Reflected XSS vulnerability discovered by Guido Iván García Duva in WordPress Plugin Index WP MySQL For Speed versions 1.4.18...
CVE-2024-4977
The vulnerability CVE-2024-4977 affects the Index WP MySQL For Speed WordPress plugin, where versions prior to 1.4.18 do not sanitize or escape a parameter before outputting it, enabling a Reflected XSS against high-privilege users (e.g., admins). Patch: fixed in version 1.4.18. This CVE has corr...
WordPress plugin Index WP MySQL For Speed Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
Need for Speed™ Network - Certificates or keys found, External URLs, KeyStore usage vulnerabilities
HackApp vulnerability scanner discovered that application Need for Speed™ Network published at the 'play' market has multiple vulnerabilities...
CVE-2014-5921
The Need for Speed Network aka com.ea.nfsautolog.bv application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Need for Speed Network aka com.ea.nfsautolog.bv application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5921
The CVE-2014-5921 entry concerns the Need for Speed Network Android app (version 1.0.1) and its SSL/TLS trust handling. The vulnerability is that the app does not verify X.509 certificates from SSL servers, enabling a man-in-the-middle to spoof servers and obtain sensitive information via a craft...
CVE-2014-5921
The Need for Speed Network aka com.ea.nfsautolog.bv application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Live For Speed S1/S2 - Multiple Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/25327/info Live For Speed is prone to four vulnerabilities, including buffer-overflow and denial-of-service issues. Successful exploits could allow attackers to execute arbitrary code or to crash game servers...
Live for Speed Skin Name Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26066/info Live for Speed is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploi...
Live For Speed 2 Version Z - (.mpr) Buffer Overflow Exploit (SEH)
No description provided by source. !/usr/bin/python | || | / \ | | | | | | | | | - | | | / / | | |||| || // / |\ || Bug : Live For Speed 2 Version Z .mpr Buffer Overflow Exploit SEH Tested on : Xp sp3 ENVB Original exploit : http://www.milw0rm.com/exploits/9142 Seh Exploit : His0k4 Greetings :...
Fake Angry Birds Game spreading Malware from Android Market
Fake Angry Birds Game spreading Malware from Android Market From last week premium rate SMS Trojans surfaced in the Android Market. Google has pulled 22 apps that are masquerading as legitimate versions of popular games like Angry Birds and Cut the Rope. Security researchers have discovered a way...
EA Need For Speed Underground Detection
The remote host is running a client relay service for Electronic Arts Need For Speed Underground or a clone of that game. This is a kind of port mapper in that the service provides dynamic port numbers to client software. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
Live For Speed S2 - Duplicate Join Packet Remote Denial of Service
source: https://www.securityfocus.com/bid/36114/info Live For Speed S2 is prone to a remote denial-of-service vulnerability because the application fails to handle exceptional conditions. An attacker could exploit this issue to restart races on vulnerable servers, resulting in a denial-of-service...
Live For Speed S2 - Duplicate Join Packet Remote Denial of Service
Live For Speed S2 - Duplicate Join Packet Remote Denial of Service source: https://www.securityfocus.com/bid/36114/info Live For Speed S2 is prone to a remote denial-of-service vulnerability because the application fails to handle exceptional conditions. An attacker could exploit this issue to...
Live For Speed 2 Version Z (.mpr ) Buffer Overflow Exploit (SEH)
Exploit for unknown platform in category local exploits ================================================================ Live For Speed 2 Version Z .mpr Buffer Overflow Exploit SEH ================================================================ !/usr/bin/python | || | / \ | | | | | | | | | - | |...