Lucene search
+L

2695 matches found

cloudfoundry
cloudfoundry
added 2015/01/28 12:0 a.m.87 views

CVE-2015-0235 - GHOST | Cloud Foundry

CVE-2015-0235 – GHOST Critical Vendor Canonical, Red Hat Versions Affected Ubuntu 10.04 Lucid, 12.04 Precise, CentOS 6. Description A heap-based buffer overflow was found in nsshostnamedigitsdots, which is used by the gethostbyname and gethostbyname2 glibc function call. A remote attacker could u...

10CVSS8.3AI score0.94859EPSS
Exploits29
prion
prion
added 2014/10/16 7:55 p.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Max Foundry MaxButtons plugin before 1.26.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter in a button action on the maxbuttons-controller page to wp-admin/admin.php, related to the button creation pa...

4.3CVSS6.2AI score0.02053EPSS
Exploits3References4Affected Software1
cvelist
cvelist
added 2014/10/16 7:0 p.m.58 views

CVE-2014-7181

Cross-site scripting XSS vulnerability in the Max Foundry MaxButtons plugin before 1.26.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter in a button action on the maxbuttons-controller page to wp-admin/admin.php, related to the button creation pa...

5.7AI score0.02053EPSS
Exploits3References4
cve
cve
added 2014/10/16 7:0 p.m.55 views

CVE-2014-7181

CVE-2014-7181 concerns the WordPress plugin MaxButtons (MaxButtons WordPress plugin,

4.3CVSS5.8AI score0.02053EPSS
Exploits3References4Affected Software1
securityvulns
securityvulns
added 2014/10/16 12:0 a.m.90 views

Reflected Cross-Site Scripting (XSS) in MaxButtons WordPress Plugin

Advisory ID: HTB23237 Product: MaxButtons WordPress plugin Vendor: Max Foundry Vulnerable Versions: 1.26.0 and probably prior Tested Version: 1.26.0 Advisory Publication: September 24, 2014 without technical details Vendor Notification: September 24, 2014 Vendor Patch: October 2, 2014 Public...

4.3CVSS6.2AI score0.02053EPSS
Exploits3
cloudfoundry
cloudfoundry
added 2014/10/16 12:0 a.m.143 views

CVE-2014-3566 SSLV3 POODLE | Cloud Foundry

CVE-2014-3566 SSLV3 POODLE Moderate Vendor The SSL protocol 3.0, as used in OpenSSL through 1.0.1i Versions Affected SSLv3 Description SSL 3.0 RFC6101 is an obsolete and insecure protocol. While for most practical purposes it has been replaced by its successors TLS 1.0 RFC2246, TLS 1.1 RFC4346 an...

4.3CVSS4.4AI score0.99999EPSS
Exploits7
cloudfoundry
cloudfoundry
added 2014/09/29 12:0 a.m.64 views

CVE-2014-7186 and CVE-2014-7187 - Bash Out of Bounds | Cloud Foundry

CVE-2014-7186 and CVE-2014-7187 – Bash Out of Bounds Moderate Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 10.04 LTS and 14.04 LTS that include bash through 4.3 bash43-026 Description Off-by-one error in the readtokenword function in parse.y in GNU Bash through 4.3 bash43-026 allows...

10CVSS8AI score0.64336EPSS
Exploits14
cloudfoundry
cloudfoundry
added 2014/09/25 12:0 a.m.123 views

CVE-2014-6271 and CVE-2014-7169 - ShellShock | Cloud Foundry

CVE-2014-6271 and CVE-2014-7169 – ShellShock Important Vendor Canonical Ubuntu, CentOS Versions Affected Canonical Ubuntu 10.04 LTS that include bash CentOS 6.5 that include bash Description GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment...

10CVSS10AI score0.99999EPSS
Exploits141
cloudfoundry
cloudfoundry
added 2014/09/19 12:0 a.m.39 views

CVE-2014-5119 glib_gconv_translit_find() exploit | Cloud Foundry

CVE-2014-5119 glibgconvtranslitfind exploit Important Vendor Canonical Ubuntu Versions Affected Ubuntu 14.04 LTS Ubuntu 12.04 LTS Ubuntu 10.04 LTS Description Certain applications could be made to crash or run programs as an administrator. Off-by-one error in the gconvtranslitfind function in...

7.5CVSS8.1AI score0.18099EPSS
Exploits4
cloudfoundry
cloudfoundry
added 2014/08/18 12:0 a.m.74 views

CVE-2014-3153 Futex requeue exploit | Cloud Foundry

CVE-2014-3153 Futex requeue exploit Important to Low Vendor Canonical Ubuntu Versions Affected Linux kernel through 3.14.5 Description The futexrequeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local...

7.8CVSS6.8AI score0.37233EPSS
Exploits15
packetstorm
packetstorm
added 2014/07/21 12:0 a.m.28 views

Design Foundry Cross Site Scripting / SQL Injection

Title: Foundry CMS Multiple Vulnerability + Date: 2014/07/20 + Author: Hekt0r + Vendor Homepage: www.design-foundry.co.uk + Tested on: Windows 7 & Kali Linux + Vulnerable Files: /page.php + Dork : intext:"Site by The Design Foundry" POC: + Sql Injection: http://site/page.php?id=SQL-Injection +...

0.3AI score
Exploits0
zdt
zdt
added 2014/07/19 12:0 a.m.32 views

Foundry CMS Multiple Vulnerability

Title: Foundry CMS Multiple Vulnerability + Date: 2014/07/20 + Author: Hekt0r + Vendor Homepage: www.design-foundry.co.uk + Tested on: Windows 7 & Kali Linux + Vulnerable Files: /page.php + Dork : intext:"Site by The Design Foundry" + Title: Foundry CMS Multiple Vulnerability + Date: 2014/07/20 +...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.16 views

Belchior Foundry VCard 2.8 Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9910/info It has been reported that vCard is prone to a remote authentication bypass vulnerability. This issue is due to a design error that would allow a malicious user access to certain admin functionality without havin...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.14 views

Belchior Foundry VCard 2.9 - Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15207/info vCard is prone to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary remote...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.18 views

Belchior Foundry vCard Pro 3.1 Addrbook.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15254/info vCard PRO is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

7.1AI score
Exploits0
threatpost
threatpost
added 2013/09/18 6:48 a.m.11 views

Researchers Build Undetectable Dopant Hardware Trojans

Is it so outlandish anymore to consider that an attacker interested in military, political or corporate espionage would be able to infiltrate a supply chain and drop malware onto an integrated circuit? Evidence of hardware-based Trojans is anecdotal at best, and experts believe a change in...

0.2AI score
Exploits0References3
exploitpack
exploitpack
added 2012/03/19 12:0 a.m.37 views

ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet - Directory Traversal

ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet - Directory Traversal ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Directory Traversal Database Backup / auth-conf.xml Disclosure Exploit product homepage:...

0.1AI score
Exploits0
packetstorm
packetstorm
added 2012/03/19 12:0 a.m.45 views

ManageEngine Device Expert 5.6 Directory Traversal

ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Directory Traversal Database Backup / auth-conf.xml Disclosure Exploit product homepage: http://www.manageengine.com/products/device-expert/ file tested: ManageEngineDeviceExpert.exe tested against:...

Exploits0
exploitdb
exploitdb
added 2012/03/19 12:0 a.m.42 views

ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet - Directory Traversal

ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Directory Traversal Database Backup / auth-conf.xml Disclosure Exploit product homepage: http://www.manageengine.com/products/device-expert/ file tested: ManageEngineDeviceExpert.exe tested against:...

7.4AI score
Exploits0
zdt
zdt
added 2010/09/02 12:0 a.m.35 views

Accton-based switches (3com, Dell, SMC, Foundry, EdgeCore) Backdoor

Exploit for windows platform in category remote exploits =================================================================== Accton-based switches 3com, Dell, SMC, Foundry, EdgeCore Backdoor =================================================================== On the 15th of august 2009, at the...

6.7AI score
Exploits0
Rows per page
Query Builder