6680 matches found
[SECURITY] Fedora 24 Update: wavpack-5.1.0-1.fc24
WavPack is a completely open audio compression format providing lossless, high-quality lossy, and a unique hybrid compression mode. Although the technology is loosely based on previous versions of WavPack, the new version 4 format has been designed from the ground up to offer unparalleled...
Design/Logic Flaw
A vulnerability in the implementation of Common Industrial Protocol CIP functionality in Cisco Industrial Ethernet 2000 Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition due to a system memory leak. More Information: CSCvc54788. Known...
Cross site scripting
IBM Infosphere BigInsights is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...
bulls.de XSS vulnerability
Vulnerable URL: https://www.bulls.de/suchergebnis.html?query=1zqjyo...
expert-technomarkt.de XSS vulnerability
Vulnerable URL: https://www.expert-technomarkt.de/index.php?stoken=sid=〈=0=search=1zqjvh%27%22...
br.msi.com XSS vulnerability
Vulnerable URL: https://br.msi.com/search/...
pl.msi.com XSS vulnerability
Vulnerable URL: https://pl.msi.com/search/...
es.msi.com XSS vulnerability
Vulnerable URL: https://es.msi.com/search/...
koh-i-noor.cz XSS vulnerability
Vulnerable URL: http://www.koh-i-noor.cz/en/search?s=%27;alert/XSSPOSED///%27;alert/XSSPOSED///%22;alert/XSSPOSED///%22;alert/XSSPOSED///--%3E%3C/sCRipT%3E%22%3E%27%3E%3CsCRipT%3Ealert/XSSPOSED/%3C/sCRipT%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017...
CVE-2017-3299
CVE-2017-3299 describes a vulnerability in the Oracle PeopleSoft Enterprise PeopleTools (subcomponent: PIA Search Functionality). Affected versions are 8.54 and 8.55. The issue allows an unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Success...
CVE-2016-9054
An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function assindexsimatchlistbysetbinid resulting in remote code execution. An attacker can...
CVE-2016-9052
An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function assindexsimatchbyiname resulting in remote code execution. An attacker can simply...
PT-2017-2401 · Aerospike · Aerospike Database Server
Name of the Vulnerable Software and Affected Versions: Aerospike Database Server version 3.10.0.3 Description: A stack-based buffer overflow issue exists in the querying functionality. This can be triggered by a specially crafted packet, causing a buffer overflow in the as sindex simatch list by...
Netscaler round robin algorithm
How to troubleshoot round robin method to confirm functionality?...
drk.de XSS vulnerability
Vulnerable URL: https://www.drk.de/suche/?id=502kesearchpi1page=1kesearchpi1sword=test"alert/OPENBUGBOUNTY/...
Alt+Tab Does Not Pass Through the VDI in ICA Session
When pressing Alt+Tab while on a VDI in ICA session Full Screen, the apps show up from the endpoint and not from the VDI...
CVE-2015-8684
Exponent CMS before 2.3.7 does not properly restrict the types of files that can be uploaded, which allows remote attackers to conduct cross-site scripting XSS attacks and possibly have other unspecified impact as demonstrated by uploading a file with an .html extension, then accessing it via the...
FAQ: Cloud backup of XenMobile managed devices
Is the Worx data encrypted within the backup? If so what is the encryption level? Yes, as Xenmobile uses the iCloud services from Apple for backing up the data: iCloud secures your data by encrypting it when it's sent over the Internet, storing it in an encrypted format when kept on server review...
schwancosmetics.com XSS vulnerability
Vulnerable URL: https://www.schwancosmetics.com/de/service/suche.htm?q=jhhhl=changed...
strategy2050.kz XSS vulnerability
Vulnerable URL: http://strategy2050.kz/ru/search/?query=xxxx%22%3E%3Csvg%20onload=alert%27OPENBUGBOUNTY%27%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 269661 VIP website...