6680 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in search.php in MYRE Realty Manager allows remote attackers to inject arbitrary web script or HTML via the catid1 parameter...
CVE-2013-4207
Buffer overflow in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service crash via an invalid DSA signature that is not properly handled during computation of a modular inverse and triggers the overflow during a division by zero by the bignum functionality, a differe...
CVE-2013-3990
Cross-site scripting XSS vulnerability in the MIME e-mail functionality in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN98FLQ2...
CVE-2013-3032
Cross-site scripting XSS vulnerability in the MIME e-mail functionality in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN986NAA...
MiCasaVerde VeraLite 1.5.408 - Multiple Vulnerabilities
Exploit for php platform in category web applications Multiple Vulnerabilities in MiCasaVerde VeraLite Published: 08/01/13 Version: 1.0 Vendor: MiCasaVerde http://www.micasaverde.com/ Product: VeraLite Version affected: 1.5.408 Product description: The MiCasaVerde VeraLite is the budget model fro...
MiCasaVerde VeraLite 1.5.408 - Multiple Vulnerabilities
MiCasaVerde VeraLite 1.5.408 - Multiple Vulnerabilities Trustwave SpiderLabs Security Advisory TWSL2013-019: Multiple Vulnerabilities in MiCasaVerde VeraLite Published: 08/01/13 Version: 1.0 Vendor: MiCasaVerde http://www.micasaverde.com/ Product: VeraLite Version affected: 1.5.408 Product...
HP SiteScope Multiple Unspecified Remote Code Execution Vulnerabilities
The version of HP SiteScope installed on the remote host is potentially affected by the following code execution vulnerabilities : - Unspecified errors exist related to SOAP functionality for which no further details have been provided. CVE-2013-2367 - An error exists related to handling the SOAP...
RootPanel SQL Injection
============================================================ RootPanel All versions SQL injection/Account takeover. Discovery: AkaStep and CAMOUFL4G3 Vendor: http://www.rootpanel.ru/ ============================================================ What is RootPanel ? RootPanel is professional hosting...
CVE-2013-3759
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52 and 8.53 allows remote attackers to affect integrity via vectors related to PIA Search Functionality...
Code injection
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52 and 8.53 allows remote attackers to affect integrity via vectors related to PIA Search Functionality...
CVE-2013-3759
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52 and 8.53 allows remote attackers to affect integrity via vectors related to PIA Search Functionality...
CVE-2013-3759
Technical details for CVE-2013-3759 are not publicly available in the provided documents. Monitor for updates from Oracle CPU advisories and CVE records to confirm affected products, impact, and fixes.
Oracle Linux 6 : kernel (ELSA-2011-1189)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1189 advisory. - net nl80211: missing check for valid SSID size in scan operation Stanislaw Gruszka 718157 718158 CVE-2011-2517 - net bluetooth: l2cap and rfcomm: fix...
Oracle Linux 6 : kernel (ELSA-2013-0567)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0567 advisory. 2.6.32-358.0.1 - kernel utrace: ensure archptrace/ptracerequest can never race with SIGKILL Oleg Nesterov 912073 912074 CVE-2013-0871 Tenable has extracted the...
WordPress Plugin miniBB - SQL Injection / Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/61116/info miniBB is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities. Successful exploits could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data...
InstantCMS 1.6 Code Execution
NoTrayIcon Region ; Directives created by AutoIt3WrapperGUI AutoIt3WrapperOutfile=exploit.exe AutoIt3WrapperUseUpx=n AutoIt3WrapperChange2CUI=y EndRegion ; Directives created by AutoIt3WrapperGUI include include cs Demo vid: http://youtu.be/jRIPh-nYpY Print Screen:...
CVE-2013-2864
The PDF functionality in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service invalid free operation or possibly have unspecified other impact via unknown vectors...
Code injection
The PDF functionality in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service invalid free operation or possibly have unspecified other impact via unknown vectors...
CVE-2013-2864
Removed by vendor...
[SECURITY] Fedora 19 Update: schroot-1.4.25-13.fc19
schroot allows users to execute commands or interactive shells in different chroots. Any number of named chroots may be created, and access permissions given to each, including root access for normal users, on a per-user or per-group basis. Additionally, schroot can switch to a different user in...