UBUNTU-CVE-2014-5262

SQL injection vulnerability in the graph settings script graphsettings.php in Cacti 0.8.8b and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

Nagios XI Network Monitor Graph Explorer Component Command Injection

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Cacti <= 0.8.7e - OS Command Injection

The vulnerability can be triggered by any user doing: 1 Edit or Create a Device with FQDN ‘NotARealIPAddress;CMD;’ without single quotes and Save it. Edit the Device again and reload any data query already created. CMD will be executed with Web Server rights. 2 Edit or Create a Graph Template and...

Alienvault 4.3.1 - SQL Injection / Cross-Site Scripting

AlienVault 4.3.1 Unauthenticated SQL Injection Vulnerability Type: SQL Injection Reporter: Sasha Zivojinovic Company: Gotham Digital Science Affected Software: AlienVault 4.3.1 Severity: Critical =========================================================== Summary...

DEBIAN-CVE-2014-2328

lib/graphexport.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in unspecified vectors...

UBUNTU-CVE-2014-2328

lib/graphexport.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in unspecified vectors...

CVE-2014-2708

Multiple SQL injection vulnerabilities in graphxport.php in Cacti 0.8.7g, 0.8.8b, and earlier allow remote attackers to execute arbitrary SQL commands via the 1 graphstart, 2 graphend, 3 graphheight, 4 graphwidth, 5 graphnolegend, 6 printsource, 7 localgraphid, or 8 rraid parameter...

UBUNTU-CVE-2014-2708

Multiple SQL injection vulnerabilities in graphxport.php in Cacti 0.8.7g, 0.8.8b, and earlier allow remote attackers to execute arbitrary SQL commands via the 1 graphstart, 2 graphend, 3 graphheight, 4 graphwidth, 5 graphnolegend, 6 printsource, 7 localgraphid, or 8 rraid parameter...

[SECURITY] Fedora 19 Update: graphviz-2.30.1-12.fc19

A collection of tools for the manipulation and layout of graphs as in nodes and edges, not as in barcharts...

[SECURITY] Fedora 20 Update: graphviz-2.34.0-8.fc20

A collection of tools for the manipulation and layout of graphs as in nodes and edges, not as in barcharts...

[FBHT v2.0] Facebook Hacking Tool

FBHT F aceb ook H ackingT ool is an open-source tool written in Python that exploits multiple vulnerabilities on the Facebook platform The tool provides: Tests account handling Create, Delete, Friend, Accept Youtube videos phishing Facebook links preview modification Friends list privacy bypass...

[APKinspector] Powerful GUI tool to analyze the Android applications

The goal of this project is to aide analysts and reverse engineers to visualize compiled Android packages and their corresponding DEX code. APKInspector provides both analysis functions and graphic features for the users to gain deep insight into the malicious apps: CFG Call Graph Static...

Fedora 20 : monitorix-3.4.0-1.fc20 (2013-22649)

3.4.0 - 02-Dec-2013 ==================== - Added a complete statistical Memcached graph. 27 - Added support for different BIND stats versions 2 and 3 right now. thanks to Ivo Brhel, ivb AT volny.cz - Added two new alerts in the 'disk' graph in order to know if a disk drive has exceeded or reached...

FBstalker Does Data Mining on Facebook Graph Search

Facebook’s Graph Search feature connects a lot of dots between friends on the social network—as well as between others who interact with your Facebook friends. Anyone with a keyboard has a nifty data mining tool at their fingertips that can bring up an intricate list of friends and acquaintances,...

Fedora 18 : php-pecl-xhprof-0.9.4-1.fc18 (2013-18049)

From Release notes : - Fix reflected XSS with run parameter. PR20 and 29 - Change graph edge colour. PR23 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much...

Fedora 19 : php-pecl-xhprof-0.9.4-1.fc19 (2013-18094)

From Release notes : - Fix reflected XSS with run parameter. PR20 and 29 - Change graph edge colour. PR23 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much...

Facebook Graph Search becomes more powerful than ever, Review your Privacy Settings again

Facebook Graph Search is more powerful than ever, has been updated to allow people to search in greater depth on Facebook. Facebook expanded its Graph Search to include posts and status updates, which means everything you've been posting is way easier to find than ever before. "Now you will be ab...

Facebook Graph Search becomes more powerful than ever, Review your Privacy Settings again

Facebook Graph Search is more powerful than ever, has been updated to allow people to search in greater depth on Facebook. Facebook expanded its Graph Search to include posts and status updates, which means everything you’ve been posting is way easier to find than ever before. "Now you will be ab...

Kernel: tracing: NULL pointer dereference

The ftrace implementation in the Linux kernel before 3.8.8 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging the CAPSYSADMIN capability for write access to the 1 setftracepid or 2 setgraphfunction file...

Nagios XI Network Monitor Graph Explorer Component Command Injection

A Command Injection vulnerability exists in Nagios XI Network Monitor Graph Explorer Component...