Microsoft Internet Explorer Add-on Installer Enhanced Protected Mode Sandbox Escape Vulnerability

This vulnerability allows attackers to escape from the Enhanced Protected Mode sandbox on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

WordPress Woocommerce 2.6.2 API Cross Site Scripting

------------------------------------------------------------------------ Persistent Cross-Site Scripting in Woocommerce WordPress plugin ------------------------------------------------------------------------ Sipke Mellema, July 2016...

SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2016:2195-1)

Mozilla Firefox was updated to 45.3.0 ESR to fix the following issues bsc991809 : - MFSA 2016-62/CVE-2016-2835/CVE-2016-2836 Miscellaneous memory safety hazards rv:48.0 / rv:45.3 - MFSA 2016-63/CVE-2016-2830 Favicon network connection can persist when page is closed - MFSA 2016-64/CVE-2016-2838...

Untangle NG Firewall RCE Vulnerability

The remote Untangle NG Firewall is prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Amazon AWS XSS Protection Bypass

Exploit Author: Ajay Gowtham Vendor: ========================== http://aws.amazon.com/ Amazon Web Services, is a subsidiary of Amazon.com, which offers a suite of cloud computing services that make up an on-demand computing platform. These services operate from 12 geographical regions across the...

IBM Connections File Upload Vulnerability

IBM Connections is a suite of social software platforms from IBM in the United States. The platform provides advanced analytics and real-time data monitoring capabilities, and accelerates web collaboration within and outside the organization through IBM SmartCloud services. A file upload...

Baidu Spark Browser 43.23.1000.476 - Address Bar URL Spoofing

Software Link:http://en.browser.baidu.com/query/fullpackage.exe?lang=en Version:43.23.1000.476 Tested on:Win7/WinXP details: The baidu spark browser is vulnerable to Address Bar Spoofing in the latest version of the browser43.23.1000.476. Using the specail javascript code it was able to spoof the...

Updated w3m packages fix security vulnerabilities

Updated w3m package fixes security vulnerability: A vulnerability was found in w3m package. A maliciously crafted html file opened with specific command could cause the application to crash rhbz1324348...

Ipswitch MOVEit File Transfer Cross-Site Scripting Vulnerability

Ipswitch MOVEit File Transfer formerly known as DMZ an automated file transfer system from the US company Ipswitch. A cross-site scripting vulnerability exists in Ipswitch MOVEit File Transfer 8.1 and earlier versions, which can be exploited by remote attackers to conduct cross-site scripting...

HackerOne: DOS Report FILE html inside <code> in markdown

LOOK rezult https://hackerone.com/reports/127809 F82764 POC Copy in F82766 TXT file all and create a new review I warn you , if you do this , then the report cannot open . You can create a report , attach files and replace my files F82764 and F82765 , paste in the contents of the report and creat...

Pligg CMS 2.0.2 - Arbitrary Code Execution Exploit

Exploit for php platform in category web applications Hacked '; Code You Can Customize Exploit For Your Self . Exploit : -- textarea type="hidden"id="textarea-1" name="pageconten...

Cryptowall 3.0 Infections Spike from Angler EK, Malicious Spam

Since the Angler Exploit Kit began in late May spreading Cryptowall 3.0 ransomware, traffic containing the malware has continued to grow, putting more potential victims in harm’s way. Today, the SANS Internet Storm Center reported that Cryptowall 3.0 infections are emanating from not only the...

Technical analysis: local SWF files can be any local file leaked to the Internet-vulnerability warning-the black bar safety net

Flash file in design time it allows local swf files to read arbitrary local files. Flash Player version is not higher than 7, the local SWF files with other SWF file is interactive and can be accessed from any remote or local location of the loaded data. Principles In Flash Player 8 and later, SW...

Fedora 20 : clamav-0.98.7-1.fc20 (2015-7378)

ClamAV 0.98.7 ============= This release contains new scanning features and bug fixes. - Improvements to PDF processing: decryption, escape sequence handling, and file property collection. - Scanning/analysis of additional Microsoft Office 2003 XML format. - Fix infinite loop condition on crafted...

FreeBSD : wordpress -- 2 XSS vulnerabilities (d86890da-f498-11e4-99aa-bcaec565249c)

Samuel Sidler reports : The Genericons icon font package, which is used in a number of popular themes and plugins, contained an HTML file vulnerable to a cross-site scripting attack. All affected themes and plugins hosted on WordPress.org including the Twenty Fifteen default theme have been updat...

Microsoft HSC URL Remote Code Execution (MS04-015) - Ver2 (CVE-2004-0199)

A vulnerability exists in the way Microsoft Help and Support Center HSC validates URLs with the scheme hcp://. There is a vulnerability in the way the Microsoft Help and Support Center processes URL strings. The vulnerability could be exploited to download and execute malicious programs on a...

FineCMS a lightweight version of the csrf vulnerability in the background to add management+any hung black page-bug warning-the black bar safety net

! FineCMS a lightweight version of the csrf vulnerability in the background to add management+any hung black page 2, the capture truncation ! FineCMS a lightweight version of the csrf vulnerability in the background to add management+any hung black page No verification 3, The structure of the for...

ECStore开源网店系统任意文件修改漏洞可拿shell

简要描述： 模板编辑中的文件编辑功能，对可编辑的文件限制不严，导致可以修改系统中存在的任意文件 详细说明： 文件编辑功能中选择要修改的文件，这里选图片（模板文件也可以），然后上传图片时将filename参数设置为网站的任意php文件，如/index.php或/config/config.php，将图片内容设置为shell内容。。。。 post数据如下： POST /index.php/shopadmin/index.php?app=site&ctl=adminexplorertheme&act=saveimage HTTP/1.1 Host: shop.xxx.com...

[SECURITY] Fedora 19 Update: libxml2-2.9.1-2.fc19

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

Advantech WebAccess Stack-based Buffer Overflow

Advisory ID Internal CORE-2014-0010 1. Advisory Information Title: Advantech WebAccess Stack-based Buffer Overflow Advisory ID: CORE-2014-0010 Advisory URL:http://www.coresecurity.com/advisories/advantech-webaccess-stack-based-buffer-overflow Date published: 2014-11-19 Date of last update:...