1746 matches found
TP-Link TL-WA701N / TL-WA701ND - Multiple Vulnerabilities
No description provided by source. Device Name: TL-WA701N / TL-WA701ND Vendor: TP-Link ============ Vulnerable Firmware Releases: ============ Firmware Version: 3.12.6 Build 110210 Rel.37112n Firmware Version: 3.12.16 Build 120228 Rel.37317n - Published Date 2/28/2012 Hardware Version: WA701N v1...
Logics Software LOG-FT Arbitrary File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12998/info LOG-FT is reported prone to an arbitrary file disclosure vulnerability. This issue results from an access validation error and can allow a remote attacker to disclose sensitive data. It is reported that an...
Invision Power Board 1.x Unauthorized Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13802/info Invision Power Board is affected by an unauthorized access vulnerability. Reportedly, a moderator can edit forum posts owned by other moderators through an HTTP GET request without providing sufficient...
Snowblind Web Server 1.0/1.1 HTTP GET Request Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7619/info Snowblind Web Server has been reported prone to a buffer overflow vulnerability. The vulnerability exists when the web server attempts to process HTTP requests of excessive length. Although unconfirmed, this...
Loom Software SurfNow 1.x/2.x Remote HTTP GET Request Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9519/info A problem has been identified in the handling of specific types of requests by SurfNOW. Upon receiving specially crafted HTTP GET requests, it is possible for a remote attacker to crash a vulnerable...
profitcode software payprocart 3.0 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13006/info ProfitCode Software PayProCart may allow a remote attacker to carry out directory traversal attacks. It is reported that this issue can be exploited by issuing a specially crafted HTTP GET request and supplying...
Hummingbird Collaboration - Crafted URL File Property Obscuration Download
No description provided by source. source: http://www.securityfocus.com/bid/16195/info Hummingbird Enterprise Collaboration is prone to multiple vulnerabilities. The following specific issues were identified: The application reportedly allows remote attackers to upload arbitrary HTML files and...
XtreamerPRO Media-player 2.6.0 & 2.7.0 - Multiple Vulnerabilities
No description provided by source. Exploit Title: XtreamerPRO Media-player and streamer multiple vulnerabilities Google Dork: intitle:Xtreamer Media Server + 2009 Xtreamer.net, All right reserved. Date: 15/05/2011 Author: Itzik Chen Software Link: www.xtreamer.net Version: ver 2.6.0, 2.7.0 Tested...
Red Hat Apache 2.0.40 Directory Index Default Configuration Error
No description provided by source. source: http://www.securityfocus.com/bid/8898/info The Red Hat Apache configuration may allow an attacker to view directory listings. The problem is reported to present itself when an attacker issues an HTTP GET request to a vulnerable server containing '//'...
DreamBox DM800 Arbitrary File Download Vulnerability
No description provided by source. Exploit Title: title Date: date Author: ShellVision Version: dm800 = 1.6rc3 Tested on: dm800 Release 4.6.0 2009-12-24 DreamBox DM800 Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected...
Max Feoktistov Small HTTP server 1.212 Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/1355/info A buffer overflow is present in certain versions of the Small HTTP Server . The overflow in question is triggered by an overlong 65000 or more characters malformed HTTP GET request to the webserver...
Savant Web Server 3.1 Page Redirect Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8712/info Savant Web Server is prone to a denial of service vulnerability. The server reportedly goes into an infinite loop upon receipt of a specially crafted HTTP GET request that causes the server to repeatedly redirec...
Gitlist RCE Vulnerability
Gitlist is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
openSIS 5.3 Cross Site Request Forgery
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 openSIS 4.5 - 5.3 Cross Site Request Forgery Vulnerability ========================================================== Author: Ubani Anthony Balogun Reported: June 26, 2014 Product Description: - -------------------- openSIS, is a free student...
Assesi 'bg' Parameter SQL Injection vulnerability
Assesi is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : firefox / seamonkey / thunderbird (openSUSE-SU-2014:0212-1)
Mozilla Firefox was updated to version 27. Mozilla SeaMonkey was updated to 2.24, fixing similar issues as Firefox 27. Mozilla Thunderbird was updated to 24.3.0, fixing similar issues as Firefox 27. The Firefox 27 release brings TLS 1.2 support as a major security feature. It also fixes following...
SafeNet Sentinel Protection Server and Sentinel Keys Server Directory Traversal (Apr 2014) - Active Check
SafeNet Sentinel Protection Server and Sentinel Keys Server are prone to a directory traversal vulnerability because they fail to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...
Vulnerability Allows Anyone to DDoS Websites Using Facebook Servers
Reading a 'Note' created by anyone on the Facebook could trick you automatically to do malicious attacks against others unknowingly. A Security researcher Chaman Thapa, also known as chr13 claims that the flaw resides in 'Notes' section of the most popular social networking site - Facebook, that...
CVE-2014-2976
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...
Directory traversal
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote attackers to read arbitrary files via a .. dot dot in an HTTP GET request to TCP port 18081...