CVE-2016-6257

The CVE relates to Lenovo Ultraslim dongles used with Liteon keyboards/mice where the firmware does not enforce incrementing AES counters, enabling an attacker in close proximity to inject encrypted keyboard input (KeyJack injection attack). Affected components are the Ultraslim Wireless keyboard...

Multiple vulnerabilities in the Joomla! Huge-IT Catalog extension (CNVD-2016-05855)

Joomla! is an open source content management system CMS developed by the Open Source Matters team in the United States. The system provides RSS feeds, site search, etc. Huge-IT Catalog is one of the extensions to display products in the most attractive way. SQL injection vulnerabilities and...

SQL injection vulnerability in the distance learning platform courses.htm?recommend= parameter of Shenzhen Tengchuang Network Technology Co.

Tengchuang Internet Distance Education Platform is an online knowledge trading platform centered on real-time interactive online classroom, combining powerful functions such as courseware on-demand, course transaction, online payment, and online examination, etc. for students and teachers in...

Shopify: XSS on https://app.shopify.com/

DESCRIPTION =========== It has been identified that the page located at https://app.shopify.com/ is prone to cross-site scripting issues. Cross-site Scripting XSS refers to client-side code injection attack wherein an attacker can execute malicious scripts also commonly referred to as a malicious...

Mageia: Security Advisory (MGASA-2015-0484)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated php-phpmailer packages fix CVE-2015-8476

Updated php-phpmailer package fixes security vulnerability: Takeshi Terada discovered that PHPMailer accepted addresses containing line breaks. This is valid in RFC5322, but allowing such addresses resulted in invalid RFC5321 SMTP commands, permitting a kind of message injection attack...

SMTP command injection

Net::SMTP is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring. Applications that validate email address format are not affected by this vulnerability. The injection attack is...

SQL Injection Vulnerability in Fujian Sichuang Flash Flood Monitoring and Warning System

Fujian SiChuang Software Co., Ltd. is a technology-based enterprise dedicated to the cause of disaster prevention and mitigation in China. A SQL injection vulnerability exists in Fujian SiChuang's flash flood monitoring and early warning system, which allows attackers to utilize commonly used SQL...

Google AdWords API PHP Client Library 6.2.0 XXE Injection Vulnerability

Google AdWords API PHP client library versions 6.2.0 and below suffer from an XML eXternal Entity injection vulnerability. ============================================= - Release date: 06.11.2015 - Discovered by: Dawid Golunski - Severity: Medium/High =============================================...

SQL Injection Vulnerability in Cloud Recording and Broadcasting Platform of Beijing Hanboer Information Technology Co.

The Cloud Recording Platform is a platform that automatically uploads lessons recorded through multimedia teaching recording technology. A SQL injection vulnerability exists in the Cloud Recording Platform of Beijing Humber Information Technology Co. An attacker can use it to obtain sensitive...

Drupal EntityBulkDelete Module Cross-Site Scripting Vulnerability

Drupal is a free, open source content management system developed in PHP.EntityBulkDelete is a module for bulk deletion of any type of entity. A cross-site scripting vulnerability exists in the Drupal EntityBulkDelete module, which allows remote attackers to exploit the vulnerability to inject...

TYPO3 wt_directory extension SQL injection vulnerability

TYPO3 is a free and open source content management system. wtdirectory is an extension plugin capable of displaying addresses from the ttaddress list. A SQL injection vulnerability exists in TYPO3 wtdirectory, which allows remote attackers to exploit the vulnerability to submit specially crafted...

SAP ASE Database Platform SQL Injection Vulnerability

SAP ASE Database Platform is a set of database management platform of Germany SAP SAP. A SQL injection vulnerability exists in SAP ASE Database Platform. A remote attacker could exploit this vulnerability to execute arbitrary SQL commands...

Fedora 22 : php-ZendFramework-1.12.13-1.fc22 (2015-8704)

Zend Framework 1.12.13 - 567: Cast int and float to string when creating headers Zend Framework 1.12.12 - 493: PHPUnit not being installed - 511: Add PATCH to the list of allowed methods in ZendControllerRequestHttpTestCase - 513: Save time and space when cloning PHPUnit - 515: !IE conditional...

60+ Vulnerabilities In 22 SOHO Routers

Dear PacketStorm community, we are a group of security researchers doing our IT Security Master's Thesis at Universidad Europea de Madrid. As a part of the dissertation, we have discovered multiple vulnerability issues on the following SOHO routers: 1. Observa Telecom AW4062 2. Comtrend WAP-5813n...

Debian DLA-215-1 : libjson-ruby security update

The JSON gem for Ruby allowed remote attackers to cause a denial of service resource consumption or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbols or certain internal objects, as demonstrated by conducting a SQL...

DLA-215-1 libjson-ruby - security update

Bulletin has no description...

WordPress 4.2 - Stored XSS Vulnerability

Exploit for php platform in category web applications Overview Current versions of WordPress are vulnerable to a stored XSS. An unauthenticated attacker can inject JavaScript in WordPress comments. The script is triggered when the comment is viewed. If triggered by a logged-in administrator, unde...

WordPress Plugin Tune Library 1.5.4 - SQL Injection

WordPress Plugin Tune Library 1.5.4 - SQL Injection ======================================================================= title: SQL Injection product: WordPress Tune Library Plugin vulnerable version: 1.5.4 and probably below fixed version: 1.5.5 CVE number: CVE-2015-3314 impact: CVSS Base Sco...

WordPress Tune Library 1.5.4 SQL Injection

======================================================================= title: SQL Injection product: WordPress Tune Library Plugin vulnerable version: 1.5.4 and probably below fixed version: 1.5.5 CVE number: CVE-2015-3314 impact: CVSS Base Score 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P homepage:...