175 matches found
Authentication flaw
Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 allow remote attackers to bypass authentication and change settings via a JSON API call...
CVE-2016-5668
Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 allow remote attackers to bypass authentication and change settings via a JSON API call...
CVE-2016-5668
CVE-2016-5668 affects Crestron DM-TXRX-100-STR devices running firmware before 1.3039.00040. The vulnerability is an authentication bypass in the device’s web management interface, where a JSON API call can modify device settings without authentication (Missing Authentication for Critical Functio...
Docebo LMS 6.9 - (Moxie) API Calls RST RCE Vulnerability
Document Title: =============== Docebo LMS 6.9 - Moxie API Calls RST RCE Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1888 Video: http://www.vulnerability-lab.com/getcontent.php?id=1892 Release Date: ============= 2016-08-01 Vulnerabilit...
SQLMap Web Front End
PHP Front end to work with the SQLMAP JSON API Server sqlmapapi.py to allow for a Web GUI to drive near full functionality of SQLMAP! Windows 2003 Server, IIS/6.0 + ASP + MS-SQL 2005 SQLMap Web GUI Requirements: Linux, Apache, PHP check your favorite distro’s wiki or forum pages, or use google PH...
[SECURITY] Fedora 20 Update: couchdb-1.6.1-4.fc20
Apache CouchDB is a distributed, fault-tolerant and schema-free document-oriented database accessible via a RESTful HTTP/JSON API. Among other features, it provides robust, incremental replication with bi-directional conflict detection and resolution, and is queryable and indexable using a...
[SECURITY] Fedora 20 Update: couchdb-1.6.0-9.fc20
Apache CouchDB is a distributed, fault-tolerant and schema-free document-oriented database accessible via a RESTful HTTP/JSON API. Among other features, it provides robust, incremental replication with bi-directional conflict detection and resolution, and is queryable and indexable using a...
SEC Consult SA-20131004-0 :: SQL injection vulnerability in Zabbix
SEC Consult Vulnerability Lab Security Advisory 20131004-0 ======================================================================= title: SQL injection vulnerability product: Zabbix vulnerable version: =2.0.8 fixed version: 2.0.9rc1 CVE number: CVE-2013-5743 impact: critical homepage:...
Fedora Update for couchdb FEDORA-2013-1375
Check for the Version of couchdb OpenVAS Vulnerability Test Fedora Update for couchdb FEDORA-2013-1375 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Liferay JSON Server API Authentication
============================================= - Release date: August 3rd, 2012 - Discovered by: Danilo Massa & Enrico Cinquini - Severity: High ============================================= I. VULNERABILITY ------------------------- Liferay JSON service API authentication vulnerability II...
Fedora Update for couchdb FEDORA-2011-7232
Check for the Version of couchdb OpenVAS Vulnerability Test Fedora Update for couchdb FEDORA-2011-7232 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
[SECURITY] Fedora 15 Update: couchdb-1.0.2-1.fc15
Apache CouchDB is a distributed, fault-tolerant and schema-free document-oriented database accessible via a RESTful HTTP/JSON API. Among other features, it provides robust, incremental replication with bi-directional conflict detection and resolution, and is queryable and indexable using a...
Fedora Update for couchdb FEDORA-2010-13665
Check for the Version of couchdb OpenVAS Vulnerability Test Fedora Update for couchdb FEDORA-2010-13665 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for couchdb FEDORA-2010-8298
Check for the Version of couchdb OpenVAS Vulnerability Test Fedora Update for couchdb FEDORA-2010-8298 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
[MacOS X] Insecure eval() in Twitgit and Twitterlex dashboard widgets
Twitgit 1 and Twitterlex 2 are two MacOS X Dashboard widgets developed in JavaScript that can be used to display twitter.com updates. Both regularly retrieve data using the Twitter JSON API and parse whatever is returned with eval. Both relax the dashboard's JavaScript sandbox to enable the...