Lucene search
+L

1062 matches found

Cvelist
Cvelist
added 2014/10/20 10:0 a.m.20 views

CVE-2014-7622

The Affinity Mobile ATM Locator aka com.collegemobile.affinity.locator application 1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2014/10/08 9:19 p.m.19 views

SQL Injection Vulnerability in 'Yahoo! Contributors Network'

Yahoo! Contributors Network contributor.yahoo.com, the network of authors that generated the contents such as photographs, videos, articles and their knowledge to more than 600 million monthly visitors, was vulnerable to a Time based Blind SQL Injection vulnerability. Behrouz Sadeghipour, a...

8.4AI score
Exploits0
CVE
CVE
added 2014/09/09 10:0 a.m.35 views

CVE-2014-5710

The CVE-2014-5710 entry refers to the Cisco Class Locator Fast Lane Android app (package com.tabletkings.mycompany.fastlane.cisco) that does not verify X.509 certificates for SSL servers, enabling man-in-the-middle attackers to spoof servers and access sensitive information via crafted certificat...

5.4CVSS6AI score0.00271EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/09 10:0 a.m.22 views

CVE-2014-5710

The Cisco Class Locator Fast Lane aka com.tabletkings.mycompany.fastlane.cisco application for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00271EPSS
Exploits0References3
WPVulnDB
WPVulnDB
added 2014/08/01 10:59 a.m.8 views

Store Locator <= 2.6.1 - Cross-Site Request Forgery

The store-locator WordPress plugin was affected by a Cross-Site Request Forgery security vulnerability...

2.8AI score
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2014/08/01 10:58 a.m.5 views

store-locator-le - SQL Injection

The Store Locator Plus® for WordPress WordPress plugin was affected by a SQL Injection security vulnerability...

2.1AI score
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2014/08/01 10:58 a.m.11 views

Google Maps via Store Locator - Multiple Vulnerabilities

The Store Locator Plus® for WordPress WordPress plugin was affected by a Multiple Vulnerabilities security vulnerability...

2.4AI score
Exploits0References1Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

PlutoStatus Locator 1.0pre alpha 'index.php' Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27802/info PlutoStatus Locator is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.39 views

Wordpress Google Maps via Store Locator Plugin 2.7.1 - 3.0.1 - Multiple Vulnerabilities

No description provided by source. Description : Wordpress Plugins - Google Maps via Store Locator Plus Multiple Vulnerability Version : 2.7.1 - 3.0.1 Link : http://wordpress.org/extend/plugins/store-locator-le/ Plugins : http://downloads.wordpress.org/plugin/store-locator-le.3.0.1.zip Date :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

Microsoft Windows XP/2000/NT 4 Locator Service Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6666/info It has been reported that the Microsoft Windows Locator service is affected by a remotely exploitable buffer overflow vulnerability. The condition is due to a memory copy of RPC arguments received from remote...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Store Locator Remote Add Admin Exploit CSRF Vulnerability

No description provided by source. vendor: www.ghostscripter.com ::::::::::::::explo!t::::::: ::::::: html head title Store Locator Remote Add Admin Exploit /title /head body text=00FF00 bgcolor=000000 form action=http://server/StoreLocator/adm/adminadd.php method=post style=text-align: center br...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.31 views

BS Events Directory (articlesdetails.php) SQL Injection Vulnerability Proof of Concept

No description provided by source. ----------------------------Information------------------------------------------------ +Autor : Easy Laster +ICQ : 11-051-551 +Date : 06.07.2010 +Script : BS Events Directory +Price : $24.95 +Language :PHP +Discovered by Easy Laster 4004-security-project.com...

7.1AI score
Exploits0
Prion
Prion
added 2014/05/16 11:12 a.m.18 views

Design/Logic Flaw

The Locator/ID Separation Protocol LISP implementation in Cisco IOS 15.33S and earlier and IOS XE does not properly validate parameters in ITR control messages, which allows remote attackers to cause a denial of service CEF outage and packet drops via malformed messages, aka Bug ID CSCun73782...

4.3CVSS7.1AI score0.0155EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2013/08/16 5:55 p.m.11 views

CVE-2013-5305

Cross-site scripting XSS vulnerability in the Store Locator locator extension before 3.1.5 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01294EPSS
Exploits0References6
NVD
NVD
added 2013/08/16 5:55 p.m.15 views

CVE-2013-5303

Unspecified vulnerability in the Store Locator locator extension before 3.1.5 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."...

10CVSS6.7AI score0.01872EPSS
Exploits0References6
NVD
NVD
added 2013/08/16 5:55 p.m.15 views

CVE-2013-5304

SQL injection vulnerability in the Store Locator locator extension before 3.1.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS8.4AI score0.01364EPSS
Exploits0References6
Prion
Prion
added 2013/08/16 5:55 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Store Locator locator extension before 3.1.5 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.2AI score0.01294EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2013/08/16 5:55 p.m.13 views

Sql injection

SQL injection vulnerability in the Store Locator locator extension before 3.1.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS9AI score0.01364EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2013/08/16 5:55 p.m.17 views

Sql injection

Unspecified vulnerability in the Store Locator locator extension before 3.1.5 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."...

10CVSS7.2AI score0.01872EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2013/08/16 5:0 p.m.39 views

CVE-2013-5305

The CVE-2013-5305 entry concerns TYPO3's Store Locator (locator) extension before version 3.1.5. The vulnerability is a Cross-site Scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The public sources consistently describe the vulnera...

4.3CVSS5.9AI score0.01294EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder