CVE-2018-17408

Stack-based buffer overflows in Zahir Accounting Enterprise Plus 6 through build 10b allow remote attackers to execute arbitrary code via a crafted CSV file that is accessed through the Import CSV File menu...

October 27, 2016 — KB3197954 (OS Build 14393.351)

October 27, 2016 — KB3197954 OS Build 14393.351 This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Improved reliability of Internet Explorer 11, Start, File Explorer, action center, graphics, and the Windows kernel...

September 13, 2016 — KB3185614 (OS Build 10586.589)

September 13, 2016 — KB3185614 OS Build 10586.589 This update includes quality improvements and security fixes. No new operating system features are being introduced in this update. Key changes include: Improved reliability of Internet Explorer 11, USB, and the .NET framework. Addressed issue wit...

UPM 7.15.2000: With Profile Management Enabled, Blank Icons Might Appear In The Start Menu In The Published Desktops

With User Profile Management 7.15.2000 enabled,blank icons might appear in the Start menu in the published desktops. The issue occurs during second or subsequent logons. Issue is seen with Windows 10 and Windows Server 2016...

CVE-2018-16775

An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the site name in the "Categories" menu...

CVE-2018-16775

An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the site name in the "Categories" menu...

Cross site scripting

An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the site name in the "Categories" menu...

CVE-2018-16775

CVE-2018-16775 affects Victor CMS up to 2018-05-10, with a reflected/Stored XSS via the site name in the Categories menu. The connected sources confirm the vulnerability type but do not specify affected versions, patch availability, or exploitation status. The documents do not provide remediation...

CVE-2018-16775

An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the site name in the "Categories" menu...

The vulnerability of the components menu_pxc.cgi and index.cgi of the microprogramming system for controlled switches from FL SWITCH by Phoenix Contact allows a hacker to execute arbitrary code or cause malfunctions during maintenance.

The vulnerability of the components menupxc.cgi and index.cgi of the microprogramming software for controlled switches from FL SWITCH Phoenix Contact arises from operations that go beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary...

CVE-2018-16338

An issue was discovered in AuraCMS 2.3. There is a CSRF vulnerability that can change the administrator's password via admin.php?mod=users and subsequently add a page or menu, or submit a topic...

PuppyCMS Cross-Site Scripting Vulnerability

puppetCMS is a lightweight PHP-based content management system. A cross-site scripting vulnerability exists in puppyCMS version 5.1. A remote attacker can exploit this vulnerability by executing JavaScript code in the 'Add Page/URL' URL link field of the menu.php file...

EKFiddle - A Framework Based On The Fiddler Web Debugger To Study Exploit Kits, Malvertising And Malicious Traffic In General

A framework based on the Fiddler web debugger to study Exploit Kits, malvertising and malicious traffic in general. Installation Download and install the latest version of Fiddler https://www.telerik.com/fiddler Special instructions for Linux and Mac here:...

Description of the security update for SharePoint Enterprise Server 2016: August 14, 2018

Description of the security update for SharePoint Enterprise Server 2016: August 14, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow information disclosure if a user opens a specially crafted Office file. To learn more about these vulnerabilities, s...

Start Menu Left Click is not Working on Windows 10 and Server 2016

Start Menu left click does not show start menu on Windows 10 and Server 2016...

my little forum cross-site scripting vulnerability (CNVD-2019-21126)

my little forum is a set of Internet forum applications based on PHP and MySQL. The application uses a traditional tree view to display information and supports image uploading, template engine, BB code and emoticons. A cross-site scripting vulnerability exists in the Add page option in my little...

Design/Logic Flaw

The Add page option in my little forum 2.4.12 allows XSS via the Menu Link field...

CVE-2018-14937

The Add page option in my little forum 2.4.12 allows XSS via the Menu Link field...

CVE-2018-14937

The Add page option in my little forum 2.4.12 allows XSS via the Menu Link field...

CVE-2018-14937

CVE-2018-14937 describes a cross-site scripting (XSS) vulnerability in my little forum 2.4.12, exploitable via the Menu Link field on the Add page. Multiple connected sources corroborate that the issue is an XSS in the Add page option of my little forum 2.4.12. The root cause, as stated across so...