PT-2014-5371 · Red Hat · Red Hat Conga +1

Name of the Vulnerable Software and Affected Versions: Red Hat Conga version 0.12.2 Description: The issue allows remote authenticated users to bypass intended access restrictions. This is achieved via a crafted URL in the /luci/homebase and /luci/cluster menu components. Recommendations: For Red...

openstack-horizon: multiple XSS flaws

Cross-site scripting XSS vulnerability in horizon/static/horizon/js/horizon.instances.js in the Launch Instance menu in OpenStack Dashboard Horizon before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to inject arbitrary web script or HTML via a networ...

Windows 9 Start Menu Demo Video Leaked Online

After providing the glimpses of the next Windows, one of the screenshot leakers has now obtained a short video showing off a build of the very new Windows 9, aka "Threshold," features as well as how users can expect to use it. Two German sites, ComputerBase and WinFuture, posted 20 screenshots on...

CVE-2014-5382

Multiple cross-site scripting XSS vulnerabilities in the web interface in Schrack Technik microControl with firmware 1.7.0 937 allow remote attackers to inject arbitrary web script or HTML via the position textbox in the configuration menu or other unspecified vectors...

SearchMyFiles v2.50 - Alternative to 'Search For Files And Folders' module of Windows + Duplicates Search

SearchMyFiles is an alternative to the standard "Search For Files And Folders" module of Windows. It allows you to easily search files in your system by wildcard, by last modified/created/last accessed time, by file attributes, by file content text or binary search, and by the file size...

Dropdown Menu Widget 1.9.1 - Script Insertion CSRF

The Dropdown Menu Widget WordPress plugin was affected by a Script Insertion CSRF security vulnerability...

jQuery Mega Menu 1.0 - Local File Inclusion

The JQuery Mega Menu Widget WordPress plugin was affected by a Local File Inclusion security vulnerability...

WebTitan Default Credentials (ssh)

The account 'admin' is using a default password. A remote, unauthenticated attacker could exploit this to log in as a privileged user and gain access to the WebTitan configuration menu. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid76777; scriptversion"$Revision: 1....

PT-2014-5346 · Openstack +1 · Openstack Dashboard +1

Name of the Vulnerable Software and Affected Versions: OpenStack Dashboard Horizon versions 2013.2.3 and earlier OpenStack Dashboard Horizon versions 2014.1 and earlier, excluding 2014.1.2 and later OpenStack Dashboard Horizon versions Juno and earlier, excluding Juno-2 and later Description: A...

PerfectView CRM Cross Site Scripting

Affected software: PerfectView CRM Description: PerfectView CRM is a software for Relationship Management, Marketing & Sales Type of vulnerability: XSS Persistent URL: http://perfectviewcrm.com Discovered by: Provensec Website: http://www.provensec.com Description: PerfectView is prone to a...

Acuity CMS 2.7.1 - SQL Injection Vulnerability

No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...

Squito Gallery 1.0 - Cross Site Scripting Vulnerability

No description provided by source. ======================================================================================== | Title : Squito Gallery v.1.0 Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi -...

CEScripts Multiple Scripts Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18402/info CEScripts scripts are prone to multiple cross-site scripting vulnerabilities because they fail to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execu...

CDTrustee .BAK Local Crash PoC

No description provided by source. Exploit Title: CDTrustee .BAK Local Crash POC Date: March 30, 2010 Software Link: http://www.base40.com/cdtDownload.html Version: 2.06 Tested on: WinXP SP3 and Windows 7 Cost: 39.95 USD Author: anonymous Site: http://www.setfreesecurity.com Usage: Install...

Quick Search 1.1.0.189 - Buffer Overflow Vulnerability (SEH)

No description provided by source. Exploit Title: Quick Search Version 1.1.0.189 Buffer Overflow vulnerabilitySEH Date: 14-05-2013 Exploit Author: ariarat Vendor Homepage: http://www.glarysoft.com/ Software Link: http://download.glarysoft.com/qsearchsetup.exe Version: 1.1.0.189 Tested on: Windows...

jevoncms (LFI/RFI) Multiple Vulnerabilities

No description provided by source. jevoncms LFI/RFI Multiple Vulnerabilities +Title : jevoncms libdir Multiple Vulnerability +Version: - +Download: http://sourceforge.net/projects/jevoncms/files/ +Author: eidelweiss +Contact: eidelweissatcyberservicesdotcom !Thanks To: all friends -= Vuln C0de =-...

Taboada Macronews <= 1.0 - SQLi Exploit

No description provided by source. ?php / Exploit Title: Taboada Macronews = 1.0 SQLi Exploit Date: 03rd January 2013 Exploit Author: WhiteCollarGroup Software Link: http://www.scriptbrasil.com.br/download/codigo/7144/ Version: 1.0 Google Dork: intext:Powered by: joaotaboada.com Usage: php...

MS10-073 Windows Class Handling Vulnerability

No description provided by source. include windows.h / Source: http://mista.nu/blog/2010/12/01/windows-class-handling-gone-wrong/ / int mainint argc, char argv WNDCLASSA Class = 0; CREATESTRUCTA Cs = 0; FARPROC MenuWindowProcA; HMODULE hModule; HWND hWindow; Class.lpfnWndProc = DefWindowProc;...

FVWM 2.4/2.5 fvwm-menu-directory Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9161/info It has been reported that FVWM may be prone to a command execution vulnerability that may allow an attacker to execute malicious commands on a vulnerable system. It has been reported that the fvwm-menu-directory...

php wcms XT 0.0.7 - Multiple Remote File Inclusion Vulnerabilities

No description provided by source. ?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ?????????????????????????????????????...