Sothink DHTML Menu SQL Injection Vulnerability

No description provided by source...

MyNewsGroups <= 0.6b (myng_root) Remote Inclusion Vulnerability

No description provided by source. +-------------------------------------------------------------------- + + MyNewsGroups : v. 0.6b = Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: MyNewsGroups : v. 0.6b + Venedor ..............

Wordpress Plugin jQuery Mega Menu 1.0 本地文件包含漏洞

No description provided by source...

Xoops 2.5.4 - Blind SQL Injection

No description provided by source. ------------------------------------------ Xoops 2.5.4 Blind SQL Injection ------------------------------------------ Dork: Powered by XOOPS 2.5.4 Download: http://sourceforge.net/projects/xoops/ Date: 10/12/2011 Author: blkhtc0rp Mail: blkhtc0rpatyahoodotcom...

WordPress Menu Creator plugin <= 1.1.7 - SQL Injection Vulnerability

No description provided by source. Exploit Title: WordPress Menu Creator plugin = 1.1.7 SQL Injection Vulnerability Date: 2011-08-18 Author: Miroslav Stampar miroslav.stamparatgmail.com @stamparm Software Link: http://downloads.wordpress.org/plugin/wp-menu-creator.1.1.7.zip Version: 1.1.7 tested...

HP Enterprise Maps 1.00 Authenticated XXE Injection

HP Enterprise Maps 1.00 Authenticated XXE vulnerability http://www8.hp.com/us/en/software/enterprise-software.html Any user that has the ability to import a file to create an artifact most, if not all authed users? can upload a specially crafted WSDL that will read files such as /etc/passwd. If y...

openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2013:0377-1)

java-170-openjdk was updated to icedtea-2.3.6 bnc803379 containing various security and bugfixes : - Security fixes - S6563318, CVE-2013-0424: RMI data sanitization - S6664509, CVE-2013-0425: Add logging context - S6664528, CVE-2013-0426: Find log level matching its name or value given at...

HashMyFiles - Calculate MD5/SHA1/CRC32 hashes of your files

HashMyFiles is small utility that allows you to calculate the MD5 and SHA1 hashes of one or more files in your system. You can easily copy the MD5/SHA1 hashes list into the clipboard, or save them into text/html/xml file. HashMyFiles can also be launched from the context menu of Windows Explorer,...

Leaked Screenshots Suggest New Gmail Interface Coming Soon

Google is reportedly testing out some new UI changes for its popular email service, Gmail on the desktop browser that would redesign your inbox in totally different Interface. So, the traditional Gmail we all know may soon get a new makeover and we hope users will definitely love it. Google has...

Security Advisory- BootRom Menu and Boot Menu Vulnerabilities on Huawei Campus Switches

Some versions of Huawei Campus S7700/S9300/S9700 switches are affected by the BootRom and Boot Menu vulnerability. 1. Unauthorized users are allowed to upgrade the bootrom or bootload software. Vulnerability ID: HWPSIRT-2014-0315 2. The BootRom Menu vulnerability allows unauthorized users to bypa...

CVE-2014-2729

Cross-site scripting XSS vulnerability in content.aspx in Ektron CMS 8.7 before 8.7.0.055 allows remote authenticated users to inject arbitrary web script or HTML via the category0 parameter, which is not properly handled when displaying the Subjects tab in the View Properties menu option...

Hidden File Finder v3.0 - Free Tool to Find and Unhide/Remove all the Hidden Files

Hidden File Finder is the free software to quickly scan and discover all the Hidden files on your Windows system. It performs swift multi threaded scan of all the folders parallely and quickly uncovers all the hidden files. It automatically detects the Hidden Executable Files EXE, DLL, COM etc an...

PT-2015-3695 · Gtk+ Team +1 · Gtk+ +1

Name of the Vulnerable Software and Affected Versions: GTK+ versions 3.10.9 and earlier Description: The issue allows physically proximate attackers to bypass the lock screen by pressing the menu button in applications that use GTK+, such as cinnamon-screensaver and gnome-screensaver...

Drupal Open Omega模块访问绕过漏洞

Bugtraq ID:65822 Drupal是一套开放源码的内容管理平台。 当构建header和footer菜单时Drupal Open Omega不充分检查用户菜单访问，允许攻击者利用漏洞获取受限项的标题和路径信息。 0 Drupal Open Omega 7.x 厂商补丁： Drupal ----- Drupal Open Omega 7.x-1.1已经修复该漏洞，建议用户下载更新： http://drupal.org/project/openomega...

XDcms Sql Injection 55-63

简要描述： Sql Injection 详细说明： 注入在XDCMS企业管理系统后台的菜单管理处，\system\modules\xdcms\menu.php文件： 用户在添加或者管理菜单时会调用addsave和editsave函数，9个注入点就出现在这两个函数里 addsave函数： public function addsave $title=$POST'title';//注入点1 $sort=intval$POST'sort'; $isshow=$POST'isshow';//注入点2 $groupid=$POST'groupid';//注入点3...

GetSimple CMS 3.1.2 / 3.2.3 Cross Site Scripting

Author Information Author : Ahmed Elhady Mohamed Website : http://1nfosec4all.blogspot.com/ twitter : @kingasmk facebook :https://www.facebook.com/groups/ITsec4all/ Software Information Affected Software : GetSimple CMS 3.2.3, 3.1.2 Software website : http://get-simple.info/ CVE Reference :...

MIUI-V5 pattern lock/shortcut key switch design flaw could lead to bypass-vulnerability warning-the black bar safety net

Brief description: Today the third to grab the Red rice, or did not grab, depressed and... It seems 9 months of the millet 3 is simply grab the rhythm of Ah, find F-Code, Xiaomi 3 or red rice can be. Don't know why, before submitting a no show.,,, a Detailed description: 1 require F Code. 2 is in...

ShoreTel ShoreWare Director Remote Security Bypass Vulnerability

ShoreWare Director is prone to a remote security bypass vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

FBI themed Mac OS X Ransomware Malware demands $300 Fine

Ransomware is a type of malware that attempts to extort money from a computer user by infecting and taking control of the victim's machine, or the files or documents stored on it. This kind of malware has typically been the domain of Windows users, but has made its way to OS X. A new piece of FBI...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the Dropdown Menu Widget plugin 1.9.1 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that insert cross-site scripting XSS sequences...