633 matches found
Use of Java Zero-Day Flaws Tied to Nitro Attack Crew
Researchers say that one of the attack groups using the two new Java zero-day vulnerabilities is the same group that was behind an earlier targeted attack campaign from 2011. That group was traced back to China and was essentially running a spear-phishing campaign, but now the crew, known as Nitr...
Nitro PDF Application Detection
Binary data 6879.prm...
Human Rights organisation website Serves Gh0st RAT Trojan
Human Rights organisation website Serves Gh0st RAT Trojan According to the company's Security Labs blog, Amnesty International's United Kingdom website was compromised and hosting the potent Gh0st RAT Trojan earlier this week. Malicious Java code was planted on the site in a bid to push the Gh0st...
New Trojan For Mac Used In Attacks On Tibetan NGOs
The security firm Alienvault reports that its own research on phishing attacks against non governmental organizations supporting the Tibetan Government in Exile is now being used as bait in a new round of phishing attacks on those same NGOs. The firm warned the public on Monday about a round of...
Chinese Trojans Gh0stRAT used to attack pro-Tibet organisations
Chinese Trojans Gh0stRAT used to attack pro-Tibet organisations AlienVault has discovered a range of spear phishing attacks taking place against a number of Tibetan organizations apparently from Chinese attackers. The security firm believes that the attacks are originating from the same Chinese...
Symantec Traces Attacks on Chemical Industry To 20 Year Old Chinese Hacker-For-Hire
A report from Symantec Corp. details a roving campaign of intellectual property theft controlled by a 20 year-old hacker for hire that relied on phishing e-mail, some old malware and command and control operations based in China. The company on Tuesday unveiled research on the targeted attacks,...
Nitro PDF Reader 1.4.0 - Heap Memory Corruption (PoC)
Nitro PDF Reader 1.4.0 Remote Heap Memory Corruption / DoS PoC Vendor: Nitro PDF, Inc., Nitro PDF Pty Ltd. Product web page: http://www.nitroreader.com Affected version: 1.4.0.11 Summary: Nitro PDF Reader, free, fast, powerfull and secure. Create PDF files, comment and review, save PDF forms,...
Nitro PDF Reader 1.4.0 - Heap Memory Corruption (PoC)
Nitro PDF Reader 1.4.0 - Heap Memory Corruption PoC Nitro PDF Reader 1.4.0 Remote Heap Memory Corruption / DoS PoC Vendor: Nitro PDF, Inc., Nitro PDF Pty Ltd. Product web page: http://www.nitroreader.com Affected version: 1.4.0.11 Summary: Nitro PDF Reader, free, fast, powerfull and secure. Creat...
Nitro PDF Reader 1.4.0 Remote Heap Memory Corruption / DoS PoC
Summary Nitro PDF Reader, free, fast, powerfull and secure. Create PDF files, comment and review, save PDF forms, extract text and images, type text directly onto the page, and more. Description The program suffers from a heap corruption vulnerability which can be exploited by malicious people to...
CVE-2010-2141
SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action...
Sql injection
SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action...
CVE-2010-2141
SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action...
CVE-2010-2141
CVE-2010-2141 affects the NITRO Web Gallery. The vulnerability is an SQL injection in index.php, exploitable via the PictureId parameter in an open action, allowing remote attackers to run arbitrary SQL commands. The issue is documented across multiple sources (NVD/NVD mirrors, CVE records, and a...
Nitro Web Gallery - SQL Injection
=============================================== NITRO Web Gallery SQL Injection Vulnerability =============================================== .----..--.--.| |--..-----..----.| |.-----..-----. | || | || || -|| || || || | ||| ||||||| ||||| | || || NITRO Web Gallery SQL Injection Vulnerability...
CVE-2008-2817
SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action...
CVE-2008-2817
SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action...
Sql injection
SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action...
CVE-2008-2817
SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action...
CVE-2008-2817
NiTrO Web Gallery 1.4.3 and earlier contains a SQL injection in albums.php (CatId parameter in a show action) that allows remote attackers to execute arbitrary SQL commands. The issue arises from inadequate sanitization of CatId, enabling potentially unauthorized data access or manipulation. No r...
NiTrO Web Gallery <= 1.4.3 (section) Remote SQL Injection Vulnerability
No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability NiTrO Web Gallery V1.3 - V1.4- V1.41 - 1.42 - V1.43 albums.php section AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : NiTrO Web Gallery Versions : V1.3 - V1....