CVE-2015-2077

CVE-2015-2077 concerns the Komodia Redirector with SSL Digestor SDK, used in multiple products (e.g., Lavasoft Ad-Aware Web Companion, Ad-Aware AdBlocker alpha, Qustodio for Windows, StaffCop 5.8). The root cause is reuse of the same X.509 certificate private key for a root CA across different cu...

To bypass youdao cloud notes read password-vulnerability warning-the black bar safety net

My is youdao cloud notes fans, today nothing else to test it Notes a function is a private notebook and read when you need to input to read the password, then we can put the important things into going to be confidential. When you click on the other laptop when a read password of the notebook wil...

CVE-2014-3429

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

DEBIAN-CVE-2014-3429

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

CVE-2014-3429

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

Code injection

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

UBUNTU-CVE-2014-3429

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

PYSEC-2014-21

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

CVE-2014-3429

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

PYSEC-2014-21

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

CVE-2014-3429

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

CVE-2014-3429

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

CVE-2014-3429

IPython Notebook 0.12–1.x before 1.2.0 does not validate the origin of websocket requests, enabling remote code execution by a crafted page with kernel ID knowledge. Affected: IPython Notebook server; vulnerability arises from cross-origin websocket hijacking. Impact: arbitrary code execution on ...

Updated ipython package fixes security vulnerability

In IPython before 1.2, the origin of websocket requests was not verified within the IPython notebook server. If an attacker has knowledge of an IPython kernel id they can run arbitrary code on a user's machine when the client visits a crafted malicious page CVE-2014-3429...

Online Notebook Manager SQLi Vulnerability

No description provided by source...

gtk2 security and bug fix update

2.10.4-29 - Improve patch to parse CUPS user lpoptions file to avoid crashes on s390 and ia64 Resolves: 603809 2.10.4-28 - Fix the filechooser not opening selected file when location entry is empty Resolves: 518483 2.10.4-27 - Fix integer overflow in GdkPixbuf's XBM image file format loader...

Wright-Patt Officials Discipline Those Connected to Misplaced Notebook

The Air Force is taking disciplinary action against members of the 88th Medical Group in Ohio who left a notebook holding sensitive data in a conference room following a blood drive on base. The notebook was found the morning after being misplaced under a chair in the same limited-use room. “Whil...

wordpress Diary/Notebook theme email spoofing vulnerability-vulnerability warning-the black bar safety net

WordPress this Diary/Notebook theme is to have site5 design of a personal Journal blog system theme. The recent burst of the email spoofing vulnerability. Attach the perl script Exp: !/ usr/bin/perl Exploit Title: Diary/Notebook Site5 WordPress Theme - Email Spoofing Date: 15.07.2012 Exploit...

WordPress Theme Diary/Notebook Site5 - Email Spoofing

!/usr/bin/perl Exploit Title: Diary/Notebook Site5 Wordpress Theme - Email Spoofing Date: 15.07.2012 Exploit Author: @bwallHatesTwits Discovered by: @xxDigiPxx http://www.ticktockcomputers.com/wordpress/site5-wordpress-theme-diary-sendmail-php-spoofing/ Software Link: http://www.wpdiarytheme.com/...

HP Data Protector LogClientInstallation Method Userid Field SQL Execution

The HP Data Protector DPNECentral web service listening on this port contains a SQL injection vulnerability because it fails to properly sanitize user-supplied input to the userid field of its LogClientInstallation method before using it in a database query. This may allow an attacker to read and...