Lucene search
K

7657 matches found

Citrix
Citrix
added 2017/05/16 12:0 a.m.7 views

QuickBooks Recipe

QuickBooks is an application that licenses and registers to the volume serial number of the local hard disk. When the license is created an encrypted file is stored that can only be unencrypted if the volume serial number matches the system it was installed on. When Unidesk creates a new desktop,...

6.6AI score
Exploits0
FireEye
FireEye
added 2017/05/14 6:0 p.m.390 views

Cyber Espionage is Alive and Well: APT32 and the Threat to Global Corporations

Cyber espionage actors, now designated by FireEye as APT32 OceanLotus Group, are carrying out intrusions into private sector companies across multiple industries and have also targeted foreign governments, dissidents, and journalists. FireEye assesses that APT32 leverages a unique suite of...

7.2CVSS8.2AI score0.80968EPSS
Exploits24
AlpineLinux
AlpineLinux
added 2017/05/04 7:0 p.m.69 views

CVE-2017-3732

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed...

5.9CVSS7AI score0.15934EPSS
Exploits1
Akamai Blog
Akamai Blog
added 2017/05/04 6:31 p.m.26 views

Not all Cloud Solutions are Created Equal

The errant swing of a backhoe in a New Jersey field cuts through a major cloud provider's underground cable, bringing activity along the U.S. Eastern Seaboard to a crashing halt. The outage hits some businesses hard. Every minute of downtime means thousands of dollars of lost revenue and hordes o...

6.8AI score
Exploits0
NVD
NVD
added 2017/05/03 5:59 a.m.16 views

CVE-2017-7430

Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a persistent XSS vulnerability in Framework...

6.1CVSS6AI score0.01023EPSS
Exploits0References6
Cvelist
Cvelist
added 2017/05/03 5:13 a.m.21 views

CVE-2017-7430

Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a persistent XSS vulnerability in Framework...

6AI score0.01023EPSS
Exploits0References6
Packet Storm
Packet Storm
added 2017/05/03 12:0 a.m.39 views

Zenario 7.6 Persistent Cross Site Scripting

Document Title: =============== Zenario v7.6 - Persistent Cross Site Scripting Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2044 https://github.com/TribalSystems/Zenario/commit/cd60f1c8a179ebb779fe0acc051b93f477129b1a Release Date:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2017/05/03 12:0 a.m.46 views

Zenario 7.6 Cross Site Scripting

Document Title: =============== Zenario v7.6 - Delete Persistent Cross Site Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2042 Release Date: ============= 2017-03-20 Vulnerability Laboratory ID VL-ID: ====================================...

7.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/04/25 7:25 a.m.6 views

teenslang.su XSS vulnerability

Vulnerable URL: http://teenslang.su/index.php?searchstr== Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 47050 VIP website status:| Yes Check teenslang.su SSL connection:| Grade: C...

6.3AI score
Exploits0
OSV
OSV
added 2017/04/24 3:59 p.m.5 views

CVE-2017-2330

A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, local user, to create a fork bomb scenario, also known as a rabbit virus, or wabbit, which will create processes that replicate themselves,...

6.2CVSS5.8AI score0.00317EPSS
Exploits0References2
CNVD
CNVD
added 2017/04/21 12:0 a.m.4 views

Linksys Smart Wi-Fi Routers Command Injection Vulnerability

Linksys Smart Wi-Fi Routers are smart Wi-Fi routers. A command injection vulnerability exists in Linksys Smart Wi-Fi Routers. An attacker with device authentication could have root access to inject and execute malicious code on the device's operating system. With these capabilities, a backdoor...

8.2AI score
Exploits0References1
Cisco
Cisco
added 2017/04/19 4:0 p.m.26 views

Cisco Integrated Management Controller Cross-Site Scripting Vulnerability

A vulnerability in the web-based GUI of Cisco Integrated Management Controller IMC could allow an authenticated, remote attacker to perform a persistent cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input by the affected software. A successf...

6.1CVSS5.4AI score0.00928EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2017/04/14 12:0 a.m.46 views

Agorum Core Pro 7.8.1.4-251 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2017-005 Product: agorum core Pro Manufacturer: agorum Software GmbH Affected Versions: 7.8.1.4-251 Tested Versions: 7.8.1.4-251 Vulnerability Type: Persistent Cross-Site Scripting CWE-79 Risk Level: High Solution Status: Open...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2017/04/13 12:0 a.m.20 views

agorum core Pro 7.8.1.4-251 - Persistent Cross-Site Scripting

agorum core Pro 7.8.1.4-251 - Persistent Cross-Site Scripting !-- Source: https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2017-005.txt Advisory ID: SYSS-2017-005 Product: agorum core Pro Manufacturer: agorum Software GmbH Affected Versions: 7.8.1.4-251 Tested Versions:...

6.8AI score
Exploits0
0day.today
0day.today
added 2017/04/13 12:0 a.m.23 views

agorum core Pro 7.8.1.4-251 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications !-- Source: https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2017-005.txt Advisory ID: SYSS-2017-005 Product: agorum core Pro Manufacturer: agorum Software GmbH Affected Versions: 7.8.1.4-251 Tested Versions: 7.8.1.4-251...

7.1AI score
Exploits0
NVD
NVD
added 2017/04/09 1:59 a.m.14 views

CVE-2017-7590

OpenIDM through 4.0.0 and 4.5.0 is vulnerable to persistent cross-site scripting XSS attacks within the Admin UI, as demonstrated by a crafted Managed Object Name...

6.1CVSS6AI score0.00944EPSS
Exploits1References3
CVE
CVE
added 2017/04/09 1:32 a.m.35 views

CVE-2017-7590

ForgeRock OpenIDM Admin UI (versions 4.0.0 and 4.5.0) is vulnerable to persistent cross-site scripting (XSS) via a crafted Managed Object Name, allowing script injection in the Admin UI. This label is supported by multiple sources (NVD/CVE-2017-7590 description; CNVD-2017-30828; OSV/PRION entries...

6.1CVSS5.9AI score0.00944EPSS
Exploits1References3Affected Software1
Wallarm Lab
Wallarm Lab
added 2017/04/04 4:28 p.m.37 views

Using WebSocket as your Real Time Protocol? Wallam got you covered.

In the beginning there was http 1 or 2, web pages were static and did not do much beyond displaying static text and images. Life has changed since… Web applications discovered that bi-directional communication between the browser and the web server is essential. Of course, http protocol, with it’...

6.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/03/31 12:0 a.m.12 views

Cross-Site Scripting (XSS)

Client-side scripts are used extensively by modern web applications. They perform from simple functions such as the formatting of text up to full manipulation of client-side data and Operating System interaction. Cross Site Scripting XSS allows clients to inject scripts into a request and have th...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/03/31 12:0 a.m.14 views

Cross-Site Scripting (XSS) in path

Client-side scripts are used extensively by modern web applications. They perform from simple functions such as the formatting of text up to full manipulation of client-side data and Operating System interaction. Cross Site Scripting XSS allows clients to inject scripts into a request and have th...

5.5AI score
Exploits0References2
Rows per page
Query Builder