[SECURITY] Fedora 25 Update: log4j12-1.2.17-19.fc25

Log4j is a tool to help the programmer output log statements to a variety of output targets...

[SECURITY] Fedora 25 Update: log4j-2.5-5.fc25

Log4j is a tool to help the programmer output log statements to a variety of output targets...

Raptor Web Application Firewall

Raptor Web Application Firewall Raptor Web Application Firewall is a simple web application firewall made in C, using KISS principle , to make poll use select function, is not better than epoll or kqueue from BSD but is portable, the core of match engine using DFA to detect XSS, SQLi and path...

MobiControl Stage Programmer - External URLs, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application MobiControl Stage Programmer published at the 'play' market has multiple vulnerabilities...

CVE-2015-1015

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file...

CVE-2015-0988

Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file...

CVE-2015-0987

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password transmission, which allows remote attackers to obtain sensitive information by sniffing the network during a PLC unlock request...

Format string

Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file...

CVE-2015-1015

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file...

CVE-2015-0987

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password transmission, which allows remote attackers to obtain sensitive information by sniffing the network during a PLC unlock request...

CVE-2015-0988

Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file...

CVE-2015-0988

CVE-2015-0988 affects Omron CX-One CX-Programmer (before 9.6). Root cause: passwords stored in a recoverable format in project/source files (and on CF cards), allowing local users to obtain sensitive information by reading files. Mitigation: upgrade to CX-Programmer 9.6 and CJ2M PLC 2.1 / CJ2H PL...

CVE-2015-0987

CVE-2015-0987 affects Omron CX-One CX-Programmer (pre-9.6) and CJ2M/CJ2H PLCs (pre-2.1/1.5). The underlying issue is cleartext transmission of passwords to unlock PLCs, enabling an attacker who can sniff network traffic to obtain sensitive information. The NVD/NIST entry, ICS-CERT advisory, and N...

CVE-2015-1015

CVE-2015-1015 affects Omron CX-One CX-Programmer (prior to v9.6) and CJ2M (prior to v2.1) / CJ2H PLC devices (prior to v1.5). The issue is storing passwords in a recoverable/reversible format in object files on Compact Flash, enabling local users to read sensitive information from files. Impact i...

Omron Multiple Product Vulnerabilities

OVERVIEW Air Force Institute of Technology researcher Stephen Dunlap has identified vulnerabilities in Omron Corporation’s CX-Programmer software, CJ2M series programmable logic controller PLC, and CJ2H series PLC. Omron Corporation has produced new versions that mitigate these vulnerabilities. O...

Lattice Diamond Programmer 1.4.2 - Buffer Overflow

No description provided by source. Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Lattice Diamond Programmer Buffer Overflow 1. Advisory Information Title: Lattice Diamond Programmer Buffer Overflow Advisory ID: CORE-2012-0530 Advisory URL:...

phpStat <= 1.5 (setup.php) Authentication Bypass Exploit (perl)

No description provided by source. !/usr/bin/perl T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m EXPLOIT FOR - PHPStat Setup.PHP Authentication Bypass Vulnerability Exploit By : A l p h a P r o g r a m m e r Sirus-v E-Mail : [email protected] This Xpl Change Admin's Pass in...

PHP Arena <= 1.1.3 pafiledb.php Remote Change Password Exploit

No description provided by source. !/usr/bin/perl T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m EXPLOIT FOR: PHP Arena paFileDB 1.1.3 And 0lder Expl0it By: A l p h a P r o g r a m m e r Sirus-v Email: [email protected] + Discovered By: GulfTech + Advisory:...

The Code of the audit logic upload vulnerability discovery-vulnerability warning-the black bar safety net

0×0 0 Preface Saying a person happy,two people sharing became two parts of a happy,this I see is not necessarily right,if share and to be shared between the two is a rival relationship,and share the joy of the reason happens to be... ha ha,do not say,all know; BUT, if one of the tips to be shared...

InvisionPower CMS Links To Titles 3.0 Cross Site Scripting

InvisionPower cms Links to Titles utility Presistent XSS =========================================== Author: UmPire Version: 3.0 Full details for version 3.1 patch is not mentioned. It's suspicious to affect all versions. Vendor URL: http://invisionpower.com Product URL:...