703 matches found
CVE-2011-5224
SQL injection vulnerability in the Sentinel plugin 1.0.0 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2011-5226
Cross-site request forgery CSRF vulnerability in wordpresssentinel.php in the Sentinel plugin 1.0.0 for WordPress allows remote attackers to hijack the authentication of an administrator for requests that trigger snapshots...
CVE-2011-5224
CVE-2011-5224 describes an SQL injection vulnerability in the WordPress Sentinel plugin, version 1.0.0. The issue allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Affected software: Sentinel plugin for WordPress (1.0.0). Root cause: unsafeguarded SQL handling in ...
CVE-2011-5225
Cross-site scripting XSS vulnerability in wordpresssentinel.php in the Sentinel plugin 1.0.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via unknown vectors...
CVE-2011-5226
CVE-2011-5226: A CSRF flaw in wordpress_sentinel.php of the WordPress Sentinel plugin (version 1.0.0) allows remote attackers to hijack an administrator’s session by crafting requests that trigger snapshots. This affects the Sentinel plugin for WordPress; exploitation context and in-the-wild deta...
WordPress Sentinel Plugin <= 1.0.0 - CSRF
Because of this vulnerability in wordpresssentinel.php, the attackers can hijack the authentication of an administrator for requests that trigger snapshots. Solution Update the plugin...
WordPress Sentinel Plugin <= 1.0.0 - SQL iNJECTION
Because of this vulnerability, the attackers can execute arbitrary SQL commands via unspecified vectors. Solution Update the plugin...
Novell Sentinel Log Manager 1.2.0.2 - Retention Policy
Novell Sentinel Log Manager 1.2.0.2 - Retention Policy Novell Sentinel Log Manager ver. =1.2.0.2 allows unauthenticated users configuring retention policies. Vendor informed: 2012/09/06 Patch Released: 2012/09/21 PoC: !/bin/bash TARGET=$1 PORT=8443 if $ -ne 1 ; then echo "Usage: basename $0 targe...
Novell Sentinel Log Manager 1.2.0.2 - Retention Policy
Novell Sentinel Log Manager ver. =1.2.0.2 allows unauthenticated users configuring retention policies. Vendor informed: 2012/09/06 Patch Released: 2012/09/21 PoC: !/bin/bash TARGET=$1 PORT=8443 if $ -ne 1 ; then echo "Usage: basename $0 target" exit 1 fi echo "POST...
Novell Sentinel Log Manager 1.2.0.2 Bypass
Hello, Novell Sentinel Log Manager ver. =1.2.0.2 allows unauthenticated users configuring retention policies. Vendor informed: 2012/09/06 Patch Released: 2012/09/21 PoC: !/bin/bash TARGET=$1 PORT=8443 if $ -ne 1 ; then echo "Usage: basename $0 target" exit 1 fi echo "POST...
SafeNet Sentinel Protection Installer Long Request DoS Vulnerability - Active Check
Sentinel Protection Installer is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SafeNet Sentinel Keys Server - Crash (PoC)
Exploit Title: SafeNet Sentinel Keys Server DoS Date: 10 Sep 2012 Exploit Author: retset https://twitter.com/ret5et Vendor Homepage: http://www.safenet-inc.com/ Version: Sentinel Protection Installer v7.6.5 sntlkeyssrvr.exe ver. 1.3.1.3 Download link:...
SafeNet Sentinel Keys Server Crash PoC
Exploit for windows platform in category dos / poc Exploit Title: SafeNet Sentinel Keys Server DoS Date: 10 Sep 2012 Exploit Author: retset https://twitter.com/ret5et Vendor Homepage: http://www.safenet-inc.com/ Version: Sentinel Protection Installer v7.6.5 sntlkeyssrvr.exe ver. 1.3.1.3 Download...
SafeNet Sentinel Keys Server - Crash (PoC)
SafeNet Sentinel Keys Server - Crash PoC Exploit Title: SafeNet Sentinel Keys Server DoS Date: 10 Sep 2012 Exploit Author: retset https://twitter.com/ret5et Vendor Homepage: http://www.safenet-inc.com/ Version: Sentinel Protection Installer v7.6.5 sntlkeyssrvr.exe ver. 1.3.1.3 Download link:...
CVE-2012-3012
The Arbiter Power Sentinel 1133A device with firmware before 11Jun2012 Rev 421 allows remote attackers to cause a denial of service Ethernet outage via unspecified Ethernet traffic that fills a buffer, as demonstrated by a port scan...
CVE-2012-3012
Affected product: Arbiter Systems Power Sentinel 1133A. Vulnerability: remote DoS caused by Ethernet traffic filling a buffer, leading to Ethernet outage (as demonstrated by a port scan). Root cause / details: described in multiple sources, with firmware before 11Jun2012 Rev 421 being vulnerable....
Novell Sentinel Log Manager <= 1.2.0.1 Directory Traversal
Exploit for php platform in category web applications Exploit Title: Novell Sentinel Log Manager directory traversal Date: 2011-12-18 Exploit Author: Andrea Fabrizi Vendor Homepage: http://www.novell.com/ Version: = 1.2.0.1 Tested on: Sentinel Log Manager Appliance 1.2.0.1 CVE: 2011-5028 The late...
SafeNet Sentinel Keys Server Denial Of Service
Exploit Title: SafeNet Sentinel Keys Server DoS Date: 10 Sep 2012 Exploit Author: retset https://twitter.com/ret5et Vendor Homepage: http://www.safenet-inc.com/ Version: Sentinel Protection Installer v7.6.5 sntlkeyssrvr.exe ver. 1.3.1.3 Download link:...
Report: Websites Getting Safer, Yet XSS Bugs Persist
The number of vulnerabilities in the average Web site is actually decreasing, one of the more surprising findings in an annual study done by WhiteHat Security. The 30-page report is the culmination of a project in which the firm combed through approximately 7,000 websites and discovered 79 seriou...
CVE-2011-5028
Directory traversal vulnerability in novelllogmanager/FileDownload in Novell Sentinel Log Manager 1.2.0.1938 and earlier, as used in Novell Sentinel before 7.0.1.0, allows remote authenticated users to read arbitrary files via a .. dot dot in the filename parameter...