Lucene search
K

823 matches found

securityvulns
securityvulns
added 2014/01/09 12:0 a.m.67 views

[SOJOBO-ADV-13-05] - Vtiger 5.4.0 Reflected Cross Site Scripting

SOJOBO-ADV-13-05 - Vtiger 5.4.0 Reflected Cross Site Scripting I. Information ================== Name : Vtiger 5.4.0 Reflected Cross Site Scripting Software : Vtiger 5.4.0 and possibly below. Vendor Homepage : https://www.vtiger.com/ Vulnerability Type : Reflected Cross-Site Scripting Severity :...

7.2AI score
Exploits0
0day.today
0day.today
added 2013/12/12 12:0 a.m.21 views

Vtiger 5.4.0 Cross Site Scripting Vulnerability

Vtiger version 5.4.0 suffers from multiple reflective cross site scripting vulnerabilities. Vtiger 5.4.0 Reflected Cross Site Scripting I. Information ================== Name : Vtiger 5.4.0 Reflected Cross Site Scripting Software : Vtiger 5.4.0 and possibly below. Vendor Homepage :...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2013/11/06 12:0 a.m.26 views

WordPress Gallery Bank 2.0.19 Cross Site Scripting

SOJOBO-ADV-13-03 - Wordpress plugin Gallery Bank 2.0.19 Reflected Cross Site Scripting I. Information ================== Name : Wordpress plugin Gallery Bank 2.0.19 Reflected Cross Site Scripting Software : Gallery Bank 2.0.19 and possibly below. Vendor Homepage : http://gallery-bank.com/...

7AI score
Exploits0
securityvulns
securityvulns
added 2013/10/27 12:0 a.m.60 views

[SOJOBO-ADV-13-02] - MODx 2.2.10 Reflected Cross Site Scripting

SOJOBO-ADV-13-02 - MODx 2.2.10 Reflected Cross Site Scripting I. Information ================== Name : MODx 2.2.10 Reflected Cross Site Scripting Software : MODx 2.2.10 and possibly below. Vendor Homepage : http://modx.com/ Vulnerability Type : Reflected Cross-Site Scripting Severity : Low 2/5...

6.7AI score
Exploits0
securityvulns
securityvulns
added 2013/10/09 12:0 a.m.143 views

[SOJOBO-ADV-13-01] - Zenphoto 1.4.5.2 multiple vulnerabilities

SOJOBO-ADV-13-01 - Zenphoto 1.4.5.2 multiple vulnerabilities I. Information ================== Name : Zenphoto 1.4.5.2 multiple vulnerabilities Software : Zenphoto 1.4.5.2 and possibly below. Vendor Homepage : http://www.zenphoto.org/ Vulnerability Type : SQL Injection, Reflected Cross-Site...

8.5AI score
Exploits0
0day.today
0day.today
added 2013/10/04 12:0 a.m.26 views

Zenphoto 1.4.5.2 Cross Site Scripting / SQL Injection

Zenphoto version 1.4.5.2 suffers from cross site scripting and remote SQL injection vulnerabilities. SOJOBO-ADV-13-01 - Zenphoto 1.4.5.2 multiple vulnerabilities I. Information ================== Name : Zenphoto 1.4.5.2 multiple vulnerabilities Software : Zenphoto 1.4.5.2 and possibly below. Vend...

7.9AI score
Exploits0
Packet Storm
Packet Storm
added 2013/10/03 12:0 a.m.44 views

Zenphoto 1.4.5.2 Cross Site Scripting / SQL Injection

SOJOBO-ADV-13-01 - Zenphoto 1.4.5.2 multiple vulnerabilities I. Information ================== Name : Zenphoto 1.4.5.2 multiple vulnerabilities Software : Zenphoto 1.4.5.2 and possibly below. Vendor Homepage : http://www.zenphoto.org/ Vulnerability Type : SQL Injection, Reflected Cross-Site...

0.2AI score
Exploits0
Kitploit
Kitploit
added 2013/09/17 3:9 a.m.19 views

[Binrev] Automate Reversing Windows Binaries for Pentesters

What you can do with this? Static analysis: you can do a basic manual code review for decompiled sources to discover hidden communication channels, search for hard-coded passwords, or SQL injection vulnerabilities. Import decompiled projects to an IDE to reconstruct and modify the original source...

8.6AI score
Exploits0
myhack58
myhack58
added 2013/09/03 12:0 a.m.25 views

About the PHP code auditing and vulnerability digging a little thought-vulnerability warning-the black bar safety net

Here is the PHP code auditing and vulnerability discovery the idea to do a bit summary, is a personal point of view, there is something wrong place please point out. PHP vulnerabilities in a large part is from the programmer's own lack of experience, of course, and server configuration related, b...

Exploits0
Kitploit
Kitploit
added 2013/08/14 5:11 a.m.61 views

[Pyew v2.2] A Python tool for static malware analysis

Pyew is a command line python tool to analyse malware. It does have support for hexadecimal viewing, disassembly Intel 16, 32 and 64 bits, PE and ELF file formats it performs code analysis and let you write scripts using an API to perform many types of analysis, follows direct call/jmp instructio...

7.8AI score
Exploits0
Kitploit
Kitploit
added 2013/03/05 10:23 p.m.24 views

[Hook Analyser v2.4] Application (and Malware) Analysis tool

Application and Malware Analysis tool. Hook Analyser is a hook tool which could be potentially helpful in reversing application and analysing malwares. Changelog v2.4 Hook Analyser can now analyse DLLs. Part of the Static Malware Analysis Module The deep trace functionality has been improved...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2013/02/28 5:15 p.m.56 views

[MASTIFF2HTML] Static Analysis Framework Results Viewer

MASTIFF2HTML is a python program that is used to create a GUI results interface in HTML from MASTIFF results. Download the python program at: https://github.com/1aN0rmus/TekDefense/blob/master/MASTIFF2HTML.py MASTIFF is an automated static malware analysis framework. Learn more about MASTIFF at:...

9.8AI score
Exploits0References1
n0where
n0where
added 2012/12/06 6:40 p.m.26 views

Reverse engineering, Malware and Goodware analysis of Android applications: Androguard

Androguard is a full python tool to play with Android files. DEX, ODEX APK Android’s binary xml Android resources Disassemble DEX/ODEX bytecodes Decompiler for DEX/ODEX files You can either use the cli or graphical frontend for androguard, or use androguard purely as a library for your own tools...

7.5AI score
Exploits0References1
ThreatPost
ThreatPost
added 2012/05/07 2:0 p.m.10 views

A CISO's Guide To Application Security – Part 4: Weighing AppSec Technology Options

This post is the fourth in a 5-part series on Application Security, or “AppSec”. The series will define the components of a sound AppSec program, delineate the growing threats to software, weigh the costs of a data breach, and outline the CISO’s responsibility in managing software security risk...

7.3AI score
Exploits0References3
The Hacker News
The Hacker News
added 2011/09/22 7:14 p.m.15 views

BruCON Agnitio workshop Slides and Video Demonstration - Download

BruCON Agnitio workshop Slides and Video Demonstration - Download Workshop by David Rook Security Ninja at BruCON 2011 in Belgium. You can Download Slide from here. Required for the Agnitio hands on demos: A 32bit Windows Operating System XP or 7 preferably – VM will be fine .NET framework 3.5...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2011/09/22 7:14 p.m.1 views

BruCON Agnitio workshop Slides and Video Demonstration - Download

BruCON Agnitio workshop Slides and Video Demonstration - Download Workshop by David Rook Security Ninja at BruCON 2011 in Belgium. You can Download Slide from here. Required for the Agnitio hands on demos: A 32bit Windows Operating System XP or 7 preferably – VM will be fine .NET framework 3.5...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2011/05/14 1:47 p.m.18 views

Qualys and Malware Analyser - Online malware scanning engine !

Qualys and Malware Analyser - Online malware scanning engine ! Qualys and Malware Analyser Author : Beenu Arora, recently came into an agreement which will allow Qualys to use Malware Analyser tool on its online malware scanning engine. This would enable the users to perform more comprehensive...

6.9AI score
Exploits0
myhack58
myhack58
added 2010/11/14 12:0 a.m.19 views

With the FindBugs code analysis vulnerability-vulnerability warning-the black bar safety net

Static analysis tools promise without developer effort will be able to find out the code has some defects. Of course, if you have years of writing experience, you will know that these promises are not necessarily fulfilled. Nevertheless, a good static analysis tool is still in the Toolbox...

8AI score
Exploits0
OpenVAS
OpenVAS
added 2009/12/10 12:0 a.m.36 views

Fedora Core 10 FEDORA-2009-11499 (libsndfile)

The remote host is missing an update to libsndfile announced via advisory FEDORA-2009-11499. OpenVAS Vulnerability Test $Id: fcore200911499.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-11499 libsndfile Authors: Thomas Reinke Copyright: Copyright ...

9.3CVSS0.3AI score0.08226EPSS
Exploits2References3
Packet Storm
Packet Storm
added 2009/12/07 12:0 a.m.24 views

gAlan Buffer Overflow

!/usr/bin/perl kpasa.pl AKA gAlan Buffer Overflow 0day Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.07.2009 "From Static Analysis to 0day Exploit" Originally a SecurityTubeCon Presentation, which I'm guessing was canceled without notice? At any rate, DoJoSe...

0.7AI score
Exploits0
Rows per page
Query Builder