Best Self Hosted Alternatives

Best Self Hosted Alternatives Analytics AWStats Generates web, streaming, ftp or mail server statistics graphically. Source Code GPLv3 Perl Countly Real time mobile & web analytics, crash reporting and push notifications platform. Source Code AGPLv3 Javascript Druid A distributed, column-oriented...

S3Bubble Cloud Video With Adverts & Analytics <= 0.7 - Arbitrary File Download

Description The 3bubble-amazon-s3-html-5-video-with-adverts WordPress plugin was affected by an Arbitrary File Download security vulnerability...

Wordpress S3Bubble Cloud Video With Adverts & Analytics 0.7 - Arbitrary File Download Vulnerabil

Exploit for php platform in category web applications Exploit Title: Wordpress S3Bubble Cloud Video With Adverts & Analytics - Arbitrary File Download Google Dork: inurl:/plugins/s3bubble-amazon-s3-html-5-video-with-adverts/ Date: 04/07/2015 Exploit Author: CrashBandicot @DosPerl Vendor Homepage:...

S3Bubble Amazon S3 Video And Audio Streaming With Analytics <= 2.0 - Arbitrary File Download

The s3bubble-amazon-s3-audio-streaming WordPress plugin was affected by an Arbitrary File Download security vulnerability...

WordPress S3Bubble Cloud Video With Adverts / Analytics Arbitrary File Download

Exploit Title: Wordpress S3Bubble Cloud Video With Adverts & Analytics - Arbitrary File Download Google Dork: inurl:/plugins/s3bubble-amazon-s3-html-5-video-with-adverts/ Date: 04/07/2015 Exploit Author: CrashBandicot @DosPerl Vendor Homepage: https://s3bubble.com Software Link:...

WordPress Plugin S3Bubble Cloud Video With Adverts Analytics 0.7 - Arbitrary File Download

WordPress Plugin S3Bubble Cloud Video With Adverts Analytics 0.7 - Arbitrary File Download Exploit Title: Wordpress S3Bubble Cloud Video With Adverts & Analytics - Arbitrary File Download Google Dork: inurl:/plugins/s3bubble-amazon-s3-html-5-video-with-adverts/ Date: 04/07/2015 Exploit Author:...

Cisco Data Center Analytics Framework Cross-Site Request Forgery Vulnerability

A vulnerability in the Data Center Analytics Framework DCAF application could allow an unauthenticated, remote attacker to execute unwanted actions. The vulnerability is due to insufficient cross-site request forgery CSRF protection. An attacker could exploit this vulnerability by tricking the us...

Code injection

The automatic signature update functionality in the 1 Phone Home feature in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, GTM, and Link Controller 11.5.0 through 11.6.0, ASM 10.0.0 through 11.6.0, and PEM 11.3.0 through 11.6.0 and the 2 Call Home feature in ASM 10.0.0 through 11.6.0 and PEM 11.3.0...

CVE-2014-9326

CVE-2014-9326 affects F5 BIG-IP products where the automatic update check (Phone Home) and ASM Call Home auto-signature update do not properly validate SSL server certificates, enabling MITM via crafted certificates. Affected: BIG-IP LTM, AAM, AFM, Analytics, APM, GTM, Link Controller (versions 1...

Google Analytics by Yoast <= 5.3.2 - Stored Cross-Site Scripting (XSS)

The Google Analytics Dashboard Plugin for WordPress by MonsterInsights WordPress plugin was affected by a Stored Cross-Site Scripting XSS security vulnerability...

CVE-2015-0978

CVE-2015-0978 affects Elipse E3 up to 4.6.161 and the Telerik EQATEC Analytics Monitor DLLs (Win32 vc100.dll and Win32 vc100-x64.dll). The vulnerability arises from untrusted DLL loading (OpenSSL-related) that can allow a local attacker to execute arbitrary code by convincing a user to load a mal...

New Analytics Tool Defines Language Used Malicious Domains

OpenDNS has gone public with a new tool that uses a blend of analytics principles found outside information security to create a threat model for detecting domains used in criminal and state-sponsored hacking campaigns. NLPRank is not ready for production, said OpenDNS director of security resear...

Popular Wordpress Analytics plugins-WP-Slimstat weak key and the sql injection vulnerability analysis-vulnerability warning-the black bar safety net

! /Article/UploadPic/2015-2/2 0 1 5 2 2 6 1 1 4 2 5 0 6 4 5. png Web Security enterprise Sucuri Tuesday in a blog post said that they in the latest version of Wordpress Analytics plugins-WP-Slimstat found in asql injectionvulnerabilities, exploit the vulnerability, an attacker can perform sql bli...

WP Slimstat <= 3.9.5 - Weak Cryptographic Keys Leading to SQL Injections

The Slimstat Analytics WordPress plugin was affected by a Weak Cryptographic Keys Leading to SQL Injections security vulnerability...

CVE-2014-6172

IBM API Management 3.0 before 3.0.4.0 IF1 allows remote attackers to obtain sensitive analytics information in an encrypted form via unspecified vectors...

CVE-2014-8730

CVE-2014-8730 is listed in Brocade ASCG advisories as addressed by security updates; the connected document shows this CVE mapped to general remote services and notes fixes are provided via ASCG updates (e.g., 3.3.0/3.3.0a). The initial description describes a POODLE-style padding issue in SSL/TL...

Open Source OpenSOC Security Analytics Framework Released

Cisco announced today that it has made available through open source a framework that integrates data analytics tools into security operations. “The OpenSOC framework helps organizations make big data part of their technical security strategy by providing a platform for the application of anomaly...

CVE-2014-6032

CVE-2014-6032 describes multiple XXE flaws in the Configuration utility of F5 BIG-IP products (LTM, ASM, GTM, Link Controller, AAM, ARM, Analytics, APM/Edge Gateway, PEM, PSM, WOM, Enterprise Manager) affecting versions ranging from 10.0.0 through 10.2.4 and 11.0.0 through 11.6.0 (and related hot...

Code injection

F5 BIG-IP Analytics 11.x before 11.4.0 uses a predictable session cookie, which makes it easier for remote attackers to have unspecified impact by guessing the value...

CVE-2013-7408

F5 BIG-IP Analytics 11.x before 11.4.0 uses a predictable session cookie, which makes it easier for remote attackers to have unspecified impact by guessing the value...