Lucene search
K

7667 matches found

CNVD
CNVD
added 2017/02/16 12:0 a.m.2 views

EMC RSA Security Analytics Cross-Site Scripting Vulnerability

EMC RSA Security Analytics SA is a suite of security intelligence analytics platforms from EMC Corporation. The platform leverages and extends the architecture and analytics capabilities of RSA NetWitness. A cross-site scripting vulnerability exists in EMC RSA SA versions 10.5.3 and 10.6.2. A...

6.1CVSS6.2AI score0.01042EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2017/02/14 11:38 a.m.25 views

Adobe Patches 13 Code Execution Vulnerabilities in Flash

Adobe patched 13 code execution vulnerabilities in Flash Player today as part of its regular patch update cycle. All of the flaws were rated the highest severity for Windows, macOS and Chrome. Adobe said that Flash version 24.0.0.194 and earlier are vulnerable and that users should update...

10CVSS0.4AI score0.09307EPSS
Exploits0References4
Exploit DB
Exploit DB
added 2017/02/10 12:0 a.m.50 views

Youtube Analytics Multi Channel 3.0 - SQL Injection

Exploit Title: Youtube Analytics Multi Channel v3.0 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://vtcreators.com/ Software Buy: https://codecanyon.net/item/youtube-analytics-multi-channel/14720919 Demo: http://demo.vtcreators.com/yamc/ Version: 3.0 Tested on: Win7 x64,...

7.4AI score
Exploits0
0day.today
0day.today
added 2017/02/10 12:0 a.m.27 views

Youtube Analytics Multi Channel 3.0 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Youtube Analytics Multi Channel v3.0 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://vtcreators.com/ Software Buy: https://codecanyon.net/item/youtube-analytics-multi-channel/14720919 Demo:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2017/02/10 12:0 a.m.19 views

Youtube Analytics Multi Channel 3.0 - SQL Injection

Youtube Analytics Multi Channel 3.0 - SQL Injection Exploit Title: Youtube Analytics Multi Channel v3.0 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://vtcreators.com/ Software Buy: https://codecanyon.net/item/youtube-analytics-multi-channel/14720919 Demo:...

Exploits0
Packet Storm
Packet Storm
added 2017/02/10 12:0 a.m.53 views

Youtube Analytics Multi Channel 3.0 SQL Injection

Exploit Title: Youtube Analytics Multi Channel v3.0 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://vtcreators.com/ Software Buy: https://codecanyon.net/item/youtube-analytics-multi-channel/14720919 Demo: http://demo.vtcreators.com/yamc/ Version: 3.0 Tested on: Win7 x64,...

Exploits0
ThreatPost
ThreatPost
added 2017/02/08 9:0 a.m.8 views

Consortium Publishes Manifesto on Autonomous Vehicle Security

Intel, Uber and IoT company Aeris have joined forces in an effort aimed at fostering industry cooperation when it comes to building safety features into autonomous vehicles and the systems that support them. Today the group, which goes by the name Future of Automotive Security Technology Research...

0.3AI score
Exploits0References3
rapid7community
rapid7community
added 2017/02/06 8:41 p.m.15 views

Incident Detection and Investigation - How Math Helps But Is Not Enough

I love math. I am even going to own up to having been a "mathlete" and looking forward to the annual UVM Math Contest in high school. I pursued a degree in engineering, so I can now more accurately say that I love applied mathematics, which have a much different goal than pure mathematics. Taking...

6.7AI score
Exploits0
Citrix
Citrix
added 2017/02/03 12:0 a.m.6 views

Data Not Displayed Under Gateway Insight Node of NetScaler MAS

No data is displaced under the Analytics Gateway Insight node of the NetScaler MAS GUI...

7.1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2017/02/01 10:59 p.m.3 views

CVE-2016-0218

IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browser within the security...

5.4CVSS5.6AI score0.00705EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2017/02/01 10:59 p.m.3 views

CVE-2016-0218

IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browser within the security...

5.4CVSS5.8AI score0.00705EPSS
Exploits0References3
CVE
CVE
added 2017/02/01 10:0 p.m.57 views

CVE-2016-0217

CVE-2016-0217 is a stored cross-site scripting vulnerability in IBM Cognos Business Intelligence and IBM Cognos Analytics caused by improper validation of user input. A remote attacker could inject malicious script into a page viewed by an authenticated user, potentially stealing cookie-based cre...

5.4CVSS6.2AI score0.00705EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/02/01 10:0 p.m.57 views

CVE-2016-0218

CVE-2016-0218 affects IBM Cognos Business Intelligence/IBM Cognos Analytics (and related TM1 advisories) with a cross-site scripting vulnerability caused by improper validation of user input. A remote attacker can entice a user to click a crafted URL, triggering script execution in the victim’s b...

5.4CVSS7.4AI score0.00705EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2017/01/25 11:59 a.m.2 views

CVE-2016-8215

EMC RSA Security Analytics 10.5.3 and 10.6.2 contains fixes for a Reflected Cross-Site Scripting vulnerability that could potentially be exploited by malicious users to compromise the affected system...

6.1CVSS5.8AI score0.01042EPSS
Exploits0References3
CVE
CVE
added 2017/01/25 11:0 a.m.46 views

CVE-2016-8215

EMC RSA Security Analytics affected versions 10.5.3 and 10.6.2 contain a Reflected Cross‑Site Scripting vulnerability. A remote attacker could potentially exploit this to compromise the affected system. The vulnerability is addressed by fixes in 10.5.3 and 10.6.2.

6.1CVSS6AI score0.01042EPSS
Exploits0References3Affected Software1
Hacker One
Hacker One
added 2017/01/19 11:35 p.m.169 views

HackerOne: Google Analytics could be used as CSP bypass for data exfiltration on hackerone.com

Greetings, I believe I may have found a way to bypass CSP on hackerone.com The issue lies here: img-src 'self' data: www.google-analytics.com As you can imagine, how can image tags be used maliciously here to this safe site? Well, as you know, on google-analytics.com we have the ability to host...

7.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/01/17 12:56 a.m.9 views

kcore-analytics.com XSS vulnerability

Vulnerable URL: http://www.kcore-analytics.com/searching/?keyword=twerp'"...

6.9AI score
Exploits0
Symantec
Symantec
added 2017/01/12 8:0 a.m.59 views

SA139 : November 2016 NTP Security Vulnerabilities

SUMMARY Symantec Network Protection products using affected versions of the NTP reference implementation from ntp.org are susceptible to multiple vulnerabilities. A remote attacker can modify the targets system time, prevent the target from synchronizing its time, cause denial of service through...

7.1CVSS1.5AI score0.52935EPSS
Exploits12Affected Software9
OpenVAS
OpenVAS
added 2017/01/11 12:0 a.m.25 views

SonicWall Global Management System (GMS) / Universal Management Suite (USM) / Analyzer / Analytics Detection (HTTP)

HTTP based detection of Dell SonicWALL Global Management System GMS / Universal Management Suite USM / Analyzer / Analytics. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.1AI score
Exploits0References3
OSV
OSV
added 2017/01/10 4:59 p.m.6 views

CVE-2016-9247

Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile and TCP analytics profile, a specific sequence of packets may cause the Traffic Management Microkernel TMM to restart...

5.9CVSS5.8AI score0.01886EPSS
Exploits0References3
Rows per page
Query Builder