Lucene search
K

7667 matches found

NVD
NVD
added 2017/01/10 4:59 p.m.23 views

CVE-2016-9247

Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile and TCP analytics profile, a specific sequence of packets may cause the Traffic Management Microkernel TMM to restart...

5.9CVSS5.7AI score0.01886EPSS
Exploits0References3
CVE
CVE
added 2017/01/10 4:0 p.m.58 views

CVE-2016-9247

CVE-2016-9247 affects F5 BIG-IP TMM when a virtual server uses a FastL4 profile with a TCP analytics profile; a specific packet sequence can cause TMM restart, potentially disrupting traffic or causing failover. The F5 advisory lists vulnerable versions (e.g., BIG-IP LTM 12.1.0–12.1.1 and other a...

5.9CVSS5.7AI score0.01886EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/01/10 4:0 p.m.30 views

CVE-2016-9247

Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile and TCP analytics profile, a specific sequence of packets may cause the Traffic Management Microkernel TMM to restart...

5.7AI score0.01886EPSS
Exploits0References3
Hacker One
Hacker One
added 2017/01/07 12:59 a.m.49 views

Shopify: apps.shopify.com - CSRF token leakage through Google Analytics

Description: When a user tries to send a support a message to an app developer in apps.shopify.com , he will be asked to login and once he is logged in , he will be redirected to apps.shopify.com/appid?authenticitytoken=currentuserauthenticitytoken. Developers can track their app page view in...

7AI score
Exploits0
CNVD
CNVD
added 2017/01/04 12:0 a.m.3 views

Western Digital MyCloud NAS Remote Command Injection Vulnerability

Western Digital MyCloud NAS is a personal cloud storage device. Western Digital MyCloud NAS version 2.11.142 suffers from a remote command injection vulnerability in /web/googleanalytics.php, which allows an attacker to execute arbitrary commands with root privileges via the arg parameter within...

10CVSS8.5AI score0.95174EPSS
Exploits4References1
OSV
OSV
added 2017/01/03 6:59 a.m.2 views

CVE-2016-10108

Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11.142 /web/googleanalytics.php URL via a modified arg parameter in the POST data...

9.8CVSS7.4AI score
Exploits0References3
CNVD
CNVD
added 2016/12/20 12:0 a.m.1 views

SAP HANA Remote Security Bypass Vulnerability

SAP HANA is a high-performance real-time data analytics platform from SAP. The platform provides data query functions, users can directly query and analyze a large amount of real-time business data. A remote security bypass vulnerability exists in SAP HANA. An attacker could exploit this issue to...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/12/16 12:0 a.m.58 views

F5 Networks BIG-IP : TMM vulnerability (K33500120)

Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile and TCP analytics profile, a specific sequence of packets may cause the Traffic Management Microkernel TMM to restart. CVE-2016-9247 Impact An attacker may be able to disrupt traffic or cause the...

5.9CVSS5.9AI score0.01886EPSS
Exploits0References2
CNVD
CNVD
added 2016/12/14 12:0 a.m.2 views

WordPress Plugin Google Analytics Counter Tracker PHP Object Injection Vulnerability

WordPress is the WordPress Software Foundation of a set of blogging platform developed using the PHP language , the platform supports PHP and MySQL server set up a personal blog site . WordPress plugin Google Analytics Counter Tracker has a PHP object injection vulnerability, the vulnerability...

7.6AI score
Exploits0References1
0day.today
0day.today
added 2016/12/14 12:0 a.m.40 views

WordPress Google Analytics Counter Tracker 3.1.5 PHP Object Injection Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Google Analytics Counter Tracker WordPress Plugin unauthenticed PHP Object injection vulnerability -----------------------------------------------------------------------...

0.2AI score
Exploits0
ThreatPost
ThreatPost
added 2016/12/12 10:38 a.m.14 views

German Industrial Giant Victim of Cyber Espionage

German industrial conglomerate ThyssenKrupp disclosed last week that technical trade secrets were stolen in a cyberattack that dates back to February. Adversaries, ThyssenKrupp said, engaged in “organized, highly professional hacker activities” and launched their attack from the Southeast Asian...

1.2AI score
Exploits0References4
Mageia
Mageia
added 2016/12/11 10:44 p.m.21 views

Updated python-tornado package fixes security vulnerability

A difference in cookie parsing between Tornado and web browsers especially when combined with Google Analytics could allow an attacker to set arbitrary cookies and bypass XSRF protection. The cookie parser has been rewritten to fix this attack...

5.8AI score
Exploits0References2
Patchstack
Patchstack
added 2016/12/11 12:0 a.m.8 views

WordPress Google Analytics Counter Tracker Plugin <= 3.4.0 - PHP Object Injection

This plugin is prone to a PHP object injection vulnerability. It allows attackers to execute arbitrary PHP code. Solution Update the plugin...

6.1AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2016/12/11 12:0 a.m.7 views

WordPress Google Analytics Counter Tracker Plugin <= 3.4.0 - PHP Object Injection

This plugin is prone to a PHP object injection vulnerability. It allows attackers to execute arbitrary PHP code. Solution Update the plugin...

6.1AI score
Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 2016/12/11 12:0 a.m.70 views

WordPress Google Analytics Counter Tracker 3.1.5 PHP Object Injection

------------------------------------------------------------------------ Google Analytics Counter Tracker WordPress Plugin unauthenticed PHP Object injection vulnerability ------------------------------------------------------------------------ Remco Vermeulen, July 2016...

0.7AI score
Exploits0
OpenVAS
OpenVAS
added 2016/12/07 12:0 a.m.11 views

Fedora Update for drupal7-google_analytics FEDORA-2016-9c04d7e5c5

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
CNVD
CNVD
added 2016/11/23 12:0 a.m.3 views

IBM Web Content Manager Production Analytics Cross-Site Scripting Vulnerability

IBM Web Content Manager Production Analytics is a product of IBM Corporation, USA. A cross-site scripting vulnerability exists in IBM Web Content Manager Production Analytics, which can be exploited by an attacker to inject arbitrary JavaScript code into the Web UI...

6.1CVSS6.3AI score0.00713EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2016/11/15 12:0 a.m.9 views

Google Analytics Counter Tracker <= 3.4.0 - Unauthenticated PHP Object Injection

The Google Analytics Counter Tracker WordPress plugin was affected by an Unauthenticated PHP Object Injection security vulnerability...

3.1AI score
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/11/15 12:0 a.m.12 views

Fedora 25 : drupal7-google_analytics (2016-9c04d7e5c5)

7.x-2.3 - Google Analytics - Moderately Critical - Cross Site Scripting - SA-CONTRIB-2016-042 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

5.4AI score
Exploits0References2
FireEye
FireEye
added 2016/11/09 1:0 p.m.16 views

Extending Linux Executable Logging With The Integrity Measurement Architecture

Gaining insight into the files being executed on your system is a great first step towards improved visibility on your endpoints. Taking this a step further, centrally storing logs of file execution data so they can be used for detection and hunting provides an excellent opportunity to find evil ...

7AI score
Exploits0References6
Rows per page
Query Builder