Atlassian JIRA Server ProfileLinkUserFormat Component Information Disclosure Vulnerability

Atlassian JIRA Server is a defect tracking management system from Atlassian Australia. The system is used to track and manage all kinds of issues and defects in the workplace.ProfileLinkUserFormat is one of the user information display components. An information disclosure vulnerability exists in...

bind: processing of certain records when "deny-answer-aliases" is in use may trigger an assert leading to a denial of service

A denial of service flaw was discovered in bind versions that include the "deny-answer-aliases" feature. This flaw may allow a remote attacker to trigger an INSIST assert in named leading to termination of the process and a denial of service condition...

bind: processing of certain records when "deny-answer-aliases" is in use may trigger an assert leading to a denial of service

A denial of service flaw was discovered in bind versions that include the "deny-answer-aliases" feature. This flaw may allow a remote attacker to trigger an INSIST assert in named leading to termination of the process and a denial of service condition...

Atlassian Confluence Questions Cross-Site Request Forgery Vulnerability

Atlassian Confluence Questions is a suite of specialized enterprise knowledge management and collaboration software from Atlassian Australia, which can also be used to build enterprise WiKi's. The software enables collaboration and knowledge sharing among team members. A cross-site request forger...

Atlassian Confluence Questions Cross-Site Request Forgery Vulnerability (CNVD-2018-17881)

Atlassian Confluence Questions is a suite of specialized enterprise knowledge management and collaboration software from Atlassian Australia, which can also be used to build enterprise WiKi's. The software enables collaboration and knowledge sharing among team members. A cross-site request forger...

CVE-2018-13394

The acceptAnswer resource in Atlassian Confluence Questions before version 2.6.6, the bundled version of Confluence Questions was updated to a fixed version in Confluence version 6.9.0, allows remote attackers to modify a comment into an answer via a Cross-site request forgery CSRF vulnerability...

UBUNTU-CVE-2018-5740

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, ...

Null pointer dereference

An issue has been found in the parsing of authoritative answers in PowerDNS Recursor before 4.0.8, leading to a NULL pointer dereference when parsing a specially crafted answer containing a CNAME of a different class than IN. An unauthenticated remote attacker could cause a denial of service...

CVE-2017-17871

The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter...

Sql injection

The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter...

CVE-2017-17871

The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter...

JEXTN Question And Answer extension SQL Injection Vulnerability

Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other functions.JEXTN Question And Answer extension is used in one of the online question and answer plug-ins. A SQL injection vulnerability...

JEXTN Question And Answer ,3.1.0,SQL Injection

JEXTN Question And Answer ,3.1.0,SQL Injection...

Joomla JEXTN Question And Answer 3.1.0 Component - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component JEXTN Question And Answer 3.1.0 - SQL Injection Dork: N/A Date: 13.12.2017 Vendor Homepage: http://jextn.com/ Software Link:...

Joomla! Component JEXTN Question And Answer 3.1.0 - SQL Injection

Joomla! Component JEXTN Question And Answer 3.1.0 - SQL Injection Exploit Title: Joomla! Component JEXTN Question And Answer 3.1.0 - SQL Injection Dork: N/A Date: 13.12.2017 Vendor Homepage: http://jextn.com/ Software Link:...

Debian DSA-4063-1 : pdns-recursor - security update

Toshifumi Sakaguchi discovered that PowerDNS Recursor, a high-performance resolving name server was susceptible to denial of service via a crafted CNAME answer. The oldstable distribution jessie is not affected. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

CVE-2017-12775

qa-include/qa-install.php in Question2Answer before 1.7.5 allows remote attackers to create multiple user accounts...

NEC UNIVERGE UM4730 < 11.8 - SQL Injection

Exploit Title: NEC UNIVERGE UM4730 11.8 SQL injection Vulnerbility: SQL injection login bypass Date: 15-12-2016 Exploit Author: b0x41s Author web: https://www.xrayit.nl Vendor Homepage: https://www.nec-enterprise.com Category: webapps Version: 11.6.0.31 Tested on: Windows server 2008 Description:...

bind: assertion failure while handling responses containing a DNAME answer

A denial of service flaw was found in the way BIND handled responses containing a DNAME answer. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

QWIKIA 1.1.1 - SQL Injection

QWIKIA 1.1.1 - SQL Injection Exploit Title: QWIKIA - Ask And Answer Platform 1.1.1 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://xandr.co/ Software Buy: http://xandr.co/portfolio/qwikia Demo: http://qwikia.xandr.co/ Version: 1.1.1 Tested on: Win7 x64, Kali Linux x64...