420 matches found
FortiOS < 5.6.0 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Title: FortiOS = 5.6.0 Multiple XSS Vulnerabilities Vendor: Fortinet www.fortinet.com CVE: CVE-2017-3131, CVE-2017-3132, CVE-2017-3133 Date: 28.07.2016 Author: Patryk Bogdan @patrykbogdan Affected FortiNet products: CVE-2017-3131 : FortiOS...
FortiOS 5.6.0 Cross Site Scripting
Title: FortiOS = 5.6.0 Multiple XSS Vulnerabilities Vendor: Fortinet www.fortinet.com CVE: CVE-2017-3131, CVE-2017-3132, CVE-2017-3133 Date: 28.07.2016 Author: Patryk Bogdan @patrykbogdan Affected FortiNet products: CVE-2017-3131 : FortiOS versions 5.4.0 to 5.6.0 CVE-2017-3132 : FortiOS versions...
Assigning a GPU to a Windows VM using xe CLI
To assign a GPU to a Windows VM using xe CLI...
CVE-2016-2157
Cross-site request forgery CSRF vulnerability in mod/assign/adminmanageplugins.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote attackers to hijack the authentication of administrators for requests that manage...
Internet Bug Bounty: Use after free with assign by ref to overloaded objects
Reported: 2015-07-15 16:30 UTC Fixed: 2015-07-21 14:20 UTC Bug Report: https://bugs.php.net/bug.php?id=70083 Fixed in PHP 5.6: http://git.php.net/?p=php-src.git;a=commitdiff;h=f57cb13c566613eec0e1c2f6d96d18565436a9b7 Fixed in 7:...
CVE-2015-1498
Persistent Systems Radia Client Automation does not properly restrict access to certain request, which allows remote attackers to 1 enumerate user accounts via a getUsers request, 2 assign a role to a user account via an addAssigneesToRole request, 3 remove a role from a user account via a...
USAA Mobile App Information Disclosure
The USAA Mobile app for Android, prior to version 7.10.1 released 19 January, contains an information disclosure vulnerability. I have submitted a CVE-Assign request for this issue but do not yet have a CVE assigned. The issue is demonstrated with sanitized screen captures at...
CVE-2014-9388
bugreport.php in MantisBT before 1.2.18 allows remote attackers to assign arbitrary issues via the handlerid parameter...
CVE-2014-9388
bugreport.php in MantisBT before 1.2.18 allows remote attackers to assign arbitrary issues via the handlerid parameter...
ARM ifconfig eth0 and Assign Address
No description provided by source. / Title: arm-ifconfig Brief: Bring up eth0 and assign it the address 192.168.0.2 Author: Daniel Godas-Lopez gmail account dgodas / / socdes = socketAFINET, SOCKDGRAM, IPPROTOIP; / mov %r0, $2 / AFINET / mov %r1, $2 / SOCKDGRAM / mov %r2, $0 / IPPRTOTOIP / push...
UBUNTU-CVE-2013-2226
Multiple SQL injection vulnerabilities in GLPI before 0.83.9 allow remote attackers to execute arbitrary SQL commands via the 1 usersidassign parameter to ajax/ticketassigninformation.php, 2 filename parameter to front/document.form.php, or 3 table parameter to ajax/comments.php...
CentOS Update for kernel CESA-2012:0350 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2011-4295
The moodleenrolexternal:roleassign function in enrol/externallib.php in Moodle 2.0.x before 2.0.4 and 2.1.x before 2.1.1 does not have an authorization check, which allows remote authenticated users to gain privileges by making a role assignment...
kvm security and bug fix update
kvm-83-249.0.1.el5 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch - modify kversion to fix build failure kvm-83-249.el5 - kvm-kernel-KVM-x86-Prevent-starting-PIT-timers-in-the-absence-o.patch bz770101 - CVE: CVE-2011-4622 - Resolves: bz770101...
DEBIAN-CVE-2011-1176
The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileg...
linux/ARM - ifconfig eth0 and Assign Address
Exploit for linux/x86 platform in category shellcode ============================================ linux/ARM - ifconfig eth0 and Assign Address ============================================ / Title: arm-ifconfig Brief: Bring up eth0 and assign it the address 192.168.0.2 Author: Daniel Godas-Lopez /...
ARM ifconfig eth0 and Assign Address
ARM ifconfig eth0 and Assign Address. Shellcode exploit for arm platform / Title: arm-ifconfig Brief: Bring up eth0 and assign it the address 192.168.0.2 Author: Daniel Godas-Lopez / / socdes = socketAFINET, SOCKDGRAM, IPPROTOIP; / mov %r0, $2 / AFINET / mov %r1, $2 / SOCKDGRAM / mov %r2, $0 /...
VU Case Manager Authentication Bypass
Exploit for asp platform in category web applications ===================================== VU Case Manager Authentication Bypass ===================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /...
SA-CONTRIB-2010-045 - Auto Assign Role - Access bypass
The Auto Assign Role serves three primary purposes. The first is to provide an automatic assignment of roles when a new account is created. The second is to allow the end user the option of choosing their own role or roles when they create their account. The third is to provide paths that will...
Assign Groups to Project Role screen allows entry of users as groups
When assigning groups to a project role, the screen allows the user to specify a group that is really a user name...