CB Radio Chat - for friends! - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application CB Radio Chat - for friends! published at the 'play' market has multiple vulnerabilities...

CVE-2014-7793

The CVE-2014-7793 entry refers to the Android app CB - Calciatori Brutti (com.calciatori.brutti) 1.0, which does not verify X.509 certificates when connecting to SSL servers. This lack of certificate validation can allow man-in-the-middle attackers to spoof servers and obtain sensitive informatio...

Joomla! CB Resume Builder 'group_id' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36598/info The CB Resume Builder 'comcbresumebuilder' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiti...

Joomla CB Resume Builder - SQL Injection

No description provided by source. / Joomla Component comcbresumebuilder Remote SQL injection vulnerability - groupid Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : October 5, 2009 Tune In : http://antisecradio.fm choose your weapon / Software Information +...

PYSEC-2014-63

1 cbdecode.py and 2 linkintegrity.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allow remote authenticated users to cause a denial of service resource consumption via a large zip archive, which is expanded decompressed...

CVE-2013-1568

Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 2.8.0 through 5.3.3, 6.0.1, and 6.2.0 allows remote authenticated users to affect availability via unknown vectors related to CB...

NCH Officeintercom 5.20 - Remote Denial of Service

NCH Officeintercom 5.20 - Remote Denial of Service !/usr/bin/python Exploit Title: NCH Officeintercom = v5.20 Remote Denial of Service Vulnerability Date: 11/24/2010 Author: xsploited security URL: http://www.x-sploited.com/ Contact: xsploitedsecurity at x-sploited.com Software Link:...

Joomla Component com_soundset LFI Vulnerability

Exploit for php platform in category web applications =============================================== Joomla Component comsoundset LFI Vulnerability =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...

Insufficient Anti-automation vulnerability in CB Captcha for Joomla and Mambo

Здравствуйте 3APA3A! Сообщаю вам о найденной мною Insufficient Anti-automation уязвимости в плагине CB Captcha plugcbcaptcha для компонента Community Builder comcomprofiler для Joomla и Mambo. Данный плагин базируется на скрипте капчи CaptchaSecurityImages.php и об уязвимостях в...

Sql injection

SQL injection vulnerability in the JoomlaCache CB Resume Builder comcbresumebuilder component for Joomla! allows remote attackers to execute arbitrary SQL commands via the groupid parameter in a groupmembers action to index.php...

CVE-2009-3645

SQL injection vulnerability in the JoomlaCache CB Resume Builder comcbresumebuilder component for Joomla! allows remote attackers to execute arbitrary SQL commands via the groupid parameter in a groupmembers action to index.php...

Joomla CB Resume Builder SQL Injection

No description provided by source. / Joomla Component comcbresumebuilder Remote SQL injection vulnerability - groupid Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : October 5, 2009 Tune In : http://antisecradio.fm choose your weapon / Software Information +...

Joomla! Component CB Resume Builder - 'group_id' SQL Injection

source: https://www.securityfocus.com/bid/36598/info The CB Resume Builder 'comcbresumebuilder' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

Joomla! Component CB Resume Builder - SQL Injection

Joomla! Component CB Resume Builder - SQL Injection / Joomla Component comcbresumebuilder Remote SQL injection vulnerability - groupid Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : October 5, 2009 Tune In : http://antisecradio.fm choose your weapon / Softwar...

Joomla! Component CB Resume Builder - group_id SQL Injection

Joomla! Component CB Resume Builder - groupid SQL Injection source: https://www.securityfocus.com/bid/36598/info The CB Resume Builder 'comcbresumebuilder' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it...