110 matches found
Mandriva Linux Security Advisory : hplip (MDVSA-2014:023)
Updated hplip packages fix security vulnerabilities : It was discovered that the HPLIP Polkit daemon incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files CVE-2013-6402. It was discovered that HPLIP contained an upgrade tool that would...
Path Traversal in AWS XMS
High-Tech Bridge Security Research Lab discovered path traversal vulnerability in AWS XMS, which can be exploited to read contents of arbitrary files. 1 Path Traversal in AWS XMS: CVE-2013-2474 The vulnerability exists due to insufficient filtration of "what" HTTP GET parameter passed to...
The company's customer information and tracking management system CITMS 3.0 injection and upload vulnerabilities-vulnerability warning-the black bar safety net
Management system part of the function is as follows: (1)online add, modify, delete administrators (2)online add, modify, delete customer records, supporting HTML, etc.. (3)the front Desk recorded with the tracking function.. As well as the track record and the number of clicks on the display...
NO. 0 0 1 school website management system Build 1 1 0 6 2 8 injection vulnerability-vulnerability warning-the black bar safety net
NO. 0 0 1 school website management system modules: 1. Administrator information:website basic information setting, the principal mailbox, etc., database backup,user management, departments and permissions management, etc. 2. School profile:the level of classification, you can add a campus...
Magic snow enterprises website system 1.0 injection exploit-vulnerability warning-the black bar safety net
Magic snow corporate website source to have news, group overview, industrial systems, human resources, investment resources, feedback, contact us section. Backstage news dynamic management, enterprise information management, industry management system, human resources management, investment...
Magic snow enterprises website system 1.0 injection vulnerabilities-vulnerability warning-the black bar safety net
Magic snow corporate website source to have news, group overview, industrial systems, human resources, investment resources, feedback, contact us section. Backstage news dynamic management, enterprise information management, industry management system, human resources management, investment...
Instant Expert Analysis ActiveX控件任意代码下载和执行漏洞
BUGTRAQ ID: 31752 CVECAN ID: CVE-2008-4385 Instant Expert Analysis允许站点通过单击方式快速分析用户的软硬件。 Instant Expert Analysis对Firefox或Netscape浏览器使用签名的Java Applet(SRLApplet.class,由sysreqlab2.jar或sysreqlab.jar提供),对Internet Explorer使用签名的ActiveX控件(sysreqlab.dll、sysreqlabsli.dll或sysreqlab2.dll)。...
Fedora Core 6 : mono-1.1.17.1-4.fc6 (2007-067)
A security problem was found and fixed in mono class libraries that affects the Mono web server implementation. By appending spaces to URLs attackers could download the source code of ASP.net scripts that would normally get executed by the web server. After upgrading the packages you need to...
maluinfo <= 206.2.38 (bb_usage_stats.php) Remote File Include Exploit
No description provided by source. !/usr/bin/perl maluinfo 206.2.38 brazilian PHPBB Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...
JBOSS 3.2.2-3.2.7 / 4.0.2 installation path disclosure / config disclosure / version fingerprinting
Security Advisory: JBOSS 3.2.2-3.2.7 / 4.0.2 installation path disclosure / config disclosure / version fingerprinting Date: 14/06/05 URL: http://www.illegalaccess.org/java/jbosspath.php Problem: The default installation of JBoss reveals the path of the installation directory and allows...