CVE-2016-1248

vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened...

[モバ７]ミラクルジャグラー - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application モバ７ミラクルジャグラー published at the 'play' market has multiple vulnerabilities...

助けてください～既読スルー禁止～ - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application 助けてください～既読スルー禁止～ published at the 'play' market has multiple vulnerabilities...

Don't Drown The Cow - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Don't Drown The Cow published at the 'play' market has multiple vulnerabilities...

Swipe Basketball 2 - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Swipe Basketball 2 published at the 'play' market has multiple vulnerabilities...

Betting Tips - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Betting Tips published at the 'play' market has multiple vulnerabilities...

news.de Nachrichten - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application news.de Nachrichten published at the 'play' market has multiple vulnerabilities...

Deutsches Wörterbuch - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Deutsches Wörterbuch published at the 'play' market has multiple vulnerabilities...

Linux, the underlying function library“glibc”reproduction is a major security vulnerability, a plurality of releases affected-vulnerability warning-the black bar safety net

Google's security research team recently disclosed a glibc getaddrinfo-overflow vulnerability. Vulnerability details the discovery process can be found in the Google blog. Digression, Google engineers are genuine Vulnerability description: The vulnerability cause is that the DNS Server Response t...

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2015:0607-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Java Applet AverageRangeStatisticImpl Remote Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' class...

IRAI AUTOMGEN <= 8.0.0.7 Use After Free

No description provided by source. Luigi Auriemma Application: IRAI AUTOMGEN http://www.irai.com/a8e/ Versions: = 8.0.0.7 aka 8.022 Platforms: Windows Bug: use after free Exploitation: file Date: 10 Oct 2011 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug ...

openSUSE Security Update : libxml2 (openSUSE-SU-2012:1647-1)

A Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 allowed remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...

Flashchat aedating4CMS.php dirinc Parameter PHP Code Execution - Ver2 (CVE-2006-4583)

A code execution vulnerability has been reported in FlashChat. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

RubyonRails 3.0.19 JSON Processor YAML Deserialization 代码执行漏洞

No description provided by source...

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2012:0917-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress WP Forum 1.7.8 SQL Injection

Exploit Title: WordPress WP Forum plugin getrow"SELECT text, authorid, date FROM $tableposts WHERE id = $id"; $u = new WPuser$text-authorid; echo htmlentities"QUOTE $u-nickname @ ".dategetoption'forumdateformat', strtotime$text-date."\n $text-text";...

VisiWave VWR File Parsing Buffer Overflow

$Id: visiwavevwrtype.rb 12706 2011-05-24 23:15:06Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Memory corruption

dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2010-2581, CVE-2010-4084, CVE-2010-4086, and CVE-2010-4088...

CMSQLite 1.2 / CMySQLite 1.3.1 Code Execution

!/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Natural Killer "; if $argc 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n";...