413 matches found
taylorsince1909.com XSS vulnerability
Vulnerable URL: http://www.taylorsince1909.com/scriptfolder/obituaries.php?id=277'"--!confirmOPENBUGBOUNTY...
troyanimalrescueproject.org XSS vulnerability
Vulnerable URL: http://troyanimalrescueproject.org/newsdetail.php?ID=1'"--!confirmOPENBUGBOUNTY...
broncosbasketball.com.au XSS vulnerability
Vulnerable URL: http://www.broncosbasketball.com.au/newsitem.php?nid=4'"--!confirmOPENBUGBOUNTY...
eastsomersetrailway.com XSS vulnerability
Vulnerable URL: http://www.eastsomersetrailway.com/newsitem.php?item=9'"--!confirmOPENBUGBOUNTY...
mocorunning.com XSS vulnerability
Vulnerable URL: http://www.mocorunning.com/athlete.php?athleteid=362110'"--!confirmOPENBUGBOUNTY...
knightsofthe21stcentury.com XSS vulnerability
Vulnerable URL: https://knightsofthe21stcentury.com/store/catalogsearch/result'"--!confirm1OPENBUGBOUNTY//...
qub.ac.uk XSS vulnerability
Vulnerable URL: http://www.qub.ac.uk/imagining-history/resources/short/results.php?record=117'"--!confirmOPENBUGBOUNTY...
CVE-2016-3188
The prepopulaterequestwalk function in the Prepopulate module 7.x-2.x before 7.x-2.1 for Drupal allows remote attackers to modify the 1 actions, 2 container, 3 token, 4 password, 5 passwordconfirm, 6 textformat, or 7 markup field type, and consequently have unspecified impact, via unspecified...
Ubuntu 14.04 LTS : wpa_supplicant and hostapd vulnerabilities (USN-2808-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2808-1 advisory. It was discovered that wpasupplicant incorrectly handled WMM Sleep Mode Response frame processing. A remote attacker could use this issue to perform...
CVE-2015-5316
The eappwdperformconfirmexchange function in eappeer/eappwd.c in wpasupplicant 2.x before 2.6, when EAP-pwd is enabled in a network configuration profile, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an EAP-pwd Confirm message followed by the...
The vulnerability of the Moodle learning management system allows a hacker to gain access to user account data.
The vulnerability of the login/confirm.php sub-component of the Moodle learning management system is related to the lack of protection for administrative data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to user account information during attemp...
The vulnerability of the Moodle learning management system allows a hacker to bypass access restrictions to the system.
The vulnerability of the Moodle learning management system’s sub-component login/confirm.php is related to deficiencies in access control for certain functions. Exploiting this vulnerability could allow a malicious actor to bypass system access restrictions by obtaining access using an account...
CVE-2015-4143
The EAP-pwd server and peer implementation in hostapd and wpasupplicant 1.0 through 2.4 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 Commit or 2 Confirm message payload...
CVE-2015-4143
The EAP-pwd server and peer implementation in hostapd and wpasupplicant 1.0 through 2.4 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 Commit or 2 Confirm message payload...
WordPress Plugin church_admin 0.800 - Persistent Cross-Site Scripting
WordPress Plugin churchadmin 0.800 - Persistent Cross-Site Scripting Exploit Title: Wordpress churchadmin Stored XSS Date: 21-04-2015 Exploit Author: woodspeed Vendor Homepage: https://wordpress.org/plugins/church-admin/ Version: 0.800 OSVDB ID : http://www.osvdb.org/show/osvdb/121304 WPVULNDB ID...
wpa_supplicant/hostapd eap_peer/eap_pwd.c eap_pwd_perform_confirm_exchange() function out-of-bounds read vulnerability
hostapd is a user-state daemon for APs and authentication servers. wpasupplicant is a WiFi-capable component for Android that supports authentication of wireless connections. hostapd eappeer/eappwd.c An out-of-bounds read vulnerability exists in eappwdperformconfirmexchange confirm message...
wpa_supplicant/hostapd eap_server/eap_server_pwd.c eap_pwd_process_confirm_resp() function out-of-bounds read vulnerability
hostapd is a user-state daemon for APs and authentication servers. wpasupplicant is a WiFi-capable component for Android that supports authentication of wireless connections. hostapd eapserver/eapserverpwd.c eappwdprocessconfirmresp function An out-of-bounds read vulnerability exists in the confi...
wpa_supplicant/hostapd EAP-pwd Denial of Service Vulnerability
wpasupplicant is a WiFi enabled component for Android that supports wireless connection authentication. Multiple security vulnerabilities exist in wpasupplicant and hostapd, which can be exploited by an attacker to cause out-of-bounds memory read access and denial of service via constructed...
Vimeo: Full account takeover via Add a New Email to account without email verified and without password confirmation.
Description : This is especially important if the application is commonly used in shared computers such as cyber cafes or airport terminals Bug : Add a New Email to account without email verified and without password confirmation when the leaves open email ,Leading to the theft of account In less...
OP5 5.3.5/5.4.0/5.4.2/5.5.0/5.5.1 - 'welcome' Remote Command Execution (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'OP5 welcome Remote Command Execution', 'Description' = %q This module exploits an arbitrary root command execution vulnerabilit...