85 matches found
CVE-2018-10363
An issue was discovered in the WpDevArt "Booking calendar, Appointment Booking System" plugin 2.2.2 for WordPress. Multiple parameters allow remote attackers to manipulate the values to change data such as prices...
UBUNTU-CVE-2017-7704
In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value...
Unspecified Vulnerability in Oracle E-Business Suite Oracle CRM Technology Foundation BIS Common Component (CNVD-2016-00657)
Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle E-Business Suite Oracle CRM Technology Foundation BIS Common component, which could be exploited by remote attackers to submit a special request to modify data...
Design/Logic Flaw
editrequestuser.asp in Layton Helpbox 4.4.0 allows remote authenticated users to change arbitrary support-ticket data via a modified sysrequestid parameter...
am4ss 1.2 <= three xss-vulnerability warning-the black bar safety net
Title : am4ss 1.2 = Multiple Vulnerabilities Author: s3n4t00r Affected versions : all version XSS storage type 1 1 - Register 2 - Login here http://localhost/am4ss/orderdev.php?step=2 3 - Create a Ticket and add your code html or js 4 - Show Tickets http://www.xxx.com/exp/am4ss/tickets.php XSSXSS...