Wei Feng network passport design defect,the presence of leakage of user privacy risk-vulnerability warning-the black bar safety net

Wei Feng network passport design defect, enter any one of the Wei Feng network registered user name, you can get the user registered email address and other private information Due to audience characteristics significantly, in the mobile Internet boom may have prompted some of thehackingmalicious...

dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion

ISC reports: A critical defect in BIND 9 allows an attacker to cause excessive memory consumption in named or other programs linked to libdns...

RedHat Update for abrt and libreport RHSA-2013:0215-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Important: Red Hat Security Advisory: abrt and libreport security update

Updated abrt and libreport packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

dns/bind9* -- servers using DNS64 can be crashed by a crafted query

ISC reports: BIND 9 nameservers using the DNS64 IPv6 transition mechanism are vulnerable to a software defect that allows a crafted query to crash the server with a REQUIRE assertion failure. Remote exploitation of this defect can be achieved without extensive effort, resulting in a...

Xivo 1.2 arbitrary File Download-vulnerability warning-the black bar safety net

Xivo 1.2 Arbitrary File Download under root privileges Author : Mr. Un1k0d3r Developer: https://wiki.xivo.fr Download address: https://wiki.xivo.fr/index.php/XiVO1.1-Gallifrey/InstallXiVOWithCD Effect version: 1.2 last patched version Test version: Linux xivo 2.6.32-5-4 8 6 Test using: Using the...

WebDAV aeration directory write permissions vulnerability-vulnerability warning-the black bar safety net

Recently, the 3 6 0 Web sitessecurity testingplatform issued an emergency Safety notice, widely used communication Protocol WebDAV there is a directory write permission to the high-risk vulnerabilities, an attacker can upload arbitrary text files, and combined with the server to resolve the...

Scientific Linux Security Update : abrt, libreport, btparser, and python-meh on SL6.x i386/x86_64 (20120620)

ABRT Automatic Bug Reporting Tool is a tool to help users to detect defects in applications and to create a bug report with all the information needed by a maintainer to fix it. It uses a plug-in system to extend its functionality. libreport provides an API for reporting different problems in...

CentOS Update for abrt CESA-2012:0841 centos6

Check for the Version of abrt OpenVAS Vulnerability Test CentOS Update for abrt CESA-2012:0841 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Low: Red Hat Security Advisory: abrt, libreport, btparser, and python-meh security and bug fix update

Updated abrt, libreport, btparser, and python-meh packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores,...

PHP Address Book 7.0.0 plurality of defect and repair-vulnerability warning-the black bar safety net

Title: PHP Address Book 7.0.0 Multiple security vulnerabilities Author: Stefan Schurtz Affected Software: Successfully tested on PHP Address Book 7.0.0 Developer website: http://sourceforge.net/projects/php-addressbook/ Defect description PHP Address Book 7.0.0 containing multiple XSS and SQLi...

Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : thunderbird vulnerabilities (USN-1430-3)

USN-1430-1 fixed vulnerabilities in Firefox. This update provides the corresponding fixes for Thunderbird. Bob Clary, Christian Holler, Brian Hackett, Bobby Holley, Gary Kwong, Hilary Hall, Honza Bambas, Jesse Ruderman, Julian Seward, and Olli Pettay discovered memory safety issues affecting...

Siemens SIMATIC S7-400 PN CPU DoS

Overview Siemens has reported to ICS-CERT that denial-of-service DoS vulnerabilities exist in the SIMATIC S7-400 V6 and SIMATIC S7-400 V5 PN CPU products. Siemens has produced a firmware update that mitigates the vulnerability affecting the S7-400 V6. Siemens will not fix the vulnerability that...

Note the dog design defect causes can delete the website of any picture-vulnerability warning-the black bar safety net

The path to improper handling resulting in a registered user can delete the site on any picture Detailed description: To register a user, after login click on upload avatar, for example, the address is: http://www.badguest.cn /jishigou30s/index. php? mod=settings&code=face In the end...

AneCMS v. 2e2c583 local file containing the defect and repair-vulnerability warning-the black bar safety net

Title: AneCMS v. 2e2c583 LFI exploit Author Author: I2sec-PJH Software development website: https://github.com/AneGroup/AneCMS Affected version: v. 2e2c583 Overview source of index. php page the presence of defects Code analysis is as follows 1. ifisset$GET'p' 2. include './ pages/'.$ GET'p'.'...

Pragyan CMS v 3.0 remote file disclosure-vulnerability warning-the black bar safety net

Title: Pragyan CMS v 3.0 = Remote File Disclosure Author Or4nG. M4n Download address http://space.dl.sourceforge.net/project/pragyan/pragyan/3.0/PragyanCMS-v3.0-beta.tar.bz2 The location of the defect download.lib.php line 1 6 index.php line 2 3 4 $GET'fileget' Test http://www.xxx.com /Pragyan/?...

Joomla component(com_dshop) SQL injection flaws and fixes-vulnerability warning-the black bar safety net

Title: Joomla Component comdshop SQL Injection Vulnerability Author: CoBRa21 www.badguest.cn uykucu at windowslive.com Level: high risk SQL defects http://www.badguest.cn /PATH/index. php? option=comdshop&controller=fpage&task=flypage&idofitem=1 2 SQL Test example...

[SECURITY] Fedora 16 Update: abrt-2.0.7-2.fc16

abrt is a tool to help users to detect defects in applications and to create a bug report with all informations needed by maintainer to fix it. It uses plugin system to extend its functionality...

Plugin for WordPress CevherShare 2.0 SQL injection flaws and fixes-vulnerability warning-the black bar safety net

Affected versions: WordPress CevherShare 2.0 plugin Developer: http://phpkode.com/ Download address: http://phpkode.com/download/s/cevhershare.zip Test platform: Ubuntu-Linux Defect code page: cevhershare/cevhershare-admin.php Test: http://www.2cto.com...

PHP Support Tickets v2. 2 code implementation of defect and repair-vulnerability warning-the black bar safety net

Title: PHP Support Tickets v2. 2 Code Exec Author: brainpillow Developer website: www.phpsupporttickets.com Affected version: 2.2 Defect code analysis: /classes/GUI/abstract.GUI.php www.badguest.cn public function getPageName return eval'return PHPSTPAGENAME' . strtoupper$this-page . ';';...