4423 matches found
CVE-2014-8586
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/wordpresscpcalendarsqli.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:33+00:00|...
[SECURITY] Fedora 27 Update: postgresql-9.6.9-1.fc27
PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...
[SECURITY] Fedora 26 Update: postgresql-9.6.9-1.fc26
PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...
OWASP iGoat (Swift) - A Damn Vulnerable Swift Application For iOS
This is a Swift version of original iGoat Objective C project. Using OWASP iGoat, you can learn exploiting and defending vulnerabilities in iOS Swift applications. Developed using Swif 4 and Ruby iGoat Objective C was presented at: OWASP TOP 10 Mobile Reverse Engineering Runtime Analysis Data...
Fedora 27 : mysql-mmm (2018-e31f52c5ee)
Multi-Master Replication Manager for MySQL mmmagentd Remote Command Injection Vulnerabilities This update adds data sanitization to inputs for the mmm agent. Multiple exploitable remote command injection vulnerabilities exist in the MySQL Master-Master Replication Manager MMM mmmagentd daemon...
[SECURITY] Fedora 27 Update: flac-1.3.2-7.fc27
FLAC stands for Free Lossless Audio Codec. Grossly oversimplified, FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, flac, a command-line program to encode and decode FLAC files, metaflac, a command-line...
What we’ve got here is failure to communicate: OS vendors misread CPU docs, create flaw
In a memorable scene from “Jumpin’ Jack Flash,” Whoopi Goldberg struggles to understand the lyrics of the eponymous song from the Rolling Stones, as she pleads: “Mick, Mick, Mick, speak English!” It appears that multiple operating system vendors had similar trouble interpreting Intel and AMD...
openSUSE Security Update : nodejs6 (openSUSE-2018-444)
This update for nodejs6 fixes the following issues : - Fix some node-gyp permissions - New upstream LTS release 6.14.1 : - Security fixes : + CVE-2018-7160: Fix for inspector DNS rebinding vulnerability bsc1087463 + CVE-2018-7158: Fix for 'path' module regular expression denial of service...
Major OS Players Misinterpret Intel Docs, and Now Kernels Can Be Hijacked
Multiple operating system vendors issued coordinated patches this week to address a common vulnerability across their platforms, which was introduced thanks to widespread misinterpretation of Intel developer documentation. According to the CERT/CC team, most major players including Apple, FreeBSD...
[SECURITY] Fedora 28 Update: flac-1.3.2-7.fc28
FLAC stands for Free Lossless Audio Codec. Grossly oversimplified, FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, flac, a command-line program to encode and decode FLAC files, metaflac, a command-line...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0135
An update of 'linux', 'linux-esx' packages of Photon OS has been released...
Trying Splunk Cloud
I first used Splunk over ten years ago, but the first time I blogged about it was in 2008. I described how to install Splunk on Ubuntu 8.04. Today I decided to try the Splunk Cloud. Splunk Cloud is the company's hosted Splunk offering, residing in Amazon Web Services AWS. You can register for a 1...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0043
An update of 'linux-esx', 'linux', 'linux-secure', 'linux-aws' packages of Photon OS has been released...
Kurukshetra - A Framework For Teaching Secure Coding By Means Of Interactive Problem Solving
Kurukshetra is a web framework that’s developed with the aim of being the first open source framework which provides a solid foundation to host reasonably complex secure coding challenges while still providing the ability to efficiently and dynamically execute each challenge on the basis of user...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0133
An update of 'linux-esx', 'linux' packages of Photon OS has been released...
php: Incorrect return value check of OpenSSL sealing function leads to crash
In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, the openssl extension PEM sealing code did not check the return value of the OpenSSL sealing function, which could lead to a crash of the PHP interpreter, related to an interpretation conflict for a negative number in...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0041
An update of 'ceph', 'linux-esx', 'rsync', 'linux', 'linux-secure', 'linux-aws' packages of Photon OS has been released...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0132
An update of 'linux-esx', 'rsync', 'linux' packages of Photon OS has been released...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0132-A
An update of 'linux', 'linux-esx' packages of Photon OS has been released...
OpenDaylight Helium Information Disclosure Vulnerability
Opendaylight, a project of the Linux Foundation, is a community-driven, open-source, software-defined networking framework that includes a collection of modules to perform networking tasks that need to be done quickly.OpenDaylight Helium is a version of it. A security vulnerability exists in the...