Lucene search
K

4420 matches found

The Hacker News
The Hacker News
added 2013/05/28 5:30 p.m.7 views

PayPal denies to pay Bug Bounty reward to teenager

When coders and online security researchers find errors in websites or software, the companies behind the programs will often pay out a bounty to the person who discovered the issue. The programs are intended to create an incentive for researchers to privately report issues and allow vendors to...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2013/05/28 6:30 a.m.20 views

PayPal denies to pay Bug Bounty reward to teenager

When coders and online security researchers find errors in websites or software, the companies behind the programs will often pay out a bounty to the person who discovered the issue. The programs are intended to create an incentive for researchers to privately report issues and allow vendors to...

6.8AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2013/05/13 12:0 a.m.13 views

Determining if your Company is Prepared for FedRAMP

Many companies interested in pursuing FedRAMP are seeking guidelines, checklists and any referenceable source to help them understand and determine their level of preparedness to go through the FedRAMP process. The GSAs FedRAMP.gov site provides documentation on the FedRAMP process in their "Guid...

2AI score
Exploits0
OpenVAS
OpenVAS
added 2013/05/09 12:0 a.m.34 views

Fedora Update for rubygem-rdoc FEDORA-2013-2131

Check for the Version of rubygem-rdoc OpenVAS Vulnerability Test Fedora Update for rubygem-rdoc FEDORA-2013-2131 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

4.3CVSS5.7AI score0.03622EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/05/09 12:0 a.m.29 views

Fedora Update for rubygem-rdoc FEDORA-2013-2143

Check for the Version of rubygem-rdoc OpenVAS Vulnerability Test Fedora Update for rubygem-rdoc FEDORA-2013-2143 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

4.3CVSS5.7AI score0.03622EPSS
Exploits0References2
Fedora
Fedora
added 2013/05/07 6:36 p.m.37 views

[SECURITY] Fedora 18 Update: rubygem-rdoc-3.12-6.fc18

RDoc produces HTML and command-line documentation for Ruby projects. RDoc includes the +rdoc+ and +ri+ tools for generating and displaying online documentation. See RDoc for a description of RDoc's markup and basic use...

4.3CVSS0.2AI score0.03622EPSS
Exploits0
Fedora
Fedora
added 2013/05/07 6:25 p.m.33 views

[SECURITY] Fedora 17 Update: rubygem-rdoc-3.12-5.fc17

RDoc produces HTML and command-line documentation for Ruby projects. RDoc includes the +rdoc+ and +ri+ tools for generating and displaying online documentation. See RDoc for a description of RDoc's markup and basic use...

4.3CVSS0.2AI score0.03622EPSS
Exploits0
0day.today
0day.today
added 2013/05/07 12:0 a.m.35 views

Dovecot with Exim sender_address Parameter - Remote Command Execution

Exploit for linux platform in category remote exploits Exim with Dovecot: Typical Misconfiguration Leads to Remote Command Execution During a penetration test a typical misconfiguration was found in the way Dovecot is used as a local delivery agent by Exim. A common use case for the Dovecot IMAP...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/05/03 12:0 a.m.50 views

Exim / Dovecot Command Execution

Advisory: Exim with Dovecot: Typical Misconfiguration Leads to Remote Command Execution During a penetration test a typical misconfiguration was found in the way Dovecot is used as a local delivery agent by Exim. A common use case for the Dovecot IMAP and POP3 server is the use of Dovecot as a...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/04/10 12:0 a.m.138 views

RHEL 6 : Subscription Asset Manager (RHSA-2013:0686)

Red Hat Subscription Asset Manager 1.2.1, which fixes several security issues, multiple bugs, and adds various enhancements, is now available. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which...

7.5CVSS8AI score0.13911EPSS
Exploits2References15
RedHat Linux
RedHat Linux
added 2013/04/09 6:8 p.m.42 views

Moderate: Red Hat Security Advisory: rubygem packages security update

This update fixes one security issue in multiple rubygem packages for Red Hat OpenShift Enterprise 1.1.3. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

4.3CVSS7.5AI score0.03622EPSS
Exploits0References2
Circl
Circl
added 2013/04/09 12:0 a.m.30 views

CVE-2013-3526

creationtimestamp| type| source ---|---|--- 2013-04-09 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38439...

4.3CVSS6.8AI score0.13939EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2013/04/07 12:0 a.m.40 views

Belkin Wemo Arbitrary Firmware Upload

Exploit Title: Belkin Wemo Arbitrary Firmware Vulnerability Date: 4/3/13 Exploit Author: Daniel Buentello Vendor Homepage: http://www.belkin.com/us/wemo Version: Any version prior to WeMoUS2.00.2176.PVT CVE : CVE-2013-2748 Hello Im independently working with Mitre and Belkin on this matter so...

0.3AI score0.1307EPSS
Exploits6
Fedora
Fedora
added 2013/04/05 11:11 p.m.50 views

[SECURITY] Fedora 17 Update: postgresql-9.1.9-1.fc17

PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...

8.5CVSS0.8AI score0.54312EPSS
Exploits7
Fedora
Fedora
added 2013/04/05 10:59 p.m.42 views

[SECURITY] Fedora 18 Update: postgresql-9.2.4-1.fc18

PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...

8.5CVSS0.8AI score0.54312EPSS
Exploits4
Atlassian
Atlassian
added 2013/04/04 10:48 a.m.22 views

Editing "Global Templates" possible without admin login

If you are logged in to the admin panel you get the following line: quoteYou have temporary access to administrative functions. Drop access if you no longer require it. For more information, refer to the documentation.quote Pressing "Drop access" redirects you to the normal Wiki page, away from t...

7AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/04/04 10:48 a.m.31 views

Editing "Global Templates" possible without admin login

If you are logged in to the admin panel you get the following line: quoteYou have temporary access to administrative functions. Drop access if you no longer require it. For more information, refer to the documentation.quote Pressing "Drop access" redirects you to the normal Wiki page, away from t...

7AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/04/04 10:48 a.m.35 views

Editing "Global Templates" possible without admin login

If you are logged in to the admin panel you get the following line: quoteYou have temporary access to administrative functions. Drop access if you no longer require it. For more information, refer to the documentation.quote Pressing "Drop access" redirects you to the normal Wiki page, away from t...

7AI score
Exploits0
exploitpack
exploitpack
added 2013/04/04 12:0 a.m.14 views

Mozilla Firefox - Cookie Verification Denial of Service

Mozilla Firefox - Cookie Verification Denial of Service source: https://www.securityfocus.com/bid/62969/info Mozilla Firefox is prone to a denial-of-service vulnerability because it fails to verify the user supplied input. Successfully exploiting this issue will allow an attacker to inject specia...

0.4AI score
Exploits0
Circl
Circl
added 2013/04/03 12:0 a.m.14 views

CVE-2013-0125

creationtimestamp| type| source ---|---|--- 2013-04-03 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38415...

4.3CVSS6.9AI score0.01682EPSS
Exploits1References1
Rows per page
Query Builder