Java Code, Details Released for Potential Sandbox Bypass Issue

Additional details and code demonstrating a possible security vulnerability in Java were released this morning by a Polish security research company, bringing to a head a three-week long debate between the researcher and Oracle over whether the issue is indeed a vulnerability or an allowed behavi...

Cisco Unified MeetingPlace Server Cross-Site Scripting Vulnerability

Cisco Unified MeetingPlace Server contains a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to insufficient sanitization of user-supplied input processed by the Cisco Unified MeetingPlace software. An...

CVE-2012-3174

Unspecified vulnerability in Oracle Java 7 before Update 11 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013-0422. NOTE: some parties have mapped CVE-2012-3174 to an issue involving recursive use of the...

Exploit Code, Metasploit Module Out for Ruby on Rails Flaws

Just two days after the disclosure of a string of serious vulnerabilities in Ruby on Rails, researchers have released proof-of-concept exploit code for a couple of the flaws and the team at Metasploit have released a module for the penetration testing framework that exploit one of the bugs, as...

Cisco Unified IP Phones Local Kernel System Call Input Validation Vulnerability

Cisco Unified IP Phones 7900 Series versions 9.31SR1 and prior contain an arbitrary code execution vulnerability that could allow a local attacker to execute code or modify arbitrary memory with elevated privileges. This vulnerability is due to a failure to properly validate input passed to kerne...

WordPress Photo Plus / Photo Search XSS / CSRF

Exploit Title: Word Press Photo Plus, Photo Search XSS/CSRF Vulnerability Google Dork: Date: 29/12/12 Exploit Author: k3170makan Vendor Homepage: http://wordpress.org/extend/plugins/wp-photo-album-plus/ Software Link: http://wordpress.org/extend/plugins/wp-photo-album-plus/ Version: 4.8.11 Tested...

MyBB AwayList Plugin SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: AwayList MyBB plugin SQLi 0day Exploit Author: RedHat Team Vect0r Software Link: http://mods.mybb.com/view/awaylist Tested on: Windows & Linux. Vulnerable code : simpleselect // 245 "awaylist", '', "id = '" . $mybb-input'id' . "...

Cisco Wireless Lan Controller 7.2.110.0 Multiple Vulnerabilities

Exploit for hardware platform in category dos / poc Cisco WLC CSRF, DoS, and Persistent XSS Vulnerabilities Exploit Title: u email protected? - Cisco WLC CSRF, DoS, and Persistent XSS Vulnerabilities Date: Discovered and reported November 2012 Author: Jacob Holcomb/Gimppy042 - Security Analyst @...

Mysql provide the right to exploit the expanded applications-vulnerability warning-the black bar safety net

This: MySQL Windows Remote System Level Exploit Stuxnet technique 0day http://www.exploit-db.com/exploits/23083/ Roughly looked at, the original is in the export file when the out of the question, specifically how out of the question, showing look at the mysql source code than I can see to...

Cisco Secure Access Control System TACACS+ Authentication Bypass Vulnerability

Cisco Secure Access Control System ACS contains a vulnerability that could allow an unauthenticated, remote attacker to bypass TACACS+ based authentication services offered by the affected application. The vulnerability is due to improper validation of user-supplied input processed by the affecte...

Firefox 16.0.2 available, Cross site scripting attack patched

16.0.2 Firefox is now available for anyone who wants to try before anyone else. Mozilla address one serious vulnerability. According to the information security of Mozilla, they has fixed a number of issues related to the Location object in order to enhance overall security. The Location object i...

Critical infrastructure managing software vulnerable to Unauthorized access

Reid Wightman from security firm ioActive reported that there is an undocumented backdoor available in CoDeSys software that actually used to manage equipment in power plants, military environments, and nautical ships. The bug allow malicious hackers to access sensitive systems without...

Researcher Develops Patch for Java Zero-Day, Puts Pressure on Oracle to Deliver its Fix

A security researcher has submitted to Oracle a patch he said took him 30 minutes to produce that would repair a zero-day vulnerability currently exposed in Java SE. He hopes his actions will spur Oracle to issue an out-of-band patch for the sandbox-escape vulnerability, rather than wait for the...

WordPress Plugin FireStorm Professional Real Estate 2.06.01 - SQL Injection

Exploit Title: Wordpress FireStorm Professional Real Estate 2.06.01 SQL Injection Vulnerability Google Dork: inurl:"/fs-real-estate-plugin/xml/markerlistings.xml?id=" Exploit Author: Ashiyane Digital Security Team Software Link: http://www.firestormplugins.com/plugins/real-estate/ Category: Web...

Cisco Identity Services Engine Cross-Site Request Forgery Vulnerability

Cisco Identity Services Engine contains multiple vulnerabilities that could allow an unauthenticated, remote attacker to conduct cross-site request forgery attacks on a targeted system. The vulnerability is due to insufficient sanitization of user-supplied input processed by the ISE Administrator...

Internet Download Manager - Local Stack Buffer Overflow

!/usr/bin/perl 1 ========================================== 1 0 I'm Dark-Puzzle From Inj3ct0r TEAM 0 0 1 1 dark-puzzleatliveatfr 0 0 ========================================== 1 1 White Hat 1 0 Independant Pentester 0 1 exploit coder/bug researcher 0...

Wordpress HD Webplayer 1.1 SQL injection and fix-vulnerability warning-the black bar safety net

Title Wordpress HD Webplayer 1.1 SQL Injection Author: JoinSe7en Program website: http://www.hdwebplayer.com/ Software connected: http://hdwebplayer.com/downloads/hdwebplayerwordpress1.1.zip Affected version: Version 1.1 Tested System: Windows 7, Backtrack 5 r3...

ThinPrint - 'tpfc.dll' Insecure Library Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/55421/info ThinPrint is prone to a vulnerability that lets attackers execute arbitrary code. Exploiting this issue allows local attackers to execute arbitrary code with the privileges of the user running the affected application. include int hijackpoc...

Oracle Releases Fix For Java CVE-2012-4681 Flaw

Oracle on Thursday released a new version of Java that included a fix for the CVE-2012-4681 vulnerability that has been used in limited targeted attacks in the last couple of weeks. The release of Java 7 update 7 comes about four days after the Java flaw was publicly disclosed, but several months...

Plugin HD Webplayer <= 1.1 - SQL Injections

The last time it was checked the plugin was still affected and had been closed. http://example.com/wp-content/plugins/hd-webplayer/config.php?id=INJECT HERE http://example.com/wp-content/plugins/hd-webplayer/playlist.php?videoid=INJECT HERE...