1162 matches found
Skype Vulnerability Exposing User IP Addresses
Skype Vulnerability Exposing User IP Addresses Skype is warning users following the launch of a site devoted to harvesting user IP addresses.The Skype IP-Finder site allowed third-parties to see a user's last known IP address by simply typing in a user name. A script has been uploaded to Github...
MySQLDumper 1.24.4 - main.php Multiple Cross-Site Request Forgery Vulnerabilities
MySQLDumper 1.24.4 - main.php Multiple Cross-Site Request Forgery Vulnerabilities source: https://www.securityfocus.com/bid/53306/info MySQLDumper is prone to multiple security vulnerabilities, including: 1. Multiple cross-site scripting vulnerabilities. 2. A local file-include vulnerability. 3...
Sybase EAServer Directory Traversal Vulnerability - Active Check
Sybase EAServer is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Waylu CMS - products_xx.php SQL Injection HTML Injection
Waylu CMS - productsxx.php SQL Injection HTML Injection source: https://www.securityfocus.com/bid/53202/info Waylu CMS is prone to an SQL-injection vulnerability and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an...
$60000 for Exploiting Google Chrome, Hackers at Pwnium work...
$60000 for Exploiting Google Chrome, Hackers at Pwnium work... Google has offered prizes, totalling $1 million, to those who successfully hack the Google Chrome browser at the Pwn2Own hacker contest taking place next week i.e 7 March 2012. Chrome is the only browser in the contest's six year...
Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities
Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52170/info Webglimpse is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...
Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/52170/info Webglimpse is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script on the affected server and steal...
Dolibarr ERP/CRM 3.2 Alpha - Multiple Directory Traversal Vulnerabilities
source: https://www.securityfocus.com/bid/52113/info Dolibarr is prone to multiple directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting the issues can allow an attacker to obtain sensitive information that could aid in further attacks...
R2Extreme 1.65 - Stack Buffer Overflow Directory Traversal
R2Extreme 1.65 - Stack Buffer Overflow Directory Traversal source: https://www.securityfocus.com/bid/52061/info R2/Extreme is prone to a stack-based buffer-overflow vulnerability and a directory-traversal vulnerability. Exploiting these issues may allow remote attackers to execute arbitrary code ...
GForge 5.7.1 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/51799/info GForge is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script on the affected server and steal...
w-CMS <= 2.0.1 Multiple Vulnerabilities - Active Check
w-CMS is prone to multiple HTML-injection vulnerabilities and a local file include LFI vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Distributed Network Protocol v3 'Stop Application' Alert (SCADA) (deprecated)
Binary data 6250.prm...
IpTools 0.1.4 - Tiny TCPIP servers Directory Traversal
IpTools 0.1.4 - Tiny TCPIP servers Directory Traversal source: https://www.securityfocus.com/bid/51311/info IpTools Tiny TCP/IP servers is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input submitted to its web interface. Exploiting this iss...
PHPShop CMS 3.4 - Multiple Cross-Site Scripting SQL Injections
PHPShop CMS 3.4 - Multiple Cross-Site Scripting SQL Injections source: https://www.securityfocus.com/bid/51130/info PHPShop CMS is prone to multiple cross-site scripting and SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically...
Manx Multiple Cross Site Scripting and Directory Traversal Vulnerabilities
Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...
Oxide WebServer - Directory Traversal
Oxide WebServer - Directory Traversal source: https://www.securityfocus.com/bid/50845/info Oxide WebServer is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input submitted to its web interface. Exploiting this issue will allow an attacker to...
Oxide WebServer - Directory Traversal
source: https://www.securityfocus.com/bid/50845/info Oxide WebServer is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input submitted to its web interface. Exploiting this issue will allow an attacker to view arbitrary files within the contex...
SMS Trojans Spreading to the Rest of the World
SMS Trojans that ride along on supposedly benign mobile apps and then send out messages to high-priced numbers have been a problem in some Asian and Eastern European countries for several years now, most notably in Russia and China. But now the attackers have realized that there’s a whole big wor...
Manx 1.0.1 - '/admin/admin_pages.php?Filename' Traversal Arbitrary File Access
source: https://www.securityfocus.com/bid/50839/info Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code in the browser...
Support Incident Tracker (SiT!) <= 3.65 Multiple Vulnerabilities
Support Incident Tracker SiT! is prone to multiple vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...