Lucene search
K

8692 matches found

Prion
Prion
added 2012/07/09 10:20 a.m.15 views

Default configuration

DISPUTED The default configuration of Cyberoam UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in-the-middle attackers to spoof SSL servers by leveraging the presence of the CyberoamSSLC...

5.8CVSS6.9AI score0.00938EPSS
Exploits0References5
OSV
OSV
added 2012/06/29 5:55 p.m.2 views

DEBIAN-CVE-2012-3818

The fpm exporter in Revelation 0.4.13-2 and earlier encrypts the version number but not the password when exporting a file, which might allow local users to obtain sensitive information...

2.1CVSS6.5AI score0.00329EPSS
Exploits0References1
Vulnerability Lab
Vulnerability Lab
added 2012/06/24 12:0 a.m.26 views

KeePass Password Safe 1.22 - Encoding Filter Vulnerability

Document Title: =============== KeePass Password Safe 1.22 - Encoding Filter Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=615 Release Date: ============= 2012-06-24 Vulnerability Laboratory ID VL-ID: ====================================...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/06/23 12:0 a.m.16 views

KeePass Password Safe 1.22 - Encoding Filter Vulnerability

Document Title: =============== KeePass Password Safe 1.22 - Encoding Filter Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=615 Release Date: ============= 2012-06-23 Vulnerability Laboratory ID VL-ID: ====================================...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2012/06/18 12:0 a.m.192 views

Interspire Shopping Cart v6 - Multiple Web Vulnerabilities

Title: ====== Interspire Shopping Cart v6 - Multiple Web Vulnerabilities Date: ===== 2012-06-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=593 VL-ID: ===== 593 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...

7.7AI score
Exploits0
exploitpack
exploitpack
added 2012/06/08 12:0 a.m.13 views

WordPress Plugin Easy Contact Forms Export 1.1.0 - Information Disclosure

WordPress Plugin Easy Contact Forms Export 1.1.0 - Information Disclosure Description : Wordpress Plugins - Easy Contact Forms Export Information Disclosure Vulnerability Version : 1.1.0 Link : http://wordpress.org/extend/easy-contact-forms-exporter/ Plugins :...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2012/06/07 12:0 a.m.23 views

WordPress Plugin Email NewsLetter 8.0 - 'option' Information Disclosure

source: https://www.securityfocus.com/bid/53850/info The Email Newsletter plugin for WordPress is prone to an information-disclosure vulnerability because it fails to sufficiently validate user-supplied data. An attackers can exploit this issue to obtain sensitive information that may aid in...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/15 12:0 a.m.27 views

WordPress Newsletter Manager 1.0 Cross Site Scripting

Hi We have used our tool, THAPS, to identify vulnerabilities in this WordPress plugin. We have confirmed at least one of the reported vulnerabilities and created a working exploit located below. Attached is one or more log files containing the output of our tool, identifying the location of the...

7.4AI score
Exploits0
0day.today
0day.today
added 2012/05/11 12:0 a.m.29 views

Adobe Photoshop CS5.1 U3D.8BI Collada Asset Elements Stack Overflow

Exploit for windows platform in category local exploits ?php // Adobe Photoshop CS5.1 U3D.8bi Library Collada Asset Elements // Unicode Conversion Stack Based Buffer Overflow poc .dae // 32bit/SEH // // unicode overflow occurs when overlong asset elements are processed // one could be able to...

6.8AI score
Exploits0
NVD
NVD
added 2012/05/03 6:55 p.m.25 views

CVE-2012-0555

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows remote attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK, a different vulnerability than CVE-2012-0554, CVE-2012-0556,...

7.5CVSS5.8AI score0.02491EPSS
Exploits0References5
NVD
NVD
added 2012/05/03 6:55 p.m.21 views

CVE-2012-0554

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows remote attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK, a different vulnerability than CVE-2012-0555, CVE-2012-0556,...

7.5CVSS5.8AI score0.02491EPSS
Exploits0References5
Prion
Prion
added 2012/05/03 6:55 p.m.17 views

Buffer overflow

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows remote attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK, a different vulnerability than CVE-2012-0554, CVE-2012-0555,...

7.5CVSS6.1AI score0.02491EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2012/05/03 6:17 p.m.29 views

CVE-2012-0556

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows remote attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK, a different vulnerability than CVE-2012-0554, CVE-2012-0555,...

5.8AI score0.02491EPSS
Exploits0References5
Cvelist
Cvelist
added 2012/05/03 6:17 p.m.31 views

CVE-2012-0555

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows remote attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK, a different vulnerability than CVE-2012-0554, CVE-2012-0556,...

5.8AI score0.02491EPSS
Exploits0References5
Fedora
Fedora
added 2012/05/02 4:49 a.m.40 views

[SECURITY] Fedora 17 Update: phpMyAdmin-3.5.0-1.fc17

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

4.3CVSS6.8AI score0.02234EPSS
Exploits3
Fedora
Fedora
added 2012/05/01 12:55 a.m.35 views

[SECURITY] Fedora 16 Update: phpMyAdmin-3.5.0-1.fc16

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

4.3CVSS6.8AI score0.02234EPSS
Exploits3
The Hacker News
The Hacker News
added 2012/04/23 10:57 p.m.8 views

Cyber Attack on The Iranian Oil Ministry's Computer Network

Cyber Attack on The Iranian Oil Ministry's Computer Network The Iranian oil ministry's computer network came under attack from hackers and a computer virus, prompting the Islamic Republic to disconnect the country's main oil export terminal from the internet as a preventative measure, a...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2012/04/23 12:0 a.m.45 views

t3_dbtools_seditio_plugin_CSRF

====================================================================== Vulnerable software: T3 DB Tools Version 1.6 seditio database management plugin. Developed by : http://www.t3-design.com/t3-db-tools/ MD5 SUM: 8ab362601793e238f504783fd9953dd4 dbtools.rar...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2012/04/09 12:0 a.m.113 views

'PHP Grade Book' Unauthenticated SQL Database Export (CVE-2012-1670)

'PHP Grade Book' Unauthenticated SQL Database Export CVE-2012-1670 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in admin/index.php that allows for an unauthenticated user to export the entire application database by...

5CVSS6.7AI score0.07755EPSS
Exploits6
0day.today
0day.today
added 2012/04/02 12:0 a.m.67 views

Teampass <= v2.1.6 Arbitrary File Upload / Export decrypt passwords

Exploit for php platform in category web applications Vendor or Software Link: https://github.com/nilsteampassnet/TeamPass Version: connect; // Get all accounts $rows = $db-fetchallarray" SELECT i.id AS id, i.restrictedto AS restrictedto, i.perso AS perso, i.label AS label, i.description AS...

7.1AI score
Exploits0
Rows per page
Query Builder