262 matches found
Google Chrome < 54.0.2840.99 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 54.0.2840.99. It is, therefore, affected by multiple vulnerabilities as referenced in the 201611stable-channel-update-for-desktop9 advisory. - browser/extensions/api/dial/dialregistry.cc in Google Chrome before...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the linux-headers-2.6.26-2-sb1a-bcm91480b package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the linux-image-2.6.18-6-r4k-ip22 package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerability of the Simatic WinCC software allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The implementation of SQL code on the Web Navigator system’s input screen allows malicious actors operating remotely to execute arbitrary SQL commands...
Vulnerabilities in the Debian GNU/Linux operating system that allow a malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
Multiple vulnerabilities in the linux-headers-2.6.24-etchnhalf.1-all-hppa package of the Debian GNU/Linux operating system. Its operation may lead to violations of confidentiality, integrity, and accessibility of protected information...
Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerabilities (USN-2948-1)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2948-1 advisory. Ralf Spenneberg discovered that the USB driver for Clie devices in the Linux kernel did not properly validate the endpoints reported by the device. An...
jenkins: Project name disclosure via fingerprints (SECURITY-153)
The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request...
The vulnerabilities of PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, as well as PDF viewing programs like Adobe Reader and Adobe Reader Document Cloud, allow attackers to circumvent existing restrictions and gain access to protected information.
The vulnerabilities of PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, as well as PDF viewing programs like Adobe Reader and Adobe Reader Document Cloud, are related to lack of access control mechanisms. Exploiting these vulnerabilities can allow attackers to bypass...
AsHttp - Shell Command to Expose any other Command as HTTP
ashttp provide a simple way to expose any shell command by HTTP. For example, to expose top by HTTP, try : ashttp -p8080 top ; then try http://localhost:8080. Dependencies ashttp depends on hlvt100, a headless VT100 emulator. To get and compile hlvt100 : $ git clone...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The kernel-image-2.4.27-2-s390-tape package of the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the samba-3.5.10 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the libexpat1-udeb package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Xiaomi Data Breach — "Exposing Xiaomi" Talk Pulled from Hacking Conference
China’s number one — and the world’s 3rd largest — smartphone manufacturer, Xiaomi, which is trying to make inroads into India’s booming mobile phone market, was found secretly sending users’ personal data, including IMEI numbers, phone numbers and text messages to the web servers back to Beijing...
SOL15722 - OpenSSL DTLS SRTP Memory Leak CVE-2014-3513
Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...
Expose - Unspecified XSS
The expose WordPress theme was affected by an Unspecified XSS security vulnerability...
WordPress Expose Theme - Cross Site Scripting
Because of this vulnerability, an attacker can inject arbitrary web script or HTML. Solution Update the theme...
Joomla Component Expose <= RC35 Remote File Upload Vulnerability
No description provided by source. HHHHHHH HHHHHH HH HHHHHHHH HHHHHH HHHHHHHH IHHI HH HH HHHHHHHH HH HH HH HH HH HHHHHHHH HH IHHI HH HHH HH HHHHHHHH HH HH HH HH HH HH HH HH HH HHHH HH HH HHHHHHH HHHHHH HH HHHHHHH HHHHHH HH HH HH HH HH HHHHHHHH HH HH HH HH HH HH HH HH HH HHHH HH HH HH HH HH HHHHHH...
Captaris Infinite Mobile Delivery Webmail 2.6 Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12399/info Infinite Mobile Delivery Webmail is reportedly affected by a path disclosure vulnerability. This issue could permit a malicious user to expose the root path of the affected application...
[USN-2168-1] Python Imaging Library vulnerabilities
========================================================================== Ubuntu Security Notice USN-2168-1 April 15, 2014 python-imaging vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...
StartBBS V1.1.3多处数据库报错显路径
简要描述: StartBBS V1.1.3多处数据库报错显路径 详细说明: 第一处:http://127.0.0.1/startbbs/index.php/user/login POST数据username=1 第二处:http://127.0.0.1/startbbs/index.php/home/getmore/w.jsp 随意构造一个.jsp爆出数据库查询语句 漏洞证明:...