5019 matches found
CVE-2016-6842
An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. Setting the user's name to JS code makes that code execute when selecting that user's "Templates" folder from OX Documents settings. This requires the folder to be shared to the victim. Malicious script code can be executed...
Fedora 24 : roundcubemail (2016-60753c3dcd)
Version 1.2.3 - Searching in both contacts and groups when LDAP addressbook with groupfilters option is used - Fix vulnerability in handling of mail's 5th argument - Fix To: header encoding in mail sent with mail method 5475 - Fix flickering of header topline in min-mode 5426 - Fix bug where...
[SECURITY] Fedora 25 Update: roundcubemail-1.2.3-1.fc25
RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...
The installers of multiple Japan Pension Service software may insecurely load Dynamic Link Libraries
Overview The installers of multiple Japan Pension Service software contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Yuji Tounai of NTT Communications Corporation reported this vulnerability to IPA. JPCERT/CC coordinated with the developer und...
Teradata Studio Express 15.12.00.00 Race Condition
Title: /tmp race condition in Teradata Studio Express v15.12.00.00 studioexpressinstall Author: Larry W. Cashdollar, @larry0 Date: 2016-10-03 Download Site: http://downloads.teradata.com/download/tools/teradata-studio-express Vendor: Teradata Vendor Notified: 2016-10-03 Vendor Contact: web form...
phpWebAdmin 1.0 SQL Injection
!/usr/bin/perl -w phpWebAdmin Version 1.0 SQL Injection Proof Of Concept Exploit =============================================================== Discovered by NA , NAattutanota.com ======================================== Description ============ php web admin file and folder manager. currently...
Microsoft Edge Information Disclosure Vulnerability
An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory. An attacker who successfully exploited this vulnerability could trick a user into allowing access to the user’s My Documents folder. For an attack to be successful, an attacker must persuade a...
CVE-2016-7095
Exponent CMS before 2.3.9 is vulnerable to an attacker uploading a malicious script file using redirection to place the script in an unprotected folder, one allowing script execution...
Design/Logic Flaw
Exponent CMS before 2.3.9 is vulnerable to an attacker uploading a malicious script file using redirection to place the script in an unprotected folder, one allowing script execution...
CVE-2016-7095
Exponent CMS before 2.3.9 is vulnerable to an attacker uploading a malicious script file using redirection to place the script in an unprotected folder, one allowing script execution...
User Profile name changes from User Name to "My Documents" or "Documents"
Under certain circumstances, the Desktop.ini file may cause the User Profile folder name on the User Store to change from the User Name to "My Documents". If we delete the "desktop.ini" file in the "My Documents" folder, it changes the folder name back to the correct user name...
ir-rescue - A Windows Batch Script To Comprehensively Collect Host Forensic Data
ir-rescue is a lightweight Windows Batch script that collects a myriad of forensic data from 32-bit and 64-bit Windows systems while respecting the order of volatility and artifacts that are changed with the execution of the script e.g. , prefetch files. It is intended for incident response use a...
Magento Community Edition < 1.9.2.2 Multiple Vulnerabilities
Binary data 9678.prm...
ZendStudio IDE Privilege Vulnerability
Zend Studio is Zend Technologies developed PHP language integrated development environment Integrated Development Environment IDE, which combines PHP and mobile development , and includes some simple mobile application source code. An elevation of privilege vulnerability exists in ZendStudio IDE...
Files.com: Existence of Folder path by guessing the path through response
Enter the support PIN from your test site: 423088 Enter the name of your test site : https://bugbounty5.brickftp.com Enter the subdomain from your test site : https://bugbounty5.brickftp.com ---- Description Suppose there are 2 Folders in the site Test1 Test2 but a member has only Admin permissio...
Abyss Web Server X1 2.11.1 Privilege Escalation
Exploit Title: Abyss Web Server X1 2.11.1 Multiple Local Privilege Escalation Date: 05/10/2016 Exploit Author: Tulpa Contact: [email protected] Author website: www.tulpa-security.com Author twitter: @tulpasecurity Vendor Homepage: http://aprelium.com/ Application Download:...
How to Move Replica Metadata
Purpose This article documents the procedure for moving replica metadata between repositories. While moving the replica metadata is not required when changing which repository a replication job uses, moving the metadata will eliminate the need for a lengthy "calculating disk digest" task after th...
DEBIAN-CVE-2016-7162
The gfileremovedirectory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive...
Macro Expert 4.0 - Multiple Privilege Escalations
Macro Expert 4.0 - Multiple Privilege Escalations Exploit Title: Macro Expert 4.0 Multiple Elevation of Privilege Date: 26/09/2016 Exploit Author: Tulpa Contact: [email protected] Author website: www.tulpa-security.com Vendor Homepage: http://www.macro-expert.com/ Software Link:...
Macro Expert 4.0 Privilege Escalation
Exploit Title: Macro Expert 4.0 Multiple Elevation of Privilege Date: 26/09/2016 Exploit Author: Tulpa Contact: [email protected] Author website: www.tulpa-security.com Vendor Homepage: http://www.macro-expert.com/ Software Link: http://www.macro-expert.com/download.htm Version: Software...