SynaMan 3.4 Build 1436 CSRF / Cross Site Scripting

Exploit Title: Multiple vulnerabilities in SynaMan 3.4 Build 1436 CSRF/Stored XSS Date: 07-05-2015 Exploit Author: Marlow Tannhauser Contact: [email protected] Vendor Homepage: http://www.synametrics.com Software Link: http://web.synametrics.com/SynaManDownload.htm Version: 3.4 Build 143...

SynaMan 3.4 Build 1436 - Multiple Vulnerabilities

SynaMan 3.4 Build 1436 - Multiple Vulnerabilities Exploit Title: Multiple vulnerabilities in SynaMan 3.4 Build 1436 CSRF/Stored XSS Date: 07-05-2015 Exploit Author: Marlow Tannhauser Contact: [email protected] Vendor Homepage: http://www.synametrics.com Software Link:...

SynaMan 3.4 Build 1436 - Multiple Vulnerabilities

Exploit Title: Multiple vulnerabilities in SynaMan 3.4 Build 1436 CSRF/Stored XSS Date: 07-05-2015 Exploit Author: Marlow Tannhauser Contact: [email protected] Vendor Homepage: http://www.synametrics.com Software Link: http://web.synametrics.com/SynaManDownload.htm Version: 3.4 Build 143...

Photo Manager Pro 4.4.0 iOS - Code Execution Vulnerability

Exploit for iOS platform in category web applications Document Title: =============== Photo Manager Pro 4.4.0 iOS - Code Execution Vulnerability Product & Service Introduction: =============================== Do you have troubles for managing thousands of photos and videos? Do you have any privat...

CVE-2015-2789

Unquoted Windows search path vulnerability in the Foxit Cloud Safe Update Service in the Cloud plugin in Foxit Reader 6.1 through 7.0.6.1126 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder...

Design/Logic Flaw

Unquoted Windows search path vulnerability in the Foxit Cloud Safe Update Service in the Cloud plugin in Foxit Reader 6.1 through 7.0.6.1126 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder...

McAfee Security Center MCINSCTL.DLL ActiveX Control File Overwrite - Ver2 (CVE-2005-3657)

The McAfee Security Center application is meant to allow users to set preferences and settings for numerous installed McAfee components and services, such as the anti-virus component VirusScan, the Personal Firewall Plus, the Privacy Service, or the SpamKiller component. The Security Control Cent...

Project Artillery - Full Suite for Protection against Attack on Linux and Windows

Project Artillery is an open source project aimed at the detection of early warning indicators and attacks. The concept is that Artillery will spawn multiple ports on a system giving the attacker the idea that multiple ports are exposed. Additionally, Artillery actively monitors the filesystem fo...

Design/Logic Flaw

MobileStorageMounter in Apple iOS before 8.2 and Apple TV before 7.1 does not delete invalid disk-image folders, which allows attackers to create folders in arbitrary filesystem locations via a crafted app...

Apple iOS Disk Mount Logic Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A security vulnerability exists in Apple iOS that allows applications to create folders in trusted locations by exploiting a disk mount logic vulnerability...

Photo Manager Pro 4.4.0 iOS - Code Injection Vulnerability

Document Title: =============== Photo Manager Pro 4.4.0 iOS - Code Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1444 Release Date: ============= 2015-03-10 Vulnerability Laboratory ID VL-ID: ====================================...

[SECURITY] Fedora 20 Update: roundcubemail-1.0.5-1.fc20

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

DroidStealth — Android Encryption Tool with Stealth Capabilities

We all have Internet-connected smartphones in our pockets, but it’s very hard to find a place on Internet to feel secure and private. No doubt, there is data Encryption on cell phones, but what’s the use if it is cracked by hackers or law enforcement? What if the encrypted files don’t exist in th...

CVE-2015-1432

The messageoptions function in includes/ucp/ucppmoptions.php in phpBB before 3.0.13 does not properly validate the form key, which allows remote attackers to conduct CSRF attacks and change the full folder setting via unspecified vectors...

CVE-2015-1432

The messageoptions function in includes/ucp/ucppmoptions.php in phpBB before 3.0.13 does not properly validate the form key, which allows remote attackers to conduct CSRF attacks and change the full folder setting via unspecified vectors...

UBUNTU-CVE-2015-1432

The messageoptions function in includes/ucp/ucppmoptions.php in phpBB before 3.0.13 does not properly validate the form key, which allows remote attackers to conduct CSRF attacks and change the full folder setting via unspecified vectors...

IIS short file bug fixes-vulnerability warning-the black bar safety net

Recent site system is to scan the vulnerability: IIS short file/folder vulnerability Vulnerability level: medium risk vulnerability Vulnerability address: full website Vulnerability description: IIS short file name disclosure vulnerability in IIS on the realization on the existence of the file...

WordPress CIP4 Folder Download Plugin <= 1.10 - Local File Inclusion

This plugin is prone to a local file inclusion vulnerability. Solution Upgrade this plugin...

WordPress CIP4 Folder Download Plugin <= 1.10 - Local File Inclusion

This plugin is prone to a local file inclusion vulnerability. Solution Upgrade this plugin...

PortExpert - Monitors all applications connected to the Internet

PortExpert gives you a detailed vision of your personnal computer cybersecurity. It automatically monitors all applications connected to the Internet and give you all the information you might need to identify potential threats to your system. Features Monitor of application using TCP/UDP...