Project Artillery - Full Suite for Protection against Attack on Linux and Windows

Project Artillery is an open source project aimed at the detection of early warning indicators and attacks. The concept is that Artillery will spawn multiple ports on a system giving the attacker the idea that multiple ports are exposed. Additionally, Artillery actively monitors the filesystem fo...

Design/Logic Flaw

MobileStorageMounter in Apple iOS before 8.2 and Apple TV before 7.1 does not delete invalid disk-image folders, which allows attackers to create folders in arbitrary filesystem locations via a crafted app...

Apple iOS Disk Mount Logic Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A security vulnerability exists in Apple iOS that allows applications to create folders in trusted locations by exploiting a disk mount logic vulnerability...

Photo Manager Pro 4.4.0 iOS - Code Injection Vulnerability

Document Title: =============== Photo Manager Pro 4.4.0 iOS - Code Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1444 Release Date: ============= 2015-03-10 Vulnerability Laboratory ID VL-ID: ====================================...

[SECURITY] Fedora 20 Update: roundcubemail-1.0.5-1.fc20

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

DroidStealth — Android Encryption Tool with Stealth Capabilities

We all have Internet-connected smartphones in our pockets, but it’s very hard to find a place on Internet to feel secure and private. No doubt, there is data Encryption on cell phones, but what’s the use if it is cracked by hackers or law enforcement? What if the encrypted files don’t exist in th...

CVE-2015-1432

The messageoptions function in includes/ucp/ucppmoptions.php in phpBB before 3.0.13 does not properly validate the form key, which allows remote attackers to conduct CSRF attacks and change the full folder setting via unspecified vectors...

CVE-2015-1432

The messageoptions function in includes/ucp/ucppmoptions.php in phpBB before 3.0.13 does not properly validate the form key, which allows remote attackers to conduct CSRF attacks and change the full folder setting via unspecified vectors...

UBUNTU-CVE-2015-1432

The messageoptions function in includes/ucp/ucppmoptions.php in phpBB before 3.0.13 does not properly validate the form key, which allows remote attackers to conduct CSRF attacks and change the full folder setting via unspecified vectors...

IIS short file bug fixes-vulnerability warning-the black bar safety net

Recent site system is to scan the vulnerability: IIS short file/folder vulnerability Vulnerability level: medium risk vulnerability Vulnerability address: full website Vulnerability description: IIS short file name disclosure vulnerability in IIS on the realization on the existence of the file...

WordPress CIP4 Folder Download Plugin <= 1.10 - Local File Inclusion

This plugin is prone to a local file inclusion vulnerability. Solution Upgrade this plugin...

WordPress CIP4 Folder Download Plugin <= 1.10 - Local File Inclusion

This plugin is prone to a local file inclusion vulnerability. Solution Upgrade this plugin...

PortExpert - Monitors all applications connected to the Internet

PortExpert gives you a detailed vision of your personnal computer cybersecurity. It automatically monitors all applications connected to the Internet and give you all the information you might need to identify potential threats to your system. Features Monitor of application using TCP/UDP...

WordPress CIP4 Folder Download 1.10 Local File Inclusion

Exploit Title: CIP4 Folder Download Widget LFI Google Dork: index of :/cip4-folder-download-widget Date: 13-01-2015 Exploit Author: Ben khlifa Fahmi XTnR3v0lt Vendor Homepage: http://community.cip4.org Software Link: https://wordpress.org/plugins/cip4-folder-download-widget/ Version: 1.10 Tested...

DEBIAN-CVE-2015-0552

Directory traversal vulnerability in the gcabfolderextract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."...

CVE-2014-8398

Multiple untrusted search path vulnerabilities in Corel FastFlick allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 igfxcmrt32.dll, 2 ipl.dll, 3 MSPStyleLib.dll, 4 uFioUtil.dll, 5 uhDSPlay.dll, 6 uipl.dll, 7 uvipl.dll, 8 VC1DecDll.dll, or 9...

vBulletin MicroCART 1.1.4 - Arbitrary File(s) Deletion, SQL Injection & XSS Vulnerabilities

Exploit for php platform in category web applications Exploit Title: vBulletin MicroCART 1.1.4 - Arbitrary Files Deletion, SQL Injection & XSS Date: January 8, 2015 Exploit Author: Technidev https://technidev.com Vendor Homepage: https://vbulletin.com Software Link:...

vBulletin MicroCART 1.1.4 - Arbitrary Files Deletion SQL Injection Cross-Site Scripting

vBulletin MicroCART 1.1.4 - Arbitrary Files Deletion SQL Injection Cross-Site Scripting Exploit Title: vBulletin MicroCART 1.1.4 - Arbitrary Files Deletion, SQL Injection & XSS Date: January 8, 2015 Exploit Author: Technidev https://technidev.com Vendor Homepage: https://vbulletin.com Software...

vBulletin MicroCART 1.1.4 - Arbitrary Files Deletion / SQL Injection / Cross-Site Scripting

Exploit Title: vBulletin MicroCART 1.1.4 - Arbitrary Files Deletion, SQL Injection & XSS Date: January 8, 2015 Exploit Author: Technidev https://technidev.com Vendor Homepage: https://vbulletin.com Software Link: http://www.vbulletin.org/forum/showthread.php?t=256723 Version: 1.1.4 This plugin is...

Microsoft-Office-2007-and-2010---OLE-Arbitrary-Command-Execution

CVE-2014-6352 OLE Remote Code Execution Author Abhishek Lyall - abhilyallatgmaildotcom, infoataslitsecuritydotcom Advanced Hacking Trainings - http://training.aslitsecurity.com Web - http://www.aslitsecurity.com/ Blog - http://www.aslitsecurity.blogspot.com/ Tested on win7 - office 2007 and 2010...