12 matches found
Wordfence 7.10.0 Released!
Wordfence remains the number one security plugin of choice for website owners serious about protecting their investment and their customers. Our Threat Intelligence team and engineering team stay abreast of the newest threats and ensure that Wordfence is able to protect against them. But keeping ...
vulhub
This repository is an open-source collection of vulnerable systems and applications for educational purposes, specifically for learning and practicing penetration testing and vulnerability assessment. It is maintained by phith0n and hosted on GitHub. The repository contains various vulnerable...
odix and Microsoft: Protecting users against malware attacks with free FileWall license
This blog post is part of the Microsoft Intelligent Security Association MISA guest blog series. Learn more about MISA. The fight against malware has become the epic battle of our generation, placing businesses of all sizes against a never-ending stream of hackers and zero-day attacks bent on...
Fedora 27 : glibc (2018-c1ef35a4f9)
This update removes a misleading comment from the documentation of the abort function RHBZ1615608. A minor security vulnerability, CVE-2018-11237, a buffer overflow in mempcpy for Xeon Phi RHBZ1581275 has been addressed. The update also fixes the waiters-after-spinning case in the...
CVE-2011-4644
Splunk 4.2.5 and earlier, when a Free license is selected, enables potentially undesirable functionality within an environment that intentionally does not support authentication, which allows remote attackers to 1 read arbitrary files via a management-console session that leverages the ability to...
Design/Logic Flaw
Splunk 4.2.5 and earlier, when a Free license is selected, enables potentially undesirable functionality within an environment that intentionally does not support authentication, which allows remote attackers to 1 read arbitrary files via a management-console session that leverages the ability to...
CVE-2011-4644
CVE-2011-4644 affects Splunk 4.2.5 and earlier when a Free license is selected, enabling undesired functionality in environments that do not support authentication. The issue allows remote attackers to (1) read arbitrary files via a management-console session using crafted data sources, or (2) ex...
Splunk - Remote Command Execution
from sec1httplib.requestbuilder import Requestobj from sec1httplib.threaddispatcher import import threading import re import urlparse import sys import urllib import base64 from optparse import OptionParser import sys """ Source: http://www.sec-1.com/blog/?p=233 Splunk remote root exploit. Author...
Easy News Content Management (News.mdb) Database Disclosure Vuln
Exploit for unknown platform in category web applications ================================================================ Easy News Content Management News.mdb Database Disclosure Vuln ================================================================ Author : BeyazKurt Script : Easy Content...
Easy News Content Management - Database Disclosure
Author : BeyazKurt Contact : [email protected] Site : www.khg-crew.ws - KOSOVA HACKERS GROUP Script : Easy Content Management Publishing Script Site : http://easy-news.org/content-management-terns.asp Description : An easy to use ASP-based content management news system. Mulitple login levels...
2532/Gigs 1.2.1 - 'activateuser.php' Local File Inclusion
-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-°-° 2532|Gigs 1.2.1 activateuser.php Local File Inclusion Vulnerability Discovered by bd0rk || SOH-Crew www.soh-crew.it.tt The german Coding and IT-Security Ressource...
CanfTool11.txt
Cross Site Scripting Attack CanfTool v1.1 ========================================= Description : Conftool is a Web-based online system that was developed to supports many administrative tasks of conferences, workshops and seminars. It can help to make the management of events easier and much mor...