pl.msi.com XSS vulnerability

Vulnerable URL: https://pl.msi.com/search/...

es.msi.com XSS vulnerability

Vulnerable URL: https://es.msi.com/search/...

koh-i-noor.cz XSS vulnerability

Vulnerable URL: http://www.koh-i-noor.cz/en/search?s=%27;alert/XSSPOSED///%27;alert/XSSPOSED///%22;alert/XSSPOSED///%22;alert/XSSPOSED///--%3E%3C/sCRipT%3E%22%3E%27%3E%3CsCRipT%3Ealert/XSSPOSED/%3C/sCRipT%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017...

CVE-2017-3299

CVE-2017-3299 describes a vulnerability in the Oracle PeopleSoft Enterprise PeopleTools (subcomponent: PIA Search Functionality). Affected versions are 8.54 and 8.55. The issue allows an unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Success...

CVE-2016-9054

An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function assindexsimatchlistbysetbinid resulting in remote code execution. An attacker can...

CVE-2016-9052

An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function assindexsimatchbyiname resulting in remote code execution. An attacker can simply...

PT-2017-2401 · Aerospike · Aerospike Database Server

Name of the Vulnerable Software and Affected Versions: Aerospike Database Server version 3.10.0.3 Description: A stack-based buffer overflow issue exists in the querying functionality. This can be triggered by a specially crafted packet, causing a buffer overflow in the as sindex simatch list by...

Netscaler round robin algorithm

How to troubleshoot round robin method to confirm functionality?...

drk.de XSS vulnerability

Vulnerable URL: https://www.drk.de/suche/?id=502kesearchpi1page=1kesearchpi1sword=test"alert/OPENBUGBOUNTY/...

Alt+Tab Does Not Pass Through the VDI in ICA Session

When pressing Alt+Tab while on a VDI in ICA session Full Screen, the apps show up from the endpoint and not from the VDI...

CVE-2015-8684

Exponent CMS before 2.3.7 does not properly restrict the types of files that can be uploaded, which allows remote attackers to conduct cross-site scripting XSS attacks and possibly have other unspecified impact as demonstrated by uploading a file with an .html extension, then accessing it via the...

FAQ: Cloud backup of XenMobile managed devices

Is the Worx data encrypted within the backup? If so what is the encryption level? Yes, as Xenmobile uses the iCloud services from Apple for backing up the data: iCloud secures your data by encrypting it when it's sent over the Internet, storing it in an encrypted format when kept on server review...

schwancosmetics.com XSS vulnerability

Vulnerable URL: https://www.schwancosmetics.com/de/service/suche.htm?q=jhhhl=changed...

strategy2050.kz XSS vulnerability

Vulnerable URL: http://strategy2050.kz/ru/search/?query=xxxx%22%3E%3Csvg%20onload=alert%27OPENBUGBOUNTY%27%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 269661 VIP website...

SA139 : November 2016 NTP Security Vulnerabilities

SUMMARY Symantec Network Protection products using affected versions of the NTP reference implementation from ntp.org are susceptible to multiple vulnerabilities. A remote attacker can modify the targets system time, prevent the target from synchronizing its time, cause denial of service through...

CVE-2017-2950

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the XFA engine, related to layout functionality. Successful exploitation could lead to arbitrary code execution...

CVE-2017-2950

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the XFA engine, related to layout functionality. Successful exploitation could lead to arbitrary code execution...

CVE-2017-2957

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the JavaScript engine, related to collaboration functionality. Successful exploitation could lead to arbitrary code execution...

Pinch and Zoom Does Not Function When Using Receiver on iPad

Unable to zoom and expand application on iPad when using Receiver. The functionality works fine on iPhone...

torcloud.pw XSS vulnerability

Vulnerable URL: http://torcloud.pw/search.php?q='"--!confirmOPENBUGBOUNTY...