327 matches found
DornCMS v1.4 - (FileManager) Persistent XSS Vulnerability
Document Title: =============== DornCMS v1.4 - FileManager Persistent XSS Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1885 Release Date: ============= 2016-07-25 Vulnerability Laboratory ID VL-ID: ==================================== 18...
CVE-2016-1709
Heap-based buffer overflow in the ByteArray::Get method in data/bytearray.cc in Google sfntly before 2016-06-10, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted SFNT font...
Heap overflow
Heap-based buffer overflow in the ByteArray::Get method in data/bytearray.cc in Google sfntly before 2016-06-10, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted SFNT font...
CVE-2016-1709
Removed by vendor...
CVE-2016-1709
Heap-based buffer overflow in the ByteArray::Get method in data/bytearray.cc in Google sfntly before 2016-06-10, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted SFNT font...
Uber: Brute-Forcing invite codes in partners.uber.com
Hi, //We are going to use this link : https://partners.uber.com/join/?invitecode=xxxxx with GET method. There are options to customize codes, We can do it with only numbers https://partners.uber.com/join/?invitecode=1 to 10000 Or we can use some words with numbers...
WordPress Realia 0.8.5 Cross Site Scripting
Exploit Title : wordpress plugin 'Realia' real estate solution multiple XSS Vulnerability Author : WICS Date : 03/06/2016 Software Link : https://wordpress.org/plugins/realia/ Tested Version: 0.8.5 Overview: Realia is wordpress plugin which provides functionality of real estate service like searc...
Forms that use the GET method cause the XSRF token to be added to the URL
h5.Steps to Reproduce: In Confluence, visit the "My Profile" page /users/viewuserprofile.action Click "Edit Profile" Note that no atltoken is present in the URL. Click "Settings" /users/viewmysettings.action Click "Edit" Note that the atltoken value is present in the URL. h5.Cause Some forms are...
WordPress Truemag Theme Cross Site Scripting
Document Title: =============== Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1839 Release Date: ============= 2016-04-29 Vulnerability Laboratory ID VL-ID:...
UBUNTU-CVE-2016-2812
Race condition in the get implementation in the ServiceWorkerManager class in the Service Worker subsystem in Mozilla Firefox before 46.0 allows remote attackers to execute arbitrary code or cause a denial of service buffer overflow and application crash via a crafted web site...
Negin Group CMS - (v) Multiple Web Vulnerabilities
Document Title: =============== Negin Group CMS - v Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1831 Release Date: ============= 2016-04-24 Vulnerability Laboratory ID VL-ID: ==================================== 1831 Comm...
Webline CMS (2016Q2) - SQL Injection Vulnerability
Document Title: =============== Webline CMS 2016Q2 - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1823 Release Date: ============= 2016-04-13 Vulnerability Laboratory ID VL-ID: ==================================== 1823 Comm...
SIDU 5.2 Cross Site Scripting
Exploit Title: SIDU 5.2 Database Web GUI Multiple XSS Vulnerabilities Date: 04.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu/ Software Link: https://sourceforge.net/projects/sidu/files/sidu/sidu52.zip Version: app version 5.2 XSS details: XSS1 URL...
SIDU 5.3 Cross Site Scripting
Exploit Title: SIDU 5.3 Database Web GUI Multiple XSS Vulnerabilities Date: 04.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu/ Software Link: https://sourceforge.net/projects/sidu/files/sidu/sidu53.zip Version: app version 5.3 XSS details: XSS1 URL...
Techsoft WS CMS 2016 Q2 - SQL Injection Web Vulnerability
Document Title: =============== Techsoft WS CMS 2016 Q2 - SQL Injection Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1810 Release Date: ============= 2016-04-03 Vulnerability Laboratory ID VL-ID: ====================================...
Cades 2016Q1 SQL Injection
Document Title: =============== Cades 2016Q1 - id Multiple SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1804 Release Date: ============= 2016-03-30 Vulnerability Laboratory ID VL-ID: ====================================...
Patron Info System SQL Injection
Document Title: =============== Patron Info System - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1784 Release Date: ============= 2016-03-21 Vulnerability Laboratory ID VL-ID: ==================================== 1784 Comm...
Cades (2016Q1) - (id) Multiple SQL Injection Vulnerabilities
Document Title: =============== Cades 2016Q1 - id Multiple SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1804 Release Date: ============= 2016-03-30 Vulnerability Laboratory ID VL-ID: ====================================...
TRS(ids新老版本)设计缺陷(xxe/用户信息泄露包括密码等)
简要描述: TRSids设计缺陷xxe/用户信息泄露包括密码,好久没有发过漏洞了,突然上来看了看,发现漏洞提交页面都变了 详细说明: 首先我们看看web.xml配置文件: ServiceServlet com.trs.idm.admin.service.ServiceServlet ServiceServlet /service 跟进ServiceServlet protected void serviceHttpServletRequest request, HttpServletResponse response throws ServletException, IOExceptio...
Patron Info System - SQL Injection Vulnerability
Document Title: =============== Patron Info System - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1784 Release Date: ============= 2016-03-21 Vulnerability Laboratory ID VL-ID: ==================================== 1784 Comm...