CVE-2018-9467

In the getHost function of UriTest.java, there is the possibility of incorrect web origin determination. This could lead to incorrect security decisions with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2024-10555 · Symfony · Symfony Httpfoundation

Name of the Vulnerable Software and Affected Versions: Symfony HttpFoundation component versions 2.0.X through 2.5.X Description: This issue allows for a Denial of Service DoS attack when an arbitrarily long hostname is sent by a client. The parsing of the hostname in the Request::getHost functio...

CVE-2017-13274

In the getHost function of UriTest.java, there is the possibility of incorrect web origin determination. This could lead to incorrect security decisions with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0,...

CVE-2017-13274

CVE-2017-13274 affects Android Runtime: UriTest.getHost() may misdetermine the web origin, enabling incorrect security decisions. Affected: Android 6.0–8.1. Impact described as high/critical (CVSS 3.0: 9.8; base vector CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Exploitation requires no user i...

ntopng 'NetworkInterface::getHost' function denial of service vulnerability

ntopng a.k.a. ntop is a new generation of cross-platform Web-based network traffic analysis and monitoring tools from the Italian company ntop. The tool supports automatic identification of useful information from the network, conversion of intercepted packets into an easily recognizable format a...

CVE-2017-7458

The NetworkInterface::getHost function in NetworkInterface.cpp in ntopng before 3.0 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via an empty field that should have contained a hostname or IP address...

CVE-2017-7458

Removed by vendor...

CVE-2 0 1 5-0 2 3 5: Linux Glibc Ghost vulnerability allows hackers remote access to system permissions-bug warning-the black bar safety net

! t01a998ea950583688b. png Ghost vulnerability in Linux glibc library appeared on the a serious security issue, he can keep the attacker in ignorance of the system in any case remote accessoperating systemthe control authority. He is currently the CVE number for CVE-2 0 1 5-0 2 3 5 to. What is...

Fedora 18 : php-symfony2-HttpFoundation-2.2.5-1.fc18 (2013-14579)

Updated to 2.2.5 CVE-2013-4752 Request::getHost poisioning Release blog posts : - http://symfony.com/blog/symfony-2-2-4-released - http://symfony.com/blog/security-releases-symfony-2-0- 24-2-1-12-2-2-5-and-2-3-3-released Full change log:...

Fedora 19 : php-symfony2-HttpFoundation-2.2.5-1.fc19 (2013-14608)

Updated to 2.2.5 CVE-2013-4752 Request::getHost poisioning Release blog posts : - http://symfony.com/blog/symfony-2-2-4-released - http://symfony.com/blog/security-releases-symfony-2-0- 24-2-1-12-2-2-5-and-2-3-3-released Full change log:...

Request::getHost() poisoning

More info at https://symfony.com/blog/security-releases-symfony-2-0-24-2-1-12-2-2-5-and-2-3-3-released...

PHP Director 0.21 - SQL Into Outfile 'eval()' Injection

include include include include include include / Dork "Powered by PHP Director 0.2" | PHP Director 0.2.1 sql into outfile eval Injection Exploit | Exploit- index.php?cat=%27+UNION+SELECT+1,'lol',3,4,5,6,7,8,9,10,11,12,13,14,15+INTO+OUTFILE+'/var/www/ex.php'/ PHP.ini- Magic Quotes off Written- by...