Mitsubishi Electric MELFA (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: MELFA FR Series, MELFA CR Series, MELFA ASSISTA Vulnerability: Uncontrolled Resource Consumption 2. UPDATE INFORMATION This updated advisory is a follow-up to the original...

Chowbus food delivery service suffers breach; trove of data stolen

By Deeba Ahmed The data breach could have affected hundreds of thousands of customers of Fantuan Group Inc. owned Chowbus. This is a post from HackRead.com Read the original post: Chowbus food delivery service suffers breach; trove of data stolen...

5 Biggest Hosting Companies hacked by Syrian Electronic Army

Once again, Syrian Electronic Army SEA has gain media attention by compromising a number of popular web hosting brands of one of the leading web-hosting companies Endurance International Group INC that manages over 60 different hosting brands. SEA, a pro-hacker group supposed to be aligned with...

Exponent CMS 0.97 - Multiple Vulnerabilities

No description provided by source. Exponent CMS v0.97 Multiple Vulnerabilities Vendor: OIC Group Inc. Product web page: http://www.exponentcms.org Affected version: 0.97 Summary: Open Source Content Management System PHP+MySQL. Desc: Exponent CMS suffers from multiple vulnerabilities: 1. Local Fi...

Sony Apologizes, Offers $1 Million Insurance After Hacking !

Sony Corp. 6758 Chairman Howard Stringer apologized and offered U.S. customers of PlayStation Network and Qriocity online entertainment services a year of free identity- theft protection after the system was crippled by hackers. Japan's biggest consumer-electronics exporter will offer a $1 millio...

Exponent CMS v0.97 Multiple Vulnerabilities

Exploit for php platform in category web applications =========================================== Exponent CMS v0.97 Multiple Vulnerabilities =========================================== Vendor: OIC Group Inc. Product web page: http://www.exponentcms.org Affected version: 0.97 Summary: Open Source...

Exponent CMS 0.97 Cross Site Scripting / File Disclosure / Local File Inclusion / Shell Upload

Exponent CMS v0.97 Multiple Vulnerabilities Vendor: OIC Group Inc. Product web page: http://www.exponentcms.org Affected version: 0.97 Summary: Open Source Content Management System PHP+MySQL. Desc: Exponent CMS suffers from multiple vulnerabilities: 1. Local File Inclusion / File Disclosure...

Exponent CMS 0.97 - Multiple Vulnerabilities

Exponent CMS 0.97 - Multiple Vulnerabilities Exponent CMS v0.97 Multiple Vulnerabilities Vendor: OIC Group Inc. Product web page: http://www.exponentcms.org Affected version: 0.97 Summary: Open Source Content Management System PHP+MySQL. Desc: Exponent CMS suffers from multiple vulnerabilities: 1...

OpenSurveyPilot Group.Inc.PHP远程文件包含漏洞

OpenSurveyPilot是一款基于PHP的WEB应用程序。 OpenSurveyPilot不正确过滤用户提交的输入，远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'Group.Inc.PHP'脚本对用户提交的'cfgPathToProjectAdmin'参数缺少过滤，指定远程服务器上的文件作为包含参数，可导致以WEB权限执行任意命令。 OpenSurveyPilot 1.2.1 目前没有解决方案提供： http://sourceforge.net/projects/osp/...