854 matches found
UBUNTU-CVE-2017-5856
Memory leak in the megasashandledcmd function in hw/scsi/megasas.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption via MegaRAID Firmware Interface MFI commands with the sglist size set to a value over 2 Gb...
Menu Views - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2016-055
This module enables users to create menu items that render views instead of links. This is useful for creating "mega-menus". The module doesn't sufficiently filter title and breadcrumb fields for possible cross-site scripting. This vulnerability is mitigated by the fact that an attacker must have...
DEBIAN-CVE-2016-5107
The megasaslookupframe function in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS administrators to cause a denial of service out-of-bounds read and crash via unspecified vectors...
DEBIAN-CVE-2016-5105
The megasasdcmdcfgread function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface MFI command...
Hey, Music Lovers! Last.Fm Hack Leaks 43 Million Account Passwords
Another Day, Another Data Breach! If you love to listen to music online and have an account on Last.fm website, your account details may have compromised in a data breach that leaked more than 43 Million user personal data online. Last.fm was hacked in March of 2012 and three months after the...
Yahoo Investigates 200 Million Alleged Accounts For Sale On Dark Web
Yahoo says it is investigating reports of 200 million user credentials advertised for sale on the Dark Web by a hacker that goes by the handle “peaceofmind”. The Yahoo credentials, according to the site listing the database for sale, includes usernames, passwords hashed using the MD5 algorithm,...
mega-show.cn XSS vulnerability
Vulnerable URL: http://www.mega-show.cn/part1-en-exh-SME-Export-Marketing-Fund.php?cat=packaging" Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 23:03 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 12669059...
Pokémon GO Creator's Twitter Account Hacked — Pika, Pikaaaa!
Twitter account of another high-profile CEO has been hacked! This time, it's Niantic CEO John Hanke, the developer behind the world's most popular game Pokémon GO. And it seems like Hanke is so busy with its newly launched game Pokémon GO that he hasn't noticed or took any measures against it eve...
UBUNTU-CVE-2016-5107
The megasaslookupframe function in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS administrators to cause a denial of service out-of-bounds read and crash via unspecified vectors...
Mega Quiz ~ Pop Culture Game - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Mega Quiz Pop Culture Game published at the 'play' market has multiple vulnerabilities...
Mega Quiz - Dangerous filesystem permissions, Insecure KeyStore vulnerabilities
HackApp vulnerability scanner discovered that application Mega Quiz published at the 'play' market has multiple vulnerabilities...
Mega Rush - Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Mega Rush published at the 'play' market has multiple vulnerabilities...
Mega Piano tiles - Dynamic Code Loading, External URLs, Unsafe deleting vulnerabilities
HackApp vulnerability scanner discovered that application Mega Piano tiles published at the 'play' market has multiple vulnerabilities...
Mega Fruits slot - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Mega Fruits slot published at the 'play' market has multiple vulnerabilities...
Slot Machines: MEGA DIAMOND! - Customized SSL, Redefined SSL Common Names verifier, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Slot Machines: MEGA DIAMOND! published at the 'play' market has multiple vulnerabilities...
Mega Tic Tac Toe Online - Dynamic Code Loading, External URLs, Unsafe deleting vulnerabilities
HackApp vulnerability scanner discovered that application Mega Tic Tac Toe Online published at the 'play' market has multiple vulnerabilities...
Mega Santa - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Mega Santa published at the 'play' market has multiple vulnerabilities...
Mega Zoom Camera - MIT license, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Mega Zoom Camera published at the 'play' market has multiple vulnerabilities...
MEGA superceded - External URLs, Native code usage, SD-card access vulnerabilities
HackApp vulnerability scanner discovered that application MEGA superceded published at the 'play' market has multiple vulnerabilities...
MegaChat — Kim Dotcom launches end-to-end encrypted Video Calling Service
Are you worried about your privacy? Its Obvious because of a Hacker or the government could be snooping in your emails, voice or video calls. The Famous Internet entrepreneur Kim Dotcom, who introduced legendary Megaupload and Mega file sharing services to the World, has now released its latest...