104 matches found
SUSE-SU-2018:1576-1 Security update for ceph
This update for ceph to 12.2.5-407-g5e7ea8cf03 fixes the following issues: Security issue fixed: - CVE-2018-7262: The rgwcivetweb.cc RGWCivetWeb::initenv function in radosgw doesn't handle malformed HTTP headers properly, allowing for denial of service. rgw: make init env methods return an error...
mon-enfant.fr XSS vulnerability
Vulnerable URL: http://www.mon-enfant.fr/web/guest/accueil?ppid=cnafjournalplifecycle=0pstate=popup&cnafjournalstrutsaction=%2Fcnafjournal%2Fsendarticleform=126352103=10169=1.0=Xss%22%3E%3Csvg/onload=prompt/OPENBUGBOUNTY/%3E=%24videoUrl Details: Description| Value ---|--- Patched:| No Latest chec...
Mon Cloud - Customized SSL, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Mon Cloud published at the 'play' market has multiple vulnerabilities...
WordPress WP-Mon Arbitrary File Download Vulnerability
WordPress WP-Mon plugin suffers from an arbitrary file disclosure vulnerability. |||||||||||||||||||||||||||||||||||||||||||||||||| |-------------------------------------------------------------------------| | + Exploit Title:Wordpress wp-mon Plugin Arbitrary File Download Vulnerability | | +...
WordPress WP-Mon Arbitrary File Download
|||||||||||||||||||||||||||||||||||||||||||||||||| |-------------------------------------------------------------------------| | + Exploit Title:Wordpress wp-mon Plugin Arbitrary File Download Vulnerability | | + Exploit Author: Ashiyane Digital Security Team | | + Vendor Homepage :...
WordPress WP-Mon Plugin - Arbitrary File Download
This plugin is prone to an arbitrary file download vulnerability. Vulnerable file: http://localhost/wordpress/wp-content/plugins/wp-mon/assets/download.php Solution Update the plugin...
WP-Mon - Arbitrary File Download
The wp-mon WordPress plugin was affected by an Arbitrary File Download security vulnerability. PoC As seen in access logs: http://www.example.com/wp-content/plugins/wp-mon/assets/download.php?type=octet/stream=../../../../=wp-config.php...
WordPress WP-Mon Plugin - Arbitrary File Download
This plugin is prone to an arbitrary file download vulnerability. Vulnerable file: http://localhost/wordpress/wp-content/plugins/wp-mon/assets/download.php Solution Update the plugin...
WP-Mon - Arbitrary File Download
The wp-mon WordPress plugin was affected by an Arbitrary File Download security vulnerability. As seen in access logs: http://www.example.com/wp-content/plugins/wp-mon/assets/download.php?type=octet/stream&path=../../../../&name=wp-config.php...
CVE-2014-4009
CVE-2014-4009 affects SAP CCMS Monitoring (BC-CCM-MON), where hardcoded credentials enable remote attackers to obtain access via unspecified vectors. The connected sources confirm the issue but do not provide product versions, affected components beyond BC-CCM-MON, or explicit remediation steps i...
FreeBSD 7.07.1 - ktimer Local Privilege Escalation
FreeBSD 7.07.1 - ktimer Local Privilege Escalation / bsd-ktimer.c Copyright c 2008 by FreeBSD = 7.0 local kernel root exploit by christer/mu-b - Mon 2 June 2008 - Tested on: FreeBSD 7.0 FreeBSD 7.1 - Private Source Code -DO NOT DISTRIBUTE - http://www.bsdcitizen.org/ -- BSDCITIZEN 2008!@$! / defi...
ezPack 4.2b2 XSS / SQL Injection
+++++++++++ EZpack XSS/SQL Vulnerability ++++++++++ ProDuct Name : EZpack Download : http://www2.se-ed.net/fatcoder/?mode=download Author : !-BUGJACK-! Site : www.it-dark.com ++ SQL http://localhost/ezPack/op=prog&mdfd=webboard&act=1&ID=1&qType=ID+SQL + XSS http://localhost/ezPack/?op=prog&mdfd=X...
Debian Security Advisory DSA 1648-1 (mon)
The remote host is missing an update to mon announced via advisory DSA 1648-1. OpenVAS Vulnerability Test $Id: deb16481.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1648-1 mon Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
[SECURITY] [DSA 1648-1] New mon packages fix insecure temporary files
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1648-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst October 08, 2008 http://www.debian.org/security/faq -...
Debian DSA-1648-1 : mon - insecure temporary files
Dmitry E. Oboukhov discovered that the test.alert script used in one of the alert functions in mon, a system to monitor hosts or services and alert about problems, creates temporary files insecurely, which may lead to a local denial of service through symlink attacks. %NASLMINLEVEL 70300 C Tenabl...
[SECURITY] [DSA 1648-1] New mon packages fix insecure temporary files
------------------------------------------------------------------------ Debian Security Advisory DSA-1648-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst October 08, 2008 http://www.debian.org/security/faq -...
Arbitrary file deletion
alert.d/test.alert in mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack on the test.alert.log temporary file...
DSA-1648-1 mon - insecure temporary files
Bulletin has no description...
Debian: Security Advisory (DSA-1648-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2008-4477
alert.d/test.alert in mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack on the test.alert.log temporary file...