EUVD-2006-2140

Malware in sbrugna...

EUVD-2018-7548

Malware in sbrugna...

Description of the security update for SharePoint Server Subscription Edition: April 9, 2024 (KB5002581)

Description of the security update for SharePoint Server Subscription Edition: April 9, 2024 KB5002581 Summary This security update resolves a Microsoft SharePoint Server spoofing vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures...

Description of the security update for SharePoint Enterprise Server 2016: March 12, 2024 (KB5002559)

Description of the security update for SharePoint Enterprise Server 2016: March 12, 2024 KB5002559 Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures...

SUSE CVE-2008-1761

Opera before 9.27 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted newsfeed source, which triggers an invalid memory access...

SUSE CVE-2013-4214

rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIECACHEON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpiecache...

BTITeam XBTIT Cross-Site Scripting Vulnerability (CNVD-2019-28273)

XBTIT is an open source tracking software. A stored cross-site scripting vulnerability exists in newsfeed /index.php?page=viewnews in BTITeam XBTIT 2.5.4. An attacker can exploit this vulnerability to conduct a cross-site scripting attack via the headline of a news item...

CVE-2018-15677

The newsfeed aka /index.php?page=viewnews in BTITeam XBTIT 2.5.4 has stored XSS via the title of a news item. This is also exploitable via CSRF...

CVE-2018-15677

The newsfeed aka /index.php?page=viewnews in BTITeam XBTIT 2.5.4 has stored XSS via the title of a news item. This is also exploitable via CSRF...

Amazon Linux AMI : nagios (ALAS-2017-899)

Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and earlier, and Icinga before 1.8.5, 1.9 before 1.9.4, and 1.10 before 1.10.2 allow remote authenticated users to obtain sensitive information from process memory or cause a denial of service crash via a long string in the last key value in...

May 9, 2017—KB4019473 (OS Build 10586.916)

May 9, 2017—KB4019473 OS Build 10586.916 Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue that causes the OS to become unresponsive when migrating users from a...

linksnet newsfeed 1.0 - Remote File Inclusion Vulnerability

No description provided by source. Linksnet Newsfeed =1.0 Remote file inclusion Download script : http://www.linksnet.de/mat/LinksnetNewsfeed10.zip Thanks Str0ke Exploit : http://victime.com/LinksnetNewsfeed10path/linksnetnewsfeed/linksnetlinkslogrss.php?dirpathlinksnetnewsfeed= shetll.txt?...

CVE-2013-4214

CVE-2013-4214 affects Nagios Core 3.4.4, 3.5.1 and earlier. The issue is a local symlink attack in rss-newsfeed.php: when MAGPIE_CACHE_ON is set to 1, a local attacker can create a symbolic link from a temporary file to a target file in /tmp/magpie_cache, enabling overwriting of arbitrary files w...

core: html/rss-newsfeed.php insecure temporary file usage

rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIECACHEON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpiecache...

Quality Point 1.0 NewsFeed Cross Site Scripting / SQL Injection

sEc-r1z crEw The Leaders for Penetration Testing In Middle East. +===================================================================================+ ./SEC-R1Z / / / / /\ \ Demo :...

quality point 1.0 newsfeed - SQL Injection Cross-Site Scripting

quality point 1.0 newsfeed - SQL Injection Cross-Site Scripting sEc-r1z crEw The Leaders for Penetration Testing In Middle East. +===================================================================================+ ./SEC-R1Z / / / / /\ \ |/ / \ \ / / / / | | / | | / / \ / / / / | || / | | / / \ ...

Quality Point 1.0 NewsFeed (SQL/XSS) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ==================================================================== Quality Point 1.0 NewsFeed SQL/XSS Multiple Remote Vulnerabilities ====================================================================...

Newsfeed prompt can cause Opera to execute arbitrary code – Opera Security Advisories

Newsfeed prompt can cause Opera to execute arbitrary code – Opera Security Advisories OPCOM Team | December 16, 2008 Severity Highly Severe Problem Description When Opera encounters a newsfeed source on a Web page, it prompts to add the source as a newsfeed. A script can manipulate the feed sourc...

Newsfeed prompt can cause Opera to execute arbitrary code

When Opera encounters a newsfeed source on a Web page, it prompts to add the source as a newsfeed. A script can manipulate the feed source in a way that can cause Opera to crash. The crash is caused by an erroneous memory access. To inject code, additional techniques will have to be employed...

CVE-2008-1761

Opera before 9.27 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted newsfeed source, which triggers an invalid memory access...