148 matches found
CVE-2019-1010180
GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...
CVE-2019-1010180
GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...
CVE-2019-1010180
GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...
GetSimpleCMS 3.3.13 Open Redirect
Open Redirection Vulnerability in GetSimpleCMS 3.3.13 Information -------------------- Advisory by Netsparker Name: Open Redirection Vulnerability in GetSimpleCMS Affected Software: GetSimpleCMS Affected Versions: 3.3.13 Homepage: http://get-simple.info/ Vulnerability: Open Redirection Severity:...
DRUPAL-CONTRIB-2018-039
The security team is marking this project unsupported. There is a known security issue with the project that has not been fixed by the maintainer. If you would like to maintain this project, please read:...
Linksys E Series - Multiple Vulnerabilities
Exploit for hardware platform in category web applications ======================================================================= title: Multiple vulnerabilities product: Linksys E series, see "Vulnerable / tested versions" vulnerable version: see "Vulnerable / tested versions" fixed version: no...
moxigo.com XSS vulnerability
Vulnerable URL: http://moxigo.com/?go==a%27aa%22onfocus=prompt/OPENBUGBOUNTY/%20autofocus=x%20bad=--%3E%3C/title%3E%3C/script%3E%3Cimg%20src=x%20onerror=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.09.2017 Vulnerability type:| XSS...
CVE-2017-9313
Multiple Cross-site scripting XSS vulnerabilities in Webmin before 1.850 allow remote attackers to inject arbitrary web script or HTML via the sec parameter to viewman.cgi, the referers parameter to changereferers.cgi, or the name parameter to saveuser.cgi. NOTE: these issues were not fixed in...
CVE-2016-5316
Out-of-bounds read in the PixarLogCleanup function in tifpixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool...
CVE-2016-9539
tools/tiffcrop.c in libtiff 4.0.6 has an out-of-bounds read in readContigTilesIntoBuffer. Reported as MSVR 35092...
PhpSocial 2.0.0304_20222226 - Cross-Site Request Forgery
Security Advisory - Curesec Research Team 1. Introduction Affected Product: PhpSocial v2.0.030420222226 Fixed in: not fixed Fixed Version Link: n/a Vendor Webite: http://phpsocial.net Vulnerability Type: CSRF Remote Exploitable: Yes Reported to vendor: 11/21/2015 Disclosed to public: 12/21/2015...
Grawlix 1.0.3 - Cross-Site Request Forgery
Security Advisory - Curesec Research Team 1. Introduction Affected Product: Grawlix 1.0.3 Fixed in: not fixed Fixed Version Link: n/a Vendor Website: http://www.getgrawlix.com/ Vulnerability Type: CSRF Remote Exploitable: Yes Reported to vendor: 11/17/2015 Disclosed to public: 12/21/2015 Release...
PhpSocial 2.0.0304_20222226 Cross Site Scripting / Open Redirect
Security Advisory - Curesec Research Team 1. Introduction Affected Product: PhpSocial v2.0.030420222226 Fixed in: not fixed Fixed Version Link: n/a Vendor Webite: http://phpsocial.net Vulnerability Type: XSS / Open Redirect Remote Exploitable: Yes Reported to vendor: 11/21/2015 Disclosed to publi...
TheHostingTool 1.2.6 Cross Site Scripting
Security Advisory - Curesec Research Team 1. Introduction Affected Product: TheHostingTool 1.2.6 Fixed in: not fixed Fixed Version Link: n/a Vendor Website: https://thehostingtool.com/ Vulnerability Type: XSS Remote Exploitable: Yes Reported to vendor: 09/07/2015 Disclosed to public: 10/07/2015...
Pligg CMS 2.0.2 - Directory Traversal
Pligg CMS 2.0.2 - Directory Traversal Security Advisory - Curesec Research Team 1. Introduction Affected Product: Pligg CMS 2.0.2 Fixed in: not fixed Fixed Version Link: n/a Vendor Website: http://pligg.com/ Vulnerability Type: Directory Traversal Remote Exploitable: Yes Reported to vendor:...
Pligg CMS 2.0.2 - Directory Traversal
Security Advisory - Curesec Research Team 1. Introduction Affected Product: Pligg CMS 2.0.2 Fixed in: not fixed Fixed Version Link: n/a Vendor Website: http://pligg.com/ Vulnerability Type: Directory Traversal Remote Exploitable: Yes Reported to vendor: 09/01/2015 Disclosed to public: 10/07/2015...
Unfixed XSS vulnerability at webinars.snm.org
Security researcher Ehsan Ice, has submitted on 05/03/2015 a cross-site-scripting XSS vulnerability affecting webinars.snm.org, which at the time of submission ranked 1073431 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/03/2015. It is...
SIPhone Enterprise PBX - Remote Authentication bypass Vulnerability
Exploit for php platform in category remote exploits E / | | | | X By \ | || | | ' \ / | ' \ / \ P BaD-HaCKeR-MaN | || /| | | | | | | | / L TheMostCompleteHackerInTheWorld |/|| || ||/|| ||| O email protected I T + SIPhone Enterprise PBX Suffers from a Remote Authentication Bypass Vulnerability...
SIPhone Enterprise PBX SQL Injection
E / | | | | X By \ | || | | ' \ / | ' \ / \ P BaD-HaCKeR-MaN | || /| | | | | | | | / L TheMostCompleteHackerInTheWorld |/|| || ||/|| ||| O thepunisherkazamel@skype I T + SIPhone Enterprise PBX Suffers from An authentication bypass vulnerability + Product: SIPhone Enterprise PBX + Vendor:...
CVE-2014-8683 XSS in Gogs Markdown Renderer
-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 XSS in Gogs Markdown Renderer ============================= Researcher: Timo Schmid [email protected] Description =========== GogsGo Git Service is a painless self-hosted Git Service written in Go. taken from 1 It is very similiar to the github...