PT-2019-13785 · Adplug Team · Adplug

Name of the Vulnerable Software and Affected Versions: AdPlug version 2.3.1 Description: The issue is a heap-based buffer overflow in the CdtmLoader::load function located in dtm.cpp. Recommendations: For AdPlug version 2.3.1, consider avoiding the use of the CdtmLoader::load function until a pat...

woniu7.com Cross Site Scripting vulnerability

Security Researcher geeknik Helped patch 8584 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting woniu7.com website and its users. Following coordinated an...

PT-2018-1757

Name of the Vulnerable Software and Affected Versions MikroTik RouterOS versions prior to 6.42 Description The issue is caused by a directory traversal vulnerability in the WinBox interface of MikroTik RouterOS, allowing unauthenticated remote attackers to read arbitrary files and remote...

PT-2018-2614

Name of the Vulnerable Software and Affected Versions Spring Framework versions 4.3 prior to 4.3.15 and versions 5.0 prior to 5.0.5 Description The issue is caused by errors in handling STOMP messages in the spring-messaging module of the Spring Framework. A malicious user can craft a message to...

Cisco Prime Infrastructure 3.1.6 XXE Injection / XSS / LFD / SQL Injection Vulnerabilities

Cisco Prime Infrastructure versions 1.1 through 3.1.6 suffer from cross site scripting, XML external entity injection, file disclosure, and remote SQL injection vulnerabilities. title: XML External Entity Injection XXE, SQL Injection, Cross Site Scripting, Local File Disclosure product: Cisco Pri...

cmseasy{easy through CMS}v5. 5 arbitrary file upload vulnerability in the simple analysis of reference using the method-vulnerability warning-the black bar safety net

Yesterday found someone storm out of a cmseasy v5. 5 arbitrary file upload vulnerability, it also comes with the exp. Exploit the vulnerability can directly Upload a webshell and other malicious files, the harm is huge and currently the official has not been any patches here to do some simple...

PT-2012-5530 · Cisco · Cisco Asa +2

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.2 through 8.25.16 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.3 through 8.32.27 Cisco Adaptive Security Appliances ASA 5500 series devices version...

CERT Advisory CA-2003-11 Multiple Vulnerabilities in Lotus Notes and Domino

-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2003-11 Multiple Vulnerabilities in Lotus Notes and Domino Original release date: March 26, 2003 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Lotus Notes and Domino versions...