13 matches found
ManageEngine EventLog Analyzer 4.0 < 10 - Privilege Escalation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Exploit Title: ManageEngine Eventlog Analyzer Privilege Escalation Exploit Author: @GraphX Vendor Homepage:http://www.manageengine.com Version: 4.0 - 10 1. Description: The manageengine eventlog analyzer fails to properly verify user privileges when...
sysPass 1.0.9 - SQL Injection
sysPass 1.0.9 - SQL Injection -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-031 Product: sysPass Vendor: http://cygnux.org/ Affected Versions: 1.0.9 and below Tested Versions: 1.0.9 Vulnerability Type: SQL Injection CWE-89 Risk Level: High Solution Status: Fixed Vendor...
APPLE-SA-2015-03-09-1 iOS 8.2
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2015-03-09-1 iOS 8.2 iOS 8.2 is now available and addresses the following: CoreTelephony Available for: iPhone 4s and later, iPod touch 5th generation and later, iPad 2 and later Impact: A remote attacker can cause a device to unexpectedly...
phpTrafficA 2.3 SQL Injection
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Product: phpTrafficA Product page: http://soft.zoneo.net/phpTrafficA/ Affected versions: Up to and including 2.3 latest as of writing. Description: An SQL injection exists in Php/Functions/logfunction.php, line 933: $sql3 ="INSERT INTO $tablehost SET...
SAMHAIN v3.1.2 - File Integrity Checker / Host-Based Intrusion Detection System
The Samhain host-based intrusion detection system HIDS provides file integrity checking and log file monitoring/analysis , as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes. Samhain been designed to monitor multiple hosts with potentially...
WordPress Plugin Work-The-Flow 1.2.1 - Arbitrary File Upload
WordPress Plugin Work-The-Flow 1.2.1 - Arbitrary File Upload Author: nopesled Date: 24/04/14 Software: https://wordpress.org/plugins/work-the-flow-file-upload/ Company: http://wtf-fu.com/ Version: 1.2.1 Tested on: Windows 7 Vulnerability: Unrestricted File Upload Submit an image file via the wtf...
WordPress Integrator 1.32 Cross Site Scripting
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: WordPress plugin 'WordPress Integrator 1.32' XSS vulnerability Advisory ID: SSCHADV2012-010 Author: Stefan Schurtz Affected Software: Successfully tested on WordPress Integrator 1.32 Vendor URL:...
[security bulletin] HPSBMA02604 SSRT100320 rev.1 - HP Insight Recovery for Windows, Remote Cross Site Scripting (XSS), Arbitrary File Download
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02571464 Version: 1 HPSBMA02604 SSRT100320 rev.1 - HP Insight Recovery for Windows, Remote Cross Site Scripting XSS, Arbitrary File Download NOTICE: The information in this Security Bulletin shou...
Haihaisoft PDF Reader OCX Control v1.1.2.0 Remote Buffer Overflow
Exploit for windows platform in category dos / poc ================================================================= Haihaisoft PDF Reader OCX Control v1.1.2.0 Remote Buffer Overflow ================================================================= -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1...
vlcfileparse-overflow.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i Class : Heap overflow Published : 2008-08-16 Credit : g g orange-bat com - - Details - \modules\demux\tta.c define TTAFRAMETIME 1.04489795918367346939 . . . int iseektablesize = 0, i; . . . / Read the metada...
VLC 0.8.6i tta File Parsing Heap Overflow PoC
No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i Class : Heap overflow Published : 2008-08-16 Credit : g g orange-bat com - - Details - \modules\demux\tta.c define TTAFRAMETIME 1.04489795918367346939 . . . int...
phpBB2.0.19.txt
Orginal Source: http://securityreason.com/achievementsecurityalert/31 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpBB 2.0.19 Cross Site Request Forgeries and XSS Admin Author: Maksymilian Arciemowicz cXIb8O3 Date: 3.2.2006 from SecurityReason.Com CVE-2006-0437 for the XSS issues CVE-2006-0438...
[argv] BitchX-353 Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Mon Feb 17 15:26:06 EST 2003 1. Topic: BitchX IRC Client 2. Relevant versions: Vulnerable: BitchX-75p3 BitchX-1.0c16 BitchX-1.0c19 BitchX-1.0c20cvs Not Vulnerable: BitchX-1.0c18 3. Problem description: A denial of service vulnerability exists in BitchX. Sending ...