ManageEngine EventLog Analyzer 4.0 < 10 - Privilege Escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Exploit Title: ManageEngine Eventlog Analyzer Privilege Escalation Exploit Author: @GraphX Vendor Homepage:http://www.manageengine.com Version: 4.0 - 10 1. Description: The manageengine eventlog analyzer fails to properly verify user privileges when...

sysPass 1.0.9 - SQL Injection

sysPass 1.0.9 - SQL Injection -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-031 Product: sysPass Vendor: http://cygnux.org/ Affected Versions: 1.0.9 and below Tested Versions: 1.0.9 Vulnerability Type: SQL Injection CWE-89 Risk Level: High Solution Status: Fixed Vendor...

APPLE-SA-2015-03-09-1 iOS 8.2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2015-03-09-1 iOS 8.2 iOS 8.2 is now available and addresses the following: CoreTelephony Available for: iPhone 4s and later, iPod touch 5th generation and later, iPad 2 and later Impact: A remote attacker can cause a device to unexpectedly...

phpTrafficA 2.3 SQL Injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Product: phpTrafficA Product page: http://soft.zoneo.net/phpTrafficA/ Affected versions: Up to and including 2.3 latest as of writing. Description: An SQL injection exists in Php/Functions/logfunction.php, line 933: $sql3 ="INSERT INTO $tablehost SET...

WordPress Plugin Work-The-Flow 1.2.1 - Arbitrary File Upload

WordPress Plugin Work-The-Flow 1.2.1 - Arbitrary File Upload Author: nopesled Date: 24/04/14 Software: https://wordpress.org/plugins/work-the-flow-file-upload/ Company: http://wtf-fu.com/ Version: 1.2.1 Tested on: Windows 7 Vulnerability: Unrestricted File Upload Submit an image file via the wtf...

WordPress Integrator 1.32 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: WordPress plugin 'WordPress Integrator 1.32' XSS vulnerability Advisory ID: SSCHADV2012-010 Author: Stefan Schurtz Affected Software: Successfully tested on WordPress Integrator 1.32 Vendor URL:...

Haihaisoft PDF Reader OCX Control v1.1.2.0 Remote Buffer Overflow

Exploit for windows platform in category dos / poc ================================================================= Haihaisoft PDF Reader OCX Control v1.1.2.0 Remote Buffer Overflow ================================================================= -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1...

phpBB2.0.19.txt

Orginal Source: http://securityreason.com/achievementsecurityalert/31 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpBB 2.0.19 Cross Site Request Forgeries and XSS Admin Author: Maksymilian Arciemowicz cXIb8O3 Date: 3.2.2006 from SecurityReason.Com CVE-2006-0437 for the XSS issues CVE-2006-0438...

[argv] BitchX-353 Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Mon Feb 17 15:26:06 EST 2003 1. Topic: BitchX IRC Client 2. Relevant versions: Vulnerable: BitchX-75p3 BitchX-1.0c16 BitchX-1.0c19 BitchX-1.0c20cvs Not Vulnerable: BitchX-1.0c18 3. Problem description: A denial of service vulnerability exists in BitchX. Sending ...