openSUSE 16 Security Update : mapserver (openSUSE-SU-2026:20476-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20476-1 advisory. Changes in mapserver: - Update to release 8.6.1 msSLDParseRasterSymbolizer: fix potential heap buffer overflow boo1260869 CVE-2026-33721 GetFeatureInfo...

WordPress South Pole: Climate action now Plugin <= 1.0.3.2 is vulnerable to Cross Site Scripting (XSS)

Software South Pole: Climate action now Type Plugin Vulnerable versions = 1.0.3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0b8c06df3bd4 Credits Rafie Muhammad...

pole-tes.com Cross Site Scripting vulnerability OBB-3355301

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

WordPress South Pole: Climate action now plugin <= 1.0.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress South Pole: Climate action now plugin versions = 1.0.1. Solution Update the WordPress South Pole: Climate action now plugin to the latest available version at least 1.0.2...

pole-scs.org Cross Site Scripting vulnerability OBB-2300596

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

File Upload Vulnerability in Pole CMS v1.1.1

Pole CMS is an open source web content management system based on php5+mysql5 development. A file upload vulnerability exists in the Pole CMS ac.php page. An attacker can exploit the vulnerability to upload php files to gain server privileges...

pole-emploi.fr XSS vulnerability

Open Bug Bounty ID: OBB-564156 Description| Value ---|--- Affected Website:| pole-emploi.fr Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosure base...

pole-emploi.fr XSS vulnerability

Vulnerable URL: http://www.pole-emploi.fr/candidat/infocadres-@/front/layouts/interpe/components/email.jspz?object=sunewsletterinfocadre=88=%22%3E%3Csvg/ONLOAD=!confirm%27OPENBUGBOUNT%27%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| X...

login.northpoledesign.com XSS vulnerability

Vulnerable URL: http://login.northpoledesign.com/mobile/?appcode=hoffgun=WebViewControllerid=1784978url=L21vYmlsZS8/YXBwY29kZT1ob2ZmZ3Vu=%3C/title%3E%3C/script/%22-alert%280%29-%22--%3E%3Cimg/onerror=%27;%20alert%28/OPENBUGBOUNTY/%29;%27src=1%3E Details: Description| Value ---|--- Patched:| No...

North Pole Holiday - Dangerous filesystem permissions, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application North Pole Holiday published at the 'play' market has multiple vulnerabilities...

pole-emploi.fr XSS vulnerability

Open Bug Bounty ID: OBB-60116 Description| Value ---|--- Affected Website:| pole-emploi.fr Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat She...

Design/Logic Flaw

The OLE Point of Sale OPOS drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSLineDisplay.ocx for Retail RP7 VFD Customer Display monitors, Retail Integrated 2x20 Display monitors, Retail Integrated 2x20 Complex...

CVE-2014-7889

HP OPOS OPOSLineDisplay.ocx in HP Point of Sale Windows PCs (before v1.13.003) is vulnerable to remote code execution due to an unspecified flaw in the Open method of OPOSLineDisplay.ocx. The HP Security Bulletin and ZDI advisory tie CVE-2014-7889 to remote code execution via OPOSLineDisplay.ocx ...

CoolPlayer-Portable-2.19.2

Buffer overflow that bypasses ASLR by using a non-aslr module Tested against CoolPlayer Portable version 2.19.2 on Windows Vista Business 32 bit Written by Blake patched by pole Originally found by Securityxxxpert print "\n=====================================" print "CoolPlayer Portable Buffer...

Pole Rui enterprise website system proof the library 0day-vulnerability warning-the black bar safety net

Pole Rui enterprise website system is for small and medium businesses specially tailored to the small business Station source code, The code is all free and open, you can modify their own learning Use, but prohibited for commercial use. The system front interface clean and simple, the background ...

Pole Rui enterprise website system v1. 0 cookie injection vulnerability-vulnerability warning-the black bar safety net

Pole Rui enterprise website system is for small and medium businesses specially tailored to the small business Station source code, The code is all free and open, you can modify their own learning to use, but it is strictly prohibited for commercial purposes. System Systems front Desk interface i...

Unfixed XSS vulnerability at www.southpoletradingcompany.com

Security researcher CCC, has submitted on 07/04/2008 a cross-site-scripting XSS vulnerability affecting www.southpoletradingcompany.com, which at the time of submission ranked 12208345 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 23/04/2008...

Use macfee to block the”sky speed“installation-vulnerability warning-the black bar safety net

At noon today to China Telecom uncle's telephone,said the afternoon to visit my family,to carry out the“starry pole speed into million home”activities...... Although I politely declined,repeatedly Dodge...... I said I'm not a kid,this software my own Internet access Next on the line,don't have to...