Lucene search
K

751 matches found

securityvulns
securityvulns
added 2015/05/11 12:0 a.m.87 views

Remote file upload vulnerability in wordpress plugin videowhisper-video-presentation v3.31.17

Title: Remote file upload vulnerability in wordpress plugin videowhisper-video-presentation v3.31.17 Author: Larry W. Cashdollar, @larry0 Date: 2015-03-29 Download Site: https://wordpress.org/plugins/videowhisper-video-presentation/ Vendor: http://www.videowhisper.com/ Vendor Notified: 2015-03-29...

Exploits0
Fedora
Fedora
added 2015/05/10 11:44 p.m.31 views

[SECURITY] Fedora 20 Update: libreoffice-4.2.8.2-8.fc20

LibreOffice is an Open Source, community-developed, office productivity sui te. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites...

6.8CVSS1.3AI score0.07646EPSS
Exploits0
seebug.org
seebug.org
added 2015/04/20 12:0 a.m.23 views

WordPress VideoWhisper Video Presentation Plugin 3.31.17 /vp/vw_upload.php 文件上传漏洞

/vp/vwupload.php?php if $GET"room" $room=$GET"room"; if $POST"room" $room=$POST"room"; $filename=$FILES'vwfile''name'; includeonce"incsan.php"; sanV$room; if !$room exit; sanV$filename; if strstr$filename,".php" $filename = ""; //duplicate php extension not allowed due to vulnerabilities of older...

7.1AI score
Exploits0
Patchstack
Patchstack
added 2015/04/02 12:0 a.m.12 views

WordPress VideoWhisper Video Presentation 3.31.17 - Remote File Upload

WordPress Kernel theme is prone to a remote file upload vulnerability. Because of this vulnerability, anyone can upload the files for the example, .zip, .rar, .mp3, .jpeg, .txt, .html, etc. to an wordpress site. Solution Upgrade the plugin...

3AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2015/04/02 12:0 a.m.52 views

WordPress Plugin VideoWhisper Video Presentation 3.31.17 - Arbitrary File Upload

Title: Remote file upload vulnerability in wordpress plugin videowhisper-video-presentation v3.31.17 Author: Larry W. Cashdollar, @larry0 Date: 2015-03-29 Download Site: https://wordpress.org/plugins/videowhisper-video-presentation/ Vendor: http://www.videowhisper.com/ Vendor Notified: 2015-03-31...

7AI score
Exploits0
Fedora
Fedora
added 2015/03/26 9:49 p.m.13 views

[SECURITY] Fedora 20 Update: drupal7-views-3.10-1.fc20

The views module provides a flexible method for Drupal site designers to control how lists of content nodes are presented. Traditionally, Drupal has hard-coded most of this, particularly in how taxonomy and tracker lists are formatted. This tool is essentially a smart query builder that, given...

2.5AI score
Exploits0
Prion
Prion
added 2015/03/09 5:59 p.m.23 views

Code injection

The OLE Point of Sale OPOS drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSScanner.ocx for Imaging Barcode scanners, Linear Barcode scanners, Presentation Barcode scanners, Retail Integrated Barcode scanners,...

10CVSS8.3AI score0.10349EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/03/09 5:0 p.m.39 views

CVE-2014-7897

HP OPOS CCO drivers released before 1.13.003 are affected by ARBITRARY CODE EXECUTION via OPOSScanner.ocx and related ActiveX controls across HP POS devices. The connected Nessus/HP advisories identify CVE-2014-7897 and related CVEs (e.g., 2014-7888..7898) as remote code execution vulnerabilities...

10CVSS7.9AI score0.10349EPSS
Exploits0References2Affected Software1
Fedora
Fedora
added 2015/02/23 8:4 a.m.14 views

[SECURITY] Fedora 20 Update: drupal6-views-2.18-1.fc20

The views module provides a flexible method for Drupal site designers to control how lists of content nodes are presented. Traditionally, Drupal has hard-coded most of this, particularly in how taxonomy and tracker lists are formatted. This tool is essentially a smart query builder that, given...

2.5AI score
Exploits0
Fedora
Fedora
added 2015/02/23 8:3 a.m.15 views

[SECURITY] Fedora 21 Update: drupal6-views-2.18-1.fc21

The views module provides a flexible method for Drupal site designers to control how lists of content nodes are presented. Traditionally, Drupal has hard-coded most of this, particularly in how taxonomy and tracker lists are formatted. This tool is essentially a smart query builder that, given...

2.5AI score
Exploits0
n0where
n0where
added 2015/01/13 10:57 p.m.45 views

OpenGraphiti: Data Visualization Engine

OpenGraphiti is a free and open source 3D data visualization engine for data scientists to visualize semantic networks and to work with them. It offers an easy-to-use API with several associated libraries to create custom-made datasets. It leverages the power of GPUs to process and explore the da...

0.3AI score
Exploits0References3
Fedora
Fedora
added 2014/11/10 6:28 a.m.23 views

[SECURITY] Fedora 21 Update: php-Smarty-3.1.21-1.fc21

Although Smarty is known as a "Template Engine", it would be more accurately described as a "Template/Presentation Framework." That is, it provides the programmer and template designer with a wealth of tools to automate tasks commonly dealt with at the presentation layer of an application. I stre...

7.5CVSS1.2AI score0.03127EPSS
Exploits1
Fedora
Fedora
added 2014/11/05 3:57 a.m.18 views

[SECURITY] Fedora 20 Update: php-Smarty-3.1.21-1.fc20

Although Smarty is known as a "Template Engine", it would be more accurately described as a "Template/Presentation Framework." That is, it provides the programmer and template designer with a wealth of tools to automate tasks commonly dealt with at the presentation layer of an application. I stre...

7.5CVSS1.2AI score0.03127EPSS
Exploits1
Fedora
Fedora
added 2014/11/05 3:55 a.m.26 views

[SECURITY] Fedora 19 Update: php-Smarty-3.1.21-1.fc19

Although Smarty is known as a "Template Engine", it would be more accurately described as a "Template/Presentation Framework." That is, it provides the programmer and template designer with a wealth of tools to automate tasks commonly dealt with at the presentation layer of an application. I stre...

7.5CVSS1.2AI score0.03127EPSS
Exploits1
Packet Storm
Packet Storm
added 2014/10/18 12:0 a.m.75 views

MS14-060 Microsoft Windows OLE Package Manager Code Execution

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "MS14-060 Microsoft Windows OLE Package Manager Code Execution", 'Description' = %q This module exploits a vulnerability found in...

9.3CVSS0.3AI score0.81628EPSS
Exploits22
Metasploit
Metasploit
added 2014/10/16 9:37 p.m.152 views

MS14-060 Microsoft Windows OLE Package Manager Code Execution

This module exploits a vulnerability found in Windows Object Linking and Embedding OLE allowing arbitrary code execution, publicly known as "Sandworm". Platforms such as Windows Vista SP2 all the way to Windows 8, Windows Server 2008 and 2012 are known to be vulnerable. However, based on our...

7.8CVSS9.6AI score0.81628EPSS
Exploits22
Fedora
Fedora
added 2014/09/14 3:27 a.m.37 views

[SECURITY] Fedora 20 Update: libreoffice-4.2.6.3-3.fc20

LibreOffice is an Open Source, community-developed, office productivity sui te. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites...

4.3CVSS1.3AI score0.09864EPSS
Exploits0
Fedora
Fedora
added 2014/08/09 7:36 a.m.8 views

[SECURITY] Fedora 19 Update: drupal7-views-3.8-1.fc19

The views module provides a flexible method for Drupal site designers to control how lists of content nodes are presented. Traditionally, Drupal has hard-coded most of this, particularly in how taxonomy and tracker lists are formatted. This tool is essentially a smart query builder that, given...

2.5AI score
Exploits0
Fedora
Fedora
added 2014/08/09 7:32 a.m.11 views

[SECURITY] Fedora 20 Update: drupal7-views-3.8-1.fc20

The views module provides a flexible method for Drupal site designers to control how lists of content nodes are presented. Traditionally, Drupal has hard-coded most of this, particularly in how taxonomy and tracker lists are formatted. This tool is essentially a smart query builder that, given...

2.5AI score
Exploits0
WPVulnDB
WPVulnDB
added 2014/08/01 10:58 a.m.11 views

VideoWhisper Video Presentation 3.17 - 'vw_upload.php' Arbitrary File Upload

The VideoWhisper Video Presentation WordPress plugin was affected by a 'vwupload.php' Arbitrary File Upload security vulnerability...

3.1AI score
Exploits0References1Affected Software1
Rows per page
Query Builder