391 matches found
MobiControl Stage Programmer - External URLs, Suspicious files vulnerabilities
HackApp vulnerability scanner discovered that application MobiControl Stage Programmer published at the 'play' market has multiple vulnerabilities...
CVE-2015-1015
Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file...
CVE-2015-0988
Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file...
CVE-2015-0987
Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password transmission, which allows remote attackers to obtain sensitive information by sniffing the network during a PLC unlock request...
Format string
Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file...
CVE-2015-1015
Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file...
CVE-2015-0988
Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file...
CVE-2015-0987
Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password transmission, which allows remote attackers to obtain sensitive information by sniffing the network during a PLC unlock request...
CVE-2015-0987
CVE-2015-0987 affects Omron CX-One CX-Programmer (pre-9.6) and CJ2M/CJ2H PLCs (pre-2.1/1.5). The underlying issue is cleartext transmission of passwords to unlock PLCs, enabling an attacker who can sniff network traffic to obtain sensitive information. The NVD/NIST entry, ICS-CERT advisory, and N...
CVE-2015-0988
CVE-2015-0988 affects Omron CX-One CX-Programmer (before 9.6). Root cause: passwords stored in a recoverable format in project/source files (and on CF cards), allowing local users to obtain sensitive information by reading files. Mitigation: upgrade to CX-Programmer 9.6 and CJ2M PLC 2.1 / CJ2H PL...
CVE-2015-1015
CVE-2015-1015 affects Omron CX-One CX-Programmer (prior to v9.6) and CJ2M (prior to v2.1) / CJ2H PLC devices (prior to v1.5). The issue is storing passwords in a recoverable/reversible format in object files on Compact Flash, enabling local users to read sensitive information from files. Impact i...
Omron Multiple Product Vulnerabilities
OVERVIEW Air Force Institute of Technology researcher Stephen Dunlap has identified vulnerabilities in Omron Corporation’s CX-Programmer software, CJ2M series programmable logic controller PLC, and CJ2H series PLC. Omron Corporation has produced new versions that mitigate these vulnerabilities. O...
phpStat <= 1.5 (setup.php) Authentication Bypass Exploit (perl)
No description provided by source. !/usr/bin/perl T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m EXPLOIT FOR - PHPStat Setup.PHP Authentication Bypass Vulnerability Exploit By : A l p h a P r o g r a m m e r Sirus-v E-Mail : [email protected] This Xpl Change Admin's Pass in...
Lattice Diamond Programmer 1.4.2 - Buffer Overflow
No description provided by source. Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Lattice Diamond Programmer Buffer Overflow 1. Advisory Information Title: Lattice Diamond Programmer Buffer Overflow Advisory ID: CORE-2012-0530 Advisory URL:...
PHP Arena <= 1.1.3 pafiledb.php Remote Change Password Exploit
No description provided by source. !/usr/bin/perl T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m EXPLOIT FOR: PHP Arena paFileDB 1.1.3 And 0lder Expl0it By: A l p h a P r o g r a m m e r Sirus-v Email: [email protected] + Discovered By: GulfTech + Advisory:...
The Code of the audit logic upload vulnerability discovery-vulnerability warning-the black bar safety net
0×0 0 Preface Saying a person happy,two people sharing became two parts of a happy,this I see is not necessarily right,if share and to be shared between the two is a rival relationship,and share the joy of the reason happens to be... ha ha,do not say,all know; BUT, if one of the tips to be shared...
InvisionPower CMS Links To Titles 3.0 Cross Site Scripting
InvisionPower cms Links to Titles utility Presistent XSS =========================================== Author: UmPire Version: 3.0 Full details for version 3.1 patch is not mentioned. It's suspicious to affect all versions. Vendor URL: http://invisionpower.com Product URL:...
NSA denies Report that Agency knew and exploited Heartbleed Vulnerability
The Bloomberg claimed that the U.S. National Security Agency NSA knew about the most critical Heartbleed flaw and has been using it on a regular basis to gather “critical intelligence” and sensitive information for at least past two years and decided to keep the bug secret, citing two sources...
PHP file include vulnerability analysis-vulnerability warning-the black bar safety net
One, What is”remote file inclusion vulnerability”for? The answer is: the server through the php properties of a function to contain any files, since you want to include this file source filter is not strict, so can go to that contains a malicious file and we can construct the malicious file to...
24-year-old Russian Hacker and Developer of SpyEye Banking Trojan pleads guilty
A Russian man has pleaded guilty to conspiracy charges in a federal court in Atlanta on Tuesday for developing and distributing a malicious banking malware 'SpyEye' that infected more than 1.4 million computers worldwide since 2009. Aleksandr Andreevich Panin, a 24 year old programmer, also known...