Unspecified vulnerability in Accellion FTA devices (CNVD-2017-07457)

Accellion FTA devices is a file transfer device from Accellion USA. The device supports file transfer, file sharing, file transfer tracking and reporting, and more. An unspecified vulnerability exists in Accellion FTA devices versions prior to FTA912180. A remote attacker can exploit this...

Dan Geer: Cybersecurity, Humanity's Future "Conjoined"

Given the intertwinement of technology with communication, politics, economies and overall human progress, it seems to go hand-in-hand that cybersecurity must be elevated in parallel. Dan Geer, considered atop the food chain of security thinkers, said during last week’s Source Boston conference...

progress-index.com XSS vulnerability

Open Bug Bounty ID: OBB-216726 Description| Value ---|--- Affected Website:| progress-index.com Open Bug Bounty Program:| Not created yet Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

[SECURITY] Fedora 24 Update: python-tqdm-4.11.2-1.fc24

tqdm read taqadum, =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD means "progress" in Arabic. Instantly make your loops show a smart progress meter - just wrap any itera ble with "tqdmiterable", and you are done!...

[SECURITY] Fedora 25 Update: python-tqdm-4.11.2-1.fc25

tqdm read taqadum, =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD means "progress" in Arabic. Instantly make your loops show a smart progress meter - just wrap any itera ble with "tqdmiterable", and you are done!...

progress-index.com XSS vulnerability

Open Bug Bounty ID: OBB-208591 Description| Value ---|--- Affected Website:| progress-index.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Chea...

MS11-025: Description of the security update for Visual Studio 2005 SP1: June 14, 2011

MS11-025: Description of the security update for Visual Studio 2005 SP1: June 14, 2011 INTRODUCTION Microsoft has released security bulletin MS11-025. To view the complete security bulletin, visit one of the following Microsoft websites: Home users:...

Update Rollup 4 for Microsoft Azure Site Recovery Provider

Update Rollup 4 for Microsoft Azure Site Recovery Provider This article describes the improvements that are included in Update Rollup 4 for Microsoft Azure Site Recovery Provider. Learn about the details of the improvements and the prerequisites that should be validated before you install this...

tqdm Remote Code Execution Vulnerability

tqdm is a fast, scalable progress meter from Python. A remote code execution vulnerability exists in tqdm. An attacker can exploit this vulnerability to execute arbitrary code in the context of an affected application...

2481.com.au XSS vulnerability

Vulnerable URL:...

rruff.geo.arizona.edu XSS vulnerability

Vulnerable URL: http://rruff.geo.arizona.edu/AMS/result.php?author=Downs%20R%20T=%3Cscript%3Ealert%27OPENBUGBOUNTY%27%3C/script%3E Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 16.11.2016 Vulnerability type:| XSS Vulnerability status:| Publicly...

planetbike.com XSS vulnerability

Vulnerable URL: http://www.planetbike.com/search.php?keywords=+++++%22%3E%3C/title%3E%3C/script%3E%27%3E%3Csvg/onload=alert/OPENBUGBOUNTY/%3E++search Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 22.11.2016 Vulnerability type:| XSS Vulnerability...

Cobalt Strike team Services is proof of the RCE vulnerability as soon as possible to upgrade to the latest version-bug warning-the black bar safety net

! Security customer reviews Some time ago Metasploit just broke deserialization vulnerability may lead to remote unauthorized execution of code today and broke the Cobalt Strike team Services RCE vulnerability, it appears that the security personnel in the use of these excellent open source tools...

chromium-browser: use-after-free in extensions

The Chrome Web Store inline-installation implementation in the Extensions subsystem in Google Chrome before 52.0.2743.82 does not properly consider object lifetimes during progress observation, which allows remote attackers to cause a denial of service use-after-free or possibly have unspecified...

CVE-2016-1708

The Chrome Web Store inline-installation implementation in the Extensions subsystem in Google Chrome before 52.0.2743.82 does not properly consider object lifetimes during progress observation, which allows remote attackers to cause a denial of service use-after-free or possibly have unspecified...

Let's Encrypt Celebrates Big HTTPS Milestone

Certificate authority Let’s Encrypt is celebrating a major milestone in the young nonprofit’s existence issuing its 5 millionth certificate this month. Let’s Encrypt launched to the general public just seven months ago. “Our goal is to get the entire web 100 percent HTTPS,” said Josh Aas, executi...

Bruteforce BitCoin Wallet

The purpose of this program is to try to find the password of an encrypted Peercoin or Bitcoin, Litecoin, etc… wallet file i.e. wallet.dat. It can be used in two ways: try all the possible passwords given a charset try all the passwords in a file There is a command line option to specify the numb...

Progress MOVEit Transfer Installed (Windows)

Binary data ipswitchdmzftpinstalled.nbin...

progress-energy.com XSS vulnerability

Vulnerable URL: https://www.progress-energy.com/assets/www/static-content/eew/guzzler/flashdetection.swf?flashContentURL=javascript:alert/XSSPOSED/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclos...

SUSE-SU-2015:2338-1 Security update for xen

This update fixes the following security issues: - bsc955399 - Fix xm migrate --logprogress. Due to logic error progress was not logged when requested. - bsc956832 - CVE-2015-8345: xen: qemu: net: eepro100: infinite loop in processing command block list - bsc956592 - xen: virtual PMU is unsupport...