CentOS Update for squid CESA-2011:1791 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Wordpress Plugins - WP-Predict v1.0 Blind SQL Injection

Exploit for php platform in category web applications Exploit Title: WordPress WP-Predict v1.0 Blind SQL Injection Date: 7/9/12 Exploit Author: Chris Kellum Vendor Homepage: http://www.pootlepress.co.uk/ Software Link: http://downloads.wordpress.org/plugin/wp-predict.zip Version: 1.0...

WordPress Plugin MoodThingy Widget 0.8.7 - Blind SQL Injection

WordPress Plugin MoodThingy Widget 0.8.7 - Blind SQL Injection Exploit Title: WordPress MoodThingy Mood Rating Widget v0.8.7 Blind SQL Injection Date: 7/2/12 Exploit Author: Chris Kellum Vendor Homepage: http://www.moodthingy.com/ Software Link:...

WordPress Plugin MoodThingy Widget 0.8.7 - Blind SQL Injection

Exploit Title: WordPress MoodThingy Mood Rating Widget v0.8.7 Blind SQL Injection Date: 7/2/12 Exploit Author: Chris Kellum Vendor Homepage: http://www.moodthingy.com/ Software Link: http://downloads.wordpress.org/plugin/moodthingy-mood-rating-widget.0.8.7.zip Version: 0.8.7 =====================...

WordPress MoodThingy Widget 0.9.7 SQL Injection

Exploit Title: WordPress MoodThingy Mood Rating Widget v0.8.7 Blind SQL Injection Date: 7/2/12 Exploit Author: Chris Kellum Vendor Homepage: http://www.moodthingy.com/ Software Link: http://downloads.wordpress.org/plugin/moodthingy-mood-rating-widget.0.8.7.zip Version: 0.8.7 =====================...

WordPress MoodThingy Widget v0.8.7 Blind SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress MoodThingy Mood Rating Widget v0.8.7 Blind SQL Injection Date: 7/2/12 Exploit Author: Chris Kellum Vendor Homepage: http://www.moodthingy.com/ Software Link:...

WordPress Paid Business Listings v1. 0. 2 blind-vulnerability warning-the black bar safety net

Title: WordPress Paid Business Listings v1. 0. 2 Blind SQL Injection Author: Chris Kellum Program website: http://www.blazingtorch.com/ Download address: http://downloads.wordpress.org/plugin/paid-business-listings.1.0.2.zip Impact version: 1.0.2 Plug-in details This plugin has a 3 stage process,...

WPAD.dat File Server

This module generates a valid wpad.dat file for WPAD mitm attacks. Usually this module is used in combination with DNS attacks or the 'NetBIOS Name Service Spoofer' module. Please remember as the server will be running by default on TCP port 80 you will need the required privileges to open that...

WordPress Plugin Paid Business Listings 1.0.2 - Blind SQL Injection

WordPress Plugin Paid Business Listings 1.0.2 - Blind SQL Injection Exploit Title: WordPress Paid Business Listings v1.0.2 Blind SQL Injection Date: 6/29/12 Exploit Author: Chris Kellum Vendor Homepage: http://www.blazingtorch.com/ Software Link:...

WordPress Plugin Paid Business Listings 1.0.2 - Blind SQL Injection

Exploit Title: WordPress Paid Business Listings v1.0.2 Blind SQL Injection Date: 6/29/12 Exploit Author: Chris Kellum Vendor Homepage: http://www.blazingtorch.com/ Software Link: http://downloads.wordpress.org/plugin/paid-business-listings.1.0.2.zip Version: 1.0.2 ============== Plugin Details...

WordPress Website FAQ Plugin v1.0 SQL Injection

No description provided by source. Exploit Title: WordPress Website FAQ Plugin v1.0 SQL Injection Date: 6/25/12 Exploit Author: Chris Kellum Vendor Homepage: http://wordpress.org/extend/plugins/website-faq/ Software Link: http://downloads.wordpress.org/plugin/website-faq.zip Version: 1.0...

sos security, bug fix, and enhancement update

2.2-29.0.1.el6 - Direct traceroute to linux.oracle.com John Haxby orabug 11713272 - Disable --upload option as it will not work with Oracle support - Check oraclelinux-release instead of redhat-release to get OS version John Haxby bug 11681869 - Remove RH ftp URL and support email - add...

WordPress Plugin Website FAQ 1.0 - SQL Injection

WordPress Plugin Website FAQ 1.0 - SQL Injection Exploit Title: WordPress Website FAQ Plugin v1.0 SQL Injection Date: 6/25/12 Exploit Author: Chris Kellum Vendor Homepage: http://wordpress.org/extend/plugins/website-faq/ Software Link: http://downloads.wordpress.org/plugin/website-faq.zip Version...

WordPress Website FAQ 1.0 SQL Injection

Exploit Title: WordPress Website FAQ Plugin v1.0 SQL Injection Date: 6/25/12 Exploit Author: Chris Kellum Vendor Homepage: http://wordpress.org/extend/plugins/website-faq/ Software Link: http://downloads.wordpress.org/plugin/website-faq.zip Version: 1.0...

WordPress Website FAQ Plugin v1.0 SQL Injection

Exploit for php platform in category web applications Exploit Title: WordPress Website FAQ Plugin v1.0 SQL Injection Date: 6/25/12 Exploit Author: Chris Kellum Vendor Homepage: http://wordpress.org/extend/plugins/website-faq/ Software Link: http://downloads.wordpress.org/plugin/website-faq.zip...

RedHat Update for squid RHSA-2011:0545-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Vanilla Forums 2.0.18.4 - Tagging Persistent Cross-Site Scripting

Vanilla Forums 2.0.18.4 - Tagging Persistent Cross-Site Scripting Title: Vanilla Tagging Stored XSS Date: 1/6/12 Author: Henry Hoggard Author URL: henryhoggard.co.uk Author Twitter: @henryhoggard Software: Vanilla Version 2.0.18.4 http://vanillaforums.org/download Create a new thread and post you...

Pidgin < 2.10.4 Multiple DoS Vulnerabilities

The version of Pidgin installed on the remote host is earlier than 2.10.4 and is, therefore, potentially affected by the following issues : - An error exists in the file 'libpurple/proxy.c' that can allow certain file transfer requests to an invalid pointer to be dereferenced, leading to...

Firefox security bug &#40;proxy-bypass&#41; in current Tor BBs

https://blog.torproject.org/blog/firefox-security-bug-proxy-bypass-current-tbbs "A user has discovered a severe security bug in Firefox related to websockets bypassing the SOCKS proxy DNS configuration. This means when connecting to a websocket service, your Firefox will query your local DNS...

Moderate: Red Hat Security Advisory: httpd security and bug fix update

An update for the Apache HTTP Server component for JBoss Enterprise Web Server 1.0.2 that fixes multiple security issues and one bug is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability...