2431 matches found
[SECURITY] Fedora 19 Update: drupal7-theme-zen-5.4-1.fc19
Zen is a powerful, yet simple, HTML5 starting theme with a responsive, mobile-first grid design. If you are building your own standards-compliant theme, you will find it much easier to start with Zen than to start with Garland or Stark. This theme has fantastic online documentation...
[SECURITY] Fedora 18 Update: drupal7-theme-zen-5.4-1.fc18
Zen is a powerful, yet simple, HTML5 starting theme with a responsive, mobile-first grid design. If you are building your own standards-compliant theme, you will find it much easier to start with Zen than to start with Garland or Stark. This theme has fantastic online documentation...
CVE-2013-1782
Cross-site scripting XSS vulnerability in the Responsive Blog Theme 7.x-1.x before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via vectors related to social icons...
CVE-2013-1780
Cross-site scripting XSS vulnerability in the Best Responsive Theme 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via vectors related to social icons...
CVE-2013-1782
Vulnerability overview: CVE-2013-1782 affects the Responsive Blog Theme for Drupal 7.x-1.x, prior to 7.x-1.6. The issue is an XSS vulnerability where user-entered content in the social icons is not properly sanitized, allowing remote authenticated users with the administer themes permission to in...
CVE-2013-1780
Cross-site scripting XSS vulnerability in the Best Responsive Theme 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via vectors related to social icons...
CVE-2013-1785
Cross-site scripting XSS vulnerability in the 3 slide gallery in the Premium Responsive theme before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...
CVE-2013-1780
The CVE-2013-1780 issue affects the Best Responsive Theme for Drupal (7.x-1.x) prior to 7.x-1.1. It is a cross-site scripting (XSS) vulnerability where improperly sanitized input in social icons can be exploited by remote authenticated users with the administer themes permission to inject arbitra...
CVE-2013-1785
The vulnerability CVE-2013-1785 affects the Premium Responsive theme for Drupal (versions prior to 7.x-1.6). The issue is an XSS flaw in the theme’s 3-slide gallery where user-entered content isn’t properly sanitized, allowing remote authenticated users with the administer themes permission to in...
Responsive Article Directory Script Shell Upload Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
SA-CONTRIB-2013-026 - Best Responsive Theme - Cross Site Scripting (XSS)
Best Responsive theme is a light weight Drupal 7 theme with a modern look and feel. The theme doesn't properly sanitize user-entered content in the social icon leading to a Cross Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker would have to have the...
SA-CONTRIB-2013-028 - Responsive Blog Theme - Cross Site Scripting (XSS)
Responsive Blog Theme is a light weight Drupal 7 theme with a modern look and feel. The theme doesn't properly sanitize user-entered content in the social icon leading to a Cross Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker would have to have the...
SA-CONTRIB-2013-031 - Premium Responsive theme - Cross Site Scripting (XSS)
This third-party contributed theme change Drupal's interface. The theme doesn't properly sanitize user-entered content in the 3 slide gallery on the homepage leading to a Cross Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker would have to have the...
WordPress Responsive Logo Slideshow Cross Site Scripting
Exploit Title : Reflective/Stored XSS in Responsive Logo Slideshow Plugin Cross-Site Scripting Vulnerability Author: Aditya Balapure home: http://adityabalapure.blogspot.in/ Date: 18/02/13 software link: http://wordpress.org/extend/plugins/responsive-logo-slideshow/ CVE Assigned - CVE-2013-1759...
Symphony 2.2.3 - '/symphony/publish/comments?filter' SQL Injection
source: https://www.securityfocus.com/bid/50470/info Symphony is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...
MS HyperV Persistent DoS Vulnerability
Core Security Technologies - Corelabs Advisory MS HyperV Persistent DoS Vulnerability 1. Advisory Information Title: MS HyperV Persistent DoS Vulnerability Advisory ID: CORE-2011-0203 Advisory URL: http://www.coresecurity.com/content/hyperv-vmbus-persistent-dos-vulnerability Date published:...
Microsoft HyperV - Persistent Denial of Service (MS11-047)
Microsoft HyperV - Persistent Denial of Service MS11-047 Core Security Technologies - Corelabs Advisory http://corelabs.coresecurity.com/ MS HyperV Persistent DoS Vulnerability 1. Advisory Information Title: MS HyperV Persistent DoS Vulnerability Advisory ID: CORE-2011-0203 Advisory URL:...
Microsoft Pragmatic General Multicast (PGM) DoS Vulnerability (950762)
This host is missing a critical security update according to Microsoft Bulletin MS08-036. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Embedded Video WordPress Plugin Cross Site Vulnerability (XSS) - CVE-2010-4277
Dear List, I'm writing on behalf of the Check Point Vulnerability Discovery Team to publish the following vulnerability. Check Point Software Technologies - Vulnerability Discovery Team VDT http://www.checkpoint.com/defense/ Embedded Video WordPress Plugin Cross Site Scripting Vulnerability...
Adobe Reader and Acrobat TTF SING Table Buffer Overflow (APSA10-02; CVE-2010-2883)
Portable Document Format PDF is an open file format created by Adobe Systems. It is used for representing two-dimensional documents in a device and resolution independent fixed-layout document format. A vulnerability has been discovered in Adobe Reader and Acrobat. A remote attacker can exploit...