Lucene search
K

2431 matches found

Fedora
Fedora
added 2013/09/01 11:7 p.m.13 views

[SECURITY] Fedora 19 Update: drupal7-theme-zen-5.4-1.fc19

Zen is a powerful, yet simple, HTML5 starting theme with a responsive, mobile-first grid design. If you are building your own standards-compliant theme, you will find it much easier to start with Zen than to start with Garland or Stark. This theme has fantastic online documentation...

7AI score
Exploits0
Fedora
Fedora
added 2013/09/01 11:1 p.m.14 views

[SECURITY] Fedora 18 Update: drupal7-theme-zen-5.4-1.fc18

Zen is a powerful, yet simple, HTML5 starting theme with a responsive, mobile-first grid design. If you are building your own standards-compliant theme, you will find it much easier to start with Zen than to start with Garland or Stark. This theme has fantastic online documentation...

7AI score
Exploits0
NVD
NVD
added 2013/03/27 9:55 p.m.16 views

CVE-2013-1782

Cross-site scripting XSS vulnerability in the Responsive Blog Theme 7.x-1.x before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via vectors related to social icons...

2.1CVSS5.2AI score0.01064EPSS
Exploits0References7
NVD
NVD
added 2013/03/27 9:55 p.m.24 views

CVE-2013-1780

Cross-site scripting XSS vulnerability in the Best Responsive Theme 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via vectors related to social icons...

2.1CVSS5.2AI score0.01089EPSS
Exploits0References8
CVE
CVE
added 2013/03/27 9:0 p.m.47 views

CVE-2013-1782

Vulnerability overview: CVE-2013-1782 affects the Responsive Blog Theme for Drupal 7.x-1.x, prior to 7.x-1.6. The issue is an XSS vulnerability where user-entered content in the social icons is not properly sanitized, allowing remote authenticated users with the administer themes permission to in...

2.1CVSS5.3AI score0.01064EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2013/03/27 9:0 p.m.28 views

CVE-2013-1780

Cross-site scripting XSS vulnerability in the Best Responsive Theme 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via vectors related to social icons...

5.2AI score0.01089EPSS
Exploits0References8
Cvelist
Cvelist
added 2013/03/27 9:0 p.m.25 views

CVE-2013-1785

Cross-site scripting XSS vulnerability in the 3 slide gallery in the Premium Responsive theme before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...

5.3AI score0.00941EPSS
Exploits0References5
CVE
CVE
added 2013/03/27 9:0 p.m.35 views

CVE-2013-1780

The CVE-2013-1780 issue affects the Best Responsive Theme for Drupal (7.x-1.x) prior to 7.x-1.1. It is a cross-site scripting (XSS) vulnerability where improperly sanitized input in social icons can be exploited by remote authenticated users with the administer themes permission to inject arbitra...

2.1CVSS5.3AI score0.01089EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2013/03/27 9:0 p.m.44 views

CVE-2013-1785

The vulnerability CVE-2013-1785 affects the Premium Responsive theme for Drupal (versions prior to 7.x-1.6). The issue is an XSS flaw in the theme’s 3-slide gallery where user-entered content isn’t properly sanitized, allowing remote authenticated users with the administer themes permission to in...

2.1CVSS5.4AI score0.00941EPSS
Exploits0References5Affected Software1
0day.today
0day.today
added 2013/03/09 12:0 a.m.23 views

Responsive Article Directory Script Shell Upload Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

7.1AI score
Exploits0
Drupal
Drupal
added 2013/02/27 12:0 a.m.23 views

SA-CONTRIB-2013-026 - Best Responsive Theme - Cross Site Scripting (XSS)

Best Responsive theme is a light weight Drupal 7 theme with a modern look and feel. The theme doesn't properly sanitize user-entered content in the social icon leading to a Cross Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker would have to have the...

2.1CVSS5.7AI score0.01089EPSS
Exploits0References10
Drupal
Drupal
added 2013/02/27 12:0 a.m.22 views

SA-CONTRIB-2013-028 - Responsive Blog Theme - Cross Site Scripting (XSS)

Responsive Blog Theme is a light weight Drupal 7 theme with a modern look and feel. The theme doesn't properly sanitize user-entered content in the social icon leading to a Cross Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker would have to have the...

2.1CVSS5.7AI score0.01064EPSS
Exploits0References10
Drupal
Drupal
added 2013/02/27 12:0 a.m.24 views

SA-CONTRIB-2013-031 - Premium Responsive theme - Cross Site Scripting (XSS)

This third-party contributed theme change Drupal's interface. The theme doesn't properly sanitize user-entered content in the 3 slide gallery on the homepage leading to a Cross Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker would have to have the...

2.1CVSS5.6AI score0.00941EPSS
Exploits0References10
Packet Storm
Packet Storm
added 2013/02/18 12:0 a.m.30 views

WordPress Responsive Logo Slideshow Cross Site Scripting

Exploit Title : Reflective/Stored XSS in Responsive Logo Slideshow Plugin Cross-Site Scripting Vulnerability Author: Aditya Balapure home: http://adityabalapure.blogspot.in/ Date: 18/02/13 software link: http://wordpress.org/extend/plugins/responsive-logo-slideshow/ CVE Assigned - CVE-2013-1759...

4.3CVSS6.6AI score0.02023EPSS
Exploits2
Exploit DB
Exploit DB
added 2011/11/01 12:0 a.m.35 views

Symphony 2.2.3 - '/symphony/publish/comments?filter' SQL Injection

source: https://www.securityfocus.com/bid/50470/info Symphony is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

7.4AI score
Exploits0
Core Security
Core Security
added 2011/06/14 12:0 a.m.22 views

MS HyperV Persistent DoS Vulnerability

Core Security Technologies - Corelabs Advisory MS HyperV Persistent DoS Vulnerability 1. Advisory Information Title: MS HyperV Persistent DoS Vulnerability Advisory ID: CORE-2011-0203 Advisory URL: http://www.coresecurity.com/content/hyperv-vmbus-persistent-dos-vulnerability Date published:...

4.9CVSS7AI score0.02644EPSS
Exploits6
exploitpack
exploitpack
added 2011/06/14 12:0 a.m.72 views

Microsoft HyperV - Persistent Denial of Service (MS11-047)

Microsoft HyperV - Persistent Denial of Service MS11-047 Core Security Technologies - Corelabs Advisory http://corelabs.coresecurity.com/ MS HyperV Persistent DoS Vulnerability 1. Advisory Information Title: MS HyperV Persistent DoS Vulnerability Advisory ID: CORE-2011-0203 Advisory URL:...

4.9CVSS6.4AI score0.02644EPSS
Exploits6
OpenVAS
OpenVAS
added 2011/01/10 12:0 a.m.30 views

Microsoft Pragmatic General Multicast (PGM) DoS Vulnerability (950762)

This host is missing a critical security update according to Microsoft Bulletin MS08-036. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.1CVSS5AI score0.22591EPSS
Exploits1References4
securityvulns
securityvulns
added 2010/12/17 12:0 a.m.69 views

Embedded Video WordPress Plugin Cross Site Vulnerability (XSS) - CVE-2010-4277

Dear List, I'm writing on behalf of the Check Point Vulnerability Discovery Team to publish the following vulnerability. Check Point Software Technologies - Vulnerability Discovery Team VDT http://www.checkpoint.com/defense/ Embedded Video WordPress Plugin Cross Site Scripting Vulnerability...

4.3CVSS6AI score0.01819EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2010/09/12 12:0 a.m.3 views

Adobe Reader and Acrobat TTF SING Table Buffer Overflow (APSA10-02; CVE-2010-2883)

Portable Document Format PDF is an open file format created by Adobe Systems. It is used for representing two-dimensional documents in a device and resolution independent fixed-layout document format. A vulnerability has been discovered in Adobe Reader and Acrobat. A remote attacker can exploit...

9.3CVSS7.3AI score0.82485EPSS
Exploits13
Rows per page
Query Builder