Afterpay Gateway for WooCommerce < 3.2.1 - Reflected Cross-Site Scripting

The plugin has sample files form the https://github.com/afterpay/sdk-php library, which do not escape some parameters before outputting them in attributes, leading to Reflected Cross-Site Scripting issues. PoC...

Libgig Out-of-Bounds Read Vulnerability

libgig is a C++ library for loading, modifying existing and creating new Gigasampler .gig files and DLS downloadable sound level 1/2 files, KORG sample-based instruments .KSF and .KMP files, SoundFont v2 .sf2 files and AKAI sampler data. An out-of-bounds read vulnerability exists in the store32...

Arbitrary File Overwrite

JSNAPy is vulnerable to arbitrary file overwrite attacks. The default configuration and sample files are created world writable, allowing a local malicious user to edit files in the /etc/jsnapy directory...

Adobe Flash - Pointer Crash in XML Handling

Adobe Flash - Pointer Crash in XML Handling Source: https://code.google.com/p/google-security-research/issues/detail?id=400&can=1&q=label%3AProduct-Flash%20modified-after%3A2015%2F8%2F17&sort=id The attached sample file, signalsigsegv7ffff637297a8900e3f87b25c25db8f9ec3c975f8c1211cc.swf, crashes,...

USN-771-1: libmodplug vulnerabilities

It was discovered that libmodplug did not correctly handle certain parameters when parsing MED media files. If a user or automated system were tricked into opening a crafted MED file, an attacker could execute arbitrary code with privileges of the user invoking the program. CVE-2009-1438 Manfred...

[USN-771-1] libmodplug vulnerabilities

=========================================================== Ubuntu Security Notice USN-771-1 May 07, 2009 libmodplug vulnerabilities CVE-2009-1438, CVE-2009-1513 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS...

JRun Sample Files

This host is running the Allaire JRun web server and has sample files installed. Several of the sample files that come with JRun contain serious security flaws. An attacker can use these scripts to relay web requests from this machine to another one or view sensitive configuration information...

Codebrws.asp Source Disclosure Vulnerability

Microsoft's IIS 5.0 web server is shipped with a set of sample files to demonstrate different features of the ASP language. One of these sample files allows a remote user to view the source of any file in the web root with the extension .asp, .inc, .htm, or .html. OpenVAS Vulnerability Test $Id:...

Allaire/Macromedia JRun Sample Files (HTTP) - Active Check

This host is running the Allaire JRun web server and has sample files installed. SPDX-FileCopyrightText: 2001 Digital Defense Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Netscape Enterprise Web Server for Netware 4/5 5.0 - Information Disclosure

source: https://www.securityfocus.com/bid/4874/info It has been reported that Netscape Enterprise Web Server may disclose path and system information to a remote user. Netscape Enterprise Web Server for Netware contain several sample files which leak system information, this information can be...