Lucene search
+L

176 matches found

Debian
Debian
added 2014/07/26 10:35 a.m.23 views

[DLA-0021-1] fail2ban security update

Package : fail2ban Version : 0.8.4-3+squeeze3 CVE ID : CVE-2013-7176 CVE-2013-7177 Use anchored failregex for filters to avoid possible DoS. Manually picked up from the current status of 0.8 branch as of 0.8.13-29-g09b2016: - CVE-2013-7176: postfix.conf - anchored on the front, expects...

5CVSS6.2AI score0.03235EPSS
Exploits2
FreeBSD
FreeBSD
added 2014/05/09 12:0 a.m.37 views

foreman-proxy SSL verification issue

Foreman Security reports: The smart proxy when running in an SSL-secured mode permits incoming API calls to any endpoint without requiring, or performing any verification of an SSL client certificate. This permits any client with access to the API to make requests and perform actions permitting...

7.5CVSS6.5AI score0.01706EPSS
Exploits0References1
Prion
Prion
added 2013/07/23 5:20 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the administrative web interface in Cisco Unified Operations Manager allow remote attackers to inject arbitrary web script or HTML, and obtain improperly secured cookies, via unspecified vectors, aka Bug ID CSCud80186...

4.3CVSS6.2AI score0.01161EPSS
Exploits0References5
Cvelist
Cvelist
added 2013/07/23 5:0 p.m.27 views

CVE-2013-3440

Multiple cross-site scripting XSS vulnerabilities in the administrative web interface in Cisco Unified Operations Manager allow remote attackers to inject arbitrary web script or HTML, and obtain improperly secured cookies, via unspecified vectors, aka Bug ID CSCud80186...

6AI score0.01161EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2012/06/28 12:0 a.m.23 views

Ubuntu 10.04 LTS / 11.04 / 11.10 : network-manager-applet vulnerability (USN-1483-2)

USN-1483-1 fixed a vulnerability in NetworkManager by disabling the creation of WPA-secured AdHoc wireless connections. This update provides the corresponding change for network-manager-applet. It was discovered that certain wireless drivers incorrectly handled the creation of WPA-secured AdHoc...

4.4CVSS5.3AI score0.00428EPSS
Exploits2References2
0day.today
0day.today
added 2010/09/07 12:0 a.m.29 views

DMXReady Secure Document Library Persistent XSS Vulnerability

Exploit for php platform in category web applications ============================================================= DMXReady Secure Document Library Persistent XSS Vulnerability =============================================================...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/07/07 12:0 a.m.24 views

i-Gallery Multiple Vulnerability

Exploit for php platform in category web applications ================================ i-Gallery Multiple Vulnerability ================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /'...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.27 views

Debian DSA-1986-1 : moodle - several vulnerabilities

Several vulnerabilities have been discovered in Moodle, an online course management system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-4297 Multiple cross-site request forgery CSRF vulnerabilities have been discovered. - CVE-2009-4298 It has be...

6.8CVSS6.1AI score0.02574EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2010/02/10 12:0 a.m.25 views

Debian: Security Advisory (DSA-1986-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.02574EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2009/04/06 7:13 p.m.10 views

How the economy is hurting security

From Purdue University’s CERIAS The economic crisis has affected virtually every facet of society, and information security is no exception. In a new report titled Unsecured Economies: Protecting Vital Information, researchers from Purdue University’s CERIAS security center lay out the fairly ble...

1AI score
Exploits0References3
security_vulns
security_vulns
added 2007/07/03 12:0 a.m.100 views

Microsoft Windows Vista/2003/XP/2000 file management security issues

Title: Microsoft Windows Vista/2003/XP/2000 file management security issues Author: 3APA3A, http://securityvulns.com/ Vendor: Microsoft and potentially another vendors Products: Microsoft Windows Vista/2003/XP/2000, Microsoft resource kit for Windows 2000 and different utilities. Access Vector:...

6AI score0.0361EPSS
Exploits1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.11 views

osTicket setup.php Accessibility

The target is running at least one instance of an improperly secured installation of osTicket and allows access to setup.php. Copyright C 2005 George A. Theall Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2005/09/13 12:0 a.m.42 views

PHPNuke78.txt

NewAngels Advisory 7PHP Nuke sqlquery"SELECT active, view FROM ".$prefix."modules WHERE title='$name'"; The $name variable is not checked so you could inject malicious SQL Code. In an file which is included whe have the following code: $queryString = strtolower$SERVER'QUERYSTRING'; if...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/09/13 12:0 a.m.28 views

PHP Nuke <= 7.8 Multiple SQL Injections

NewAngels Advisory 7PHP Nuke = 7.8 Multiple SQL Injections ============================================================================= Software: PHP Nuke 7.8 Type: SQL Injections Risk: High Date: Sep. 10 2005 Vendor: PHP-Nuke phpnuke.org Credit: ======= Robin 'onkelfisch' Verton from...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2005/08/17 12:0 a.m.40 views

citibankXSS.txt

------=Part8324496004.1123943920825 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Hi Full-Disclosure, I'm here to report an XSS vulnerability in one of Citibank's websites. I actually found this at a log in screen, but it's on...

7.4AI score
Exploits0
0day.today
0day.today
added 2005/07/03 12:0 a.m.125 views

phpBB 2.0.15 (highlight) Database Authentication Details Exploit

Exploit for unknown platform in category web applications ================================================================ phpBB 2.0.15 highlight Database Authentication Details Exploit ================================================================ !/usr/bin/perl tested and working /str0ke...

7.1AI score
Exploits0
Rows per page
Query Builder