333 matches found
Symantec Endpoint Protection Manager Installed (credentialed check)
Symantec Endpoint Protection Manager, an endpoint security solution, is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid59365; scriptversion"1.13"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/10";...
Barracuda WAF 660 7.6.0.028 Cross Site Scripting
Title: ====== Barracuda WAF 660 v7.6.0.028 - Cross Site Vulnerability Date: ===== 2012-03-07 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=444 VL-ID: ===== 444 Introduction: ============= The Barracuda Web Application Firewall provides superior protection against...
Symantec Endpoint Protection Manager Detection
The management interface for Symantec Endpoint Protection, an endpoint security solution, was detected on the remote web server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid57766; scriptversion"1.7"; scriptcvsdate"Date: 2019/11/22"; scriptnameenglish:"Symantec...
Oracle Web Services Manager Web Services Security远程权限提升漏洞
BUGTRAQ ID: 51463 CVE ID: CVE-2012-3568 Oracle Web Services Manager可提供Web服务的安全解决方案。 Oracle Web Services Manager在实现上存在远程权限提升漏洞,远程已验证攻击者可利用此漏洞可通过HTTP协议影响Web Services Security组件及11.1.1.3、11.1.1.4、11.1.1.5版本。 0 Oracle Web Services Manager 11.1.1.5 Oracle Web Services Manager 11.1.1.4 Oracle Web...
Kingdee Apusic Web framework for the backend to get the site webshell and repair-vulnerability warning-the black bar safety net
Apusic Web Management Console Default background address: admin/login. jsp The default management account password: admin admin Use method: the background has to execute SQL statements, also have to load anything. Specific words have forgotten Find Upload, a loaded God horse, just look to...
w-CMS <= 2.0.1 Multiple Vulnerabilities - Active Check
w-CMS is prone to multiple HTML-injection vulnerabilities and a local file include LFI vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Trend Micro Control Manager "CmdProcessor.exe"远程代码执行漏洞
BUGTRAQ ID: 50965 Trend Micro Control Manager是一款安全解决方案。 Trend Micro Control Manager在实现上存在远程代码执行漏洞,攻击者可利用此漏洞以系统级别的权限执行任意代码。 此漏洞位于运行在TCP端口20101的CmdProcessor.exe服务中,受影响的是cmdHandlerRedAlertController.dll的CGenericScheduler::AddTask函数。在处理特制的IPC报文时,受控的数据会被复制到256个字节的栈缓冲区中,导致远程执行代码 Trend Micro Control...
DEDECMS free account password directly into the background-bug warning-the black bar safety net
As is well known, due to the use of simple, customer base, and more, weaving dreams CMS has been broke manyvulnerabilities. Today xiaobian in the group to get the woven dream official forum, a moderator and reliable message:“DEDECMS explosion serious securityvulnerability, the recent official wil...
Ganji is a SQL injection BUG and solution-vulnerability warning-the black bar safety net
| Detail: To unsubscribe from there. $. post'/event/cancelSmsNotify/' , phone : "sdf'dsf" , functionret alert'unsubscribe successful'; Injection parameters phone Vulnerabilityproof: phone=sdf'dsf br / bFatal error/b: Uncaught exception 'Exception' with message '1 0 6 4: You have an error in your...
VSR Advisories: Citrix Access Gateway Command Injection Vulnerability
VSR Security Advisory http://www.vsecurity.com/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Advisory Name: Citrix Access Gateway Command Injection Vulnerability Release Date: 2010-12-21 Application: Citrix Access Gateway Versions: Access Gateway Enterprise...
Cloud Security Alliance Releases New Toolkit
In an effort to better weigh the security of cloud-based infrastructures, the Cloud Security Alliance has released a new toolkit, the Governance, Risk Management and Compliance GRC Stack. Available as a free download on the organization’s website, the collection consists of three tools: CloudAudi...
Webspell 4.2.1 search-injection vulnerability and fix-vulnerability warning-the black bar safety net
Webspell 4.2.1 procedures exist to search-typeSQL injectioncould obtain the administrator user password Search injected into the page: http://localhost/webspell/asearch.php?site=search&table=user&column=nickname&exact=true&identifier=userID&searchtemp=searchuser&search= Storm the Admin Password...
AIX 530012 : U837554
The remote host is missing AIX PTF U837554 which is related to the security of the package bos.altdiskinstall.rte You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...
chillyCMS 1.1.3 Multiple Vulnerabilities
Exploit for php platform in category web applications ======================================== chillyCMS 1.1.3 Multiple Vulnerabilities ======================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ ...
AIX 610005 : U836591
The remote host is missing AIX PTF U836591 which is related to the security of the package devices.pci.df1000f7.com.6.1 You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
VIIShop Online Store V1. 3. 0 fckeditor upload vulnerability-vulnerability warning-the black bar safety net
VIIShop Online Store V1. 3. 0 Fckeditor upload vulnerability can be obtain site permissions. Test method: form id="frmUpload" enctype="multipart/form-data" action="http://www.hackqing.cn/include/fck2/editor/filemanager/upload/php/upload.php?Type=Media" method="post" Upload a new file:br input...
Mac OS X Security Update 2008-007
The remote host is missing Security Update 2008-007. SPDX-FileCopyrightText: 2010 LSS Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
AIX 610004 : U831679
The remote host is missing AIX PTF U831679 which is related to the security of the package bos.64bit You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...
Cmsez(with easy)the whole Station system of 0day-vulnerability warning-the black bar safety net
Program name: Cmsez Web Content Manage System v2. 0. 0 File: comments.php viewimg.php Code: --------------- ? //comments include "mainfile.php"; $art=new article; //Set $confirm='yes';//yes:need administrator authentication to the display,n is displayed directly $member=new member;...
Tinypug 0.9.5 - Cross-Site Request Forgery (Password Change)
www.BugReport.ir AmnPardaz Security Research Team Title: Tinypug Multiple Vulnerabilities Vendor: http://platformassociates.com/ project hosted at http://code.google.com/p/tinypug/ Vulnerable Version: 0.9.5 and prior versions Exploitation: Remote with browser Fix: N/A - Description: Tinypug is a...