Adobe Reader 'file://' URL Information Disclosure Vulnerability (Feb 2007) - Mac OS X

Adobe Reader is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

eazyCMS - index.php SQL Injection

eazyCMS - index.php SQL Injection source: https://www.securityfocus.com/bid/66769/info eazyCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the...

GNUBoard 4.3x - 'ajax.autosave.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/66228/info GNUboard is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent...

Google Chrome Multiple Vulnerabilities-02 (Mar 2014) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

FreePBX 2.9 - 12 RCE Vulnerability - Active Check

FreePBX is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:freepbx:freepbx"; ...

eshtery CMS - 'FileManager.aspx' Local File Disclosure

source: https://www.securityfocus.com/bid/65740/info eshtery CMS is prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this vulnerability would allow an attacker to obtain potentially sensitive information from local files on...

SeaMonkey Multiple XSS Vulnerabilities (Feb 2014) - Windows

SeaMonkey is prone to multiple cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Joomla! ‘index.php’ SQL injection vulnerability-vulnerability warning-the black bar safety net

SSV-ID:6 1 4 5 9 Ranking Wiki contributions to vulnerability scanning to cloud storage VPS Mac SSV-AppDir:Joomla vulnerability Published: 2014-02-06 Vulnerability version: Joomla! 3.2.1 Vulnerability description: BUGTRAQ ID: 6 5 4 1 0 Joomla! Is the United States the Open Source Matters team...

Multiple Linksys Devices Multiple RCE Vulnerabilities

Multiple Linksys devices are prone to multiple remote code execution RCE vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

ImageMagick PSD图形文件处理缓冲区溢出漏洞

BUGTRAQ ID: 65478 CVE ID：CVE-2014-1947 ImageMagick是一款Unix/Linux平台下开源的图像查看和编辑工具。 ImageMagick 6.8.8-5之前版本进行PSD图形的RLE解码中出现边界错误，可使远程攻击者利用此漏洞造成缓冲区溢出，导致执行任意代码。 0 ImageMagick ImageMagick 6.8.8-5 厂商补丁： ImageMagick ----------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.imagemagick.org/...

Active Perl Denial of Service Vulnerability (Feb 2014) - Windows

Active Perl is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:perl:perl";...

ImageMagick 6.8.8-4 - Local Buffer Overflow (SEH)

ImageMagick 6.8.8-4 - Local Buffer Overflow SEH !/usr/bin/perl Exploit Title: ImageMagick 6.8.8-5 - Local Buffer Overflow SEH Date: 2-13-2014 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: ImageMagick all versions prior to 6.8.8-5 Software Link:...

HackerOne: DNS Misconfiguration

Your localhost.hackerone.com has address 127.0.0.1 and this may lead to "Same- Site" Scripting. Here is detailed description of this minor security issue by Tavis Ormandy: http://www.securityfocus.com/archive/1/486606/30/0/threaded...

Juniper Networks Junos OS Multiple Privilege Escalation Vulnerabilities in Junos CLI

Privilege escalation vulnerability through certain CLI commands. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos"; ...

Adobe Reader Multiple Vulnerabilities - 01 (Apr 2014) - Windows

Adobe Reader is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobatreader";...

Adobe Flash Player Security Bypass Vulnerability (Jan 2014) - Windows

Adobe Flash Player is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer...

Oracle MySQL Multiple Unspecified vulnerabilities - 03 (Jan 2014) - Windows

Oracle MySQL is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Office Web Apps Remote Code Execution vulnerability (2904244)

This host is missing an important security update according to Microsoft Bulletin MS13-100. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

QNAP QTS 'f' Parameter Directory Traversal Vulnerability

QNAP QTS is prone to a directory traversal vulnerability. Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

Command School Student Management System - '/sw/admin_media_codes_1.php?id' SQL Injection

source: https://www.securityfocus.com/bid/64707/info Command School Student Management System is prone to the following security vulnerabilities: 1. Multiple SQL-injection vulnerabilities 2. A cross-site request forgery vulnerability 3. A cross-site scripting vulnerability 4. An HTML injection...