103 matches found
carsemsar.com Cross Site Scripting vulnerability OBB-1227978
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Type confusion
An issue was discovered on Samsung mobile devices with O8.x and P9.0 with TEEGRIS software. There is type confusion in the SEM Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2019-14891 August 2019...
CVE-2019-20588
An issue was discovered on Samsung mobile devices with O8.x and P9.0 with TEEGRIS software. There is type confusion in the SEM Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2019-14891 August 2019...
CVE-2019-20588
CVE-2019-20588 affects Samsung mobile devices running O(8.x) and P(9.0) with TEEGRIS. The SEM Trustlet has a type confusion flaw that can lead to arbitrary code execution. Samsung ID SVE-2019-14891 is associated with this issue. The CVSS-3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) yields a b...
SemCMS SE***_In***.php file suffers from SQL injection vulnerability (CNVD-2020-18750)
SemCMS is a set of open source foreign trade enterprise website management system, written in php language, can be run under window or linux system. SemCMS SEIn.php file has a SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...
SemCMS foreign trade website php version V3.8 suffers from SQL injection vulnerability
SemCms is a set of open source foreign trade enterprise website management system, mainly used for foreign trade enterprises, compatible with IE, Firefox, google, 360 and other mainstream browsers. SemCMS foreign trade website php version V3.8 version of the existence of SQL injection...
SemCMS foreign trade website php version we***.php has SQL injection vulnerability
SemCms is an open source foreign trade enterprise website management system, mainly used for foreign trade enterprises. SemCMS foreign trade website php version of we.php SQL injection vulnerability , attackers can exploit the vulnerability to obtain database sensitive information...
WordPress Plugin Sem-Wysiwyg Remote Upload Vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A remote upload vulnerability exists in the WordPress plugin Sem-Wysiwyg. Allows an attacker to upload a webshell and gain...
WordPress Sem-Wysiwyg 1.0 Shell Upload
Exploit Title : WordPress Sem-Wysiwyg Plugins 1.0 Remote Shell Upload Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 20/12/2018 Vendor Homepage : wordpress.org Software Download Link : N/A Tested On : Windows and Linux Category : WebApps Version...
SEMCMS cross-site scripting vulnerability (CNVD-2019-01719)
SEMCMS is a foreign trade web content management system CMS that supports multiple languages. A cross-site scripting vulnerability exists in SEMCMS version 3.4, which can be exploited by a remote attacker to inject arbitrary Web script or HTML into the copyright text box of the admin/SEMCMSMain.p...
sem-rev.ec-nantes.fr XSS vulnerability
Open Bug Bounty ID: OBB-653264 Description| Value ---|--- Affected Website:| sem-rev.ec-nantes.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
semcms php v2.7 sql注入
...
sem-sogamoso-boyaca.gov.co XSS vulnerability
Open Bug Bounty ID: OBB-271657 Description| Value ---|--- Affected Website:| sem-sogamoso-boyaca.gov.co Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
hutchcc.edu XSS vulnerability
Vulnerable URL: http://www.hutchcc.edu/catalog/major/sem-by-sem.ajx.php?major=1"...
kernel security and bug fix update
kernel 2.6.18-406 - fs pipe: fix pipe corruption and iovec overrun on partial copy Mateusz Guzik 1203787 CVE-2015-1805 2.6.18-405 - net tcp: zero retransstamp if all retrans were acked Marcelo Leitner 1205521 - net tcp: fix retransstamp advancing in error cases Marcelo Leitner 1205521 - net tcp:...
WordPress SEM WYSIWYG Plugin - Arbitrary File Upload
This plugin is prone to an arbitrary file upload vulnerability. Solution Update the plugin...
Wordpress sem WYSIWYG Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress sem WYSIWYG Arbitrary File Upload Vulnerability Author: fayzoun facebook: https://www.facebook.com/fayzoun.AO Google Dork: inurl:wp-content/plugins/sem-wysiwyg/ Tested on: win7 ================================== Exploi...
WordPress SEM WYSIWYG Arbitrary File Upload
Exploit Title: Wordpress sem WYSIWYG Arbitrary File Upload Vulnerability Google Dork: inurl:wp-content/plugins/sem-wysiwyg/ Date: 08/22/2012 Author: Crim3R Tested on: all ================================== D3m0:...
NetSaro Enterprise Messenger Server Plaintext Password Storage Vulnerability
NetSaro Enterprise Messenger Server Plaintext Password Storage Vulnerability CVSS Risk Rating: 4.6 Medium Product: NetSaro Enterprise Messenger Server Application Vendor: SEM Software Vendor URL: http://www.netsaro.com/ Public disclosure date: 8/15/2011 Discovered by: Rob Kraus, Jose Hernandez, a...
NetSaro Enterprise Messenger Server Administration Console Weak Cryptographic Password Storage Vulnerability
NetSaro Enterprise Messenger Server Administration Console Weak Cryptographic Password Storage Vulnerability CVSS Risk Rating: 4.6 Medium Product: NetSaro Enterprise Messenger Server Application Vendor: SEM Software Vendor URL: http://www.netsaro.com/ Public disclosure date: 8/15/2011 Discovered...