Joyent Node.js send ROOT directory discovery vulnerability

Joyent Node.js is a web application platform built on top of Google's V8 JavaScript engine. A security vulnerability in Joyent Node.js send allows remote attackers to submit a special request to discover the root directory...

Send Anywhere (File Transfer) - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Send Anywhere File Transfer published at the 'play' market has multiple vulnerabilities...

Ipswitch MOVEit DMZ and MOVEit Mobile File Read Vulnerabilities

Ipswitch MOVEit is an automated file transfer system from Ipswitch USA. DMZ and Mobile are among the versions. Ipswitch MOVEit DMZ and MOVEit Mobile have a security vulnerability in the 'Send as attachment' function due to the mobile/sendMsg URI failing to adequately filter the ' serverFileIds'...

PT-2017-7491 · Send +1 · Send +1

Name of the Vulnerable Software and Affected Versions: send versions prior to 0.11.1 Description: The issue allows attackers to obtain the root path via unspecified vectors, potentially enabling them to enumerate paths on the server filesystem. Recommendations: For versions prior to 0.11.1, updat...

astana.gov.kz XSS vulnerability

Vulnerable URL: http://astana.gov.kz/kk/resetting/send-email Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0 VIP website status:| No Chec...

DEBIAN-CVE-2015-8476

Multiple CRLF injection vulnerabilities in PHPMailer before 5.2.14 allow attackers to inject arbitrary SMTP commands via CRLF sequences in an 1 email address to the validateAddress function in class.phpmailer.php or 2 SMTP command to the sendCommand function in class.smtp.php, a different...

D-Link DIR-866L 'HNAP' and 'Send Email' Function Buffer Overflow Vulnerability

D-Link DIR-866L is a wireless router product from AUO D-Link. A buffer overflow vulnerability exists in the D-Link DIR-866L. An attacker can exploit this vulnerability to execute arbitrary code in an affected application, which may also result in a denial of service...

D-Link DIR-615 PING和Send Email缓冲区溢出漏洞

No description provided by source...

D-Link DIR-615 'PING' and 'Send Email' Buffer Overflow Vulnerability

The D-Link DIR-615 is a wireless router product from AUO. A buffer overflow vulnerability exists in the D-Link DIR-615 'PING' and 'Send Email', which allows remote attackers to exploit the vulnerability to submit a special request to crash the service...

D-Link DIR-615 Buffer Overflow Vulnerability

D-Link DIR-615 suffers from multiple buffer overflow vulnerabilities. Title: Dlink DIR-615 Authenticated Buffer overflow in Ping and Send email functionality Vendors contacted: William Brown , Patrick Cline email protected CVE: None Note: All these security issues have been discussed with the...

D-Link DIR-866L - Multiple Buffer Overflow Vulnerabilities

Advisory Information Title: DIR-866L Buffer overflows in HNAP and send email functionalities Vendors contacted: William Brown , Patrick Cline [email protected] CVE: None Note: All these security issues have been discussed with the vendor and vendor indicated that they have fixed issues...

D-Link DIR-615 Buffer Overflow

Advisory Information Title: Dlink DIR-615 Authenticated Buffer overflow in Ping and Send email functionality Vendors contacted: William Brown , Patrick Cline [email protected] CVE: None Note: All these security issues have been discussed with the vendor and vendor indicated that they...

D-Link DIR-615 - Multiple Buffer Overflow Vulnerabilities

D-Link DIR-615 - Multiple Buffer Overflow Vulnerabilities Advisory Information Title: Dlink DIR-615 Authenticated Buffer overflow in Ping and Send email functionality Vendors contacted: William Brown , Patrick Cline [email protected] CVE: None Note: All these security issues have been...

D-Link DIR-866L - Multiple Buffer Overflow Vulnerabilities

D-Link DIR-866L - Multiple Buffer Overflow Vulnerabilities Advisory Information Title: DIR-866L Buffer overflows in HNAP and send email functionalities Vendors contacted: William Brown , Patrick Cline [email protected] CVE: None Note: All these security issues have been discussed with...

Root Path Disclosure

Overview Versions of send prior to 0.11.2 are affected by an information leakage vulnerability which may allow an attacker to enumerate paths on the server filesystem. Recommendation Update to version 0.11.1 or later. References - PR 70 - Express Changelog - 2015/01/20 - GitHub Advisory...

The vulnerabilities of PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, as well as PDF viewing programs like Adobe Reader and Adobe Reader Document Cloud, allow attackers to circumvent JavaScript restrictions.

The vulnerability of the ANSendForReview method in PDF editing programs from Adobe Acrobat and Adobe Acrobat Document Cloud, as well as in PDF viewing programs from Adobe Reader and Adobe Reader Document Cloud, is related to deficiencies in access control for certain functions. Exploiting this...

kppw最新版前台sql注入

简要描述： 我这么认真，你们还是给我点对应的rank吧 详细说明： 算上关联的函数，本来还有很多的，我自己也没有找了， 我测试的是utf版本的，你们gbk版本由于这个问题已经炸了，希望好好审查 下面我拿 control\user\messagesend.php文件举例，同样问题的我找的还有 message.php,yijia.php setUid $gUid ; $objMsgM-setUsername $username ; $objMsgM-setTouid $arrSpaceInfo 'uid' ; $objMsgM-setTousername $arrSpaceInfo...

Wordpress Plugin Store Locator Plus 4.2.23 Email Injection

如果我们拥有有效的“钥匙”就可以发送邮件给任何人File: store-locator-le\include\send-email.phpif !wpverifynonce$REQUEST'valid','em' die; $messageheaders = "From: "$GET'emailname'"...

ero-advertising.com XSS vulnerability

Vulnerable URL: http://ero-advertising.com/contact/send Details: Description| Value ---|--- Patched:| Yes, at 19.09.2015 Latest check for patch:| 19.09.2015 01:36 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 462 Google Pagerank| 3 VIP website status:| Yes Che...

AirDroid iOS Android Win 3.1.3 - Persistent

AirDroid iOS Android Win 3.1.3 - Persistent Document Title: =============== Airdroid iOS, Android & Win 3.1.3 - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1543 Release Date: ============= 2015-07-20 Vulnerability Laboratory ...