Linux Distros Unpatched Vulnerability : CVE-2015-1074

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of...

Linux Distros Unpatched Vulnerability : CVE-2012-3601

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application...

Linux Distros Unpatched Vulnerability : CVE-2017-7091

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes...

Linux Distros Unpatched Vulnerability : CVE-2017-2526

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the WebKit component. It...

Linux Distros Unpatched Vulnerability : CVE-2015-7098

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service memory...

RHEL 9 : firefox (RHSA-2024:0615)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:0615 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

SUSE CVE-2011-3004

The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping...

WebKit memory corruption vulnerability in multiple Apple products (CNVD-2017-04673)

Apple iOS, Safari, and tvOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices; Safari is a web browser that is the default browser that comes with Mac OS X and iOS operating systems; and tvOS is an operating system for smart TVs. webKit is an open source web...

CVE-2016-4766

WebKit in Apple iOS before 10, tvOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, a different vulnerability than CVE-2016-4759, CVE-2016-4765, CVE-2016-4767,...

Flex File Manager Shell Upload Vulnerability

No description provided by source. ==================================================== Flex File Manager Shell Upload Vulnerability ==================================================== Flex File Manager Shell Upload Vulnerability Author: Mr.MLL Published: 2010-04-19 Verified: yes Download Exploi...

WordPress Theme Persuasion 2.x - Arbitrary File Download File Deletion

WordPress Theme Persuasion 2.x - Arbitrary File Download File Deletion Exploit Title: Persuasion Wordpress Theme - Arbitrary File Download and File Deletion Exploit Date: 19 December 2013 Exploit Author: Interference Security Vendor Homepage: http://mysitemyway.com/ Software Link:...

MaxForum 1.0.0 - Local File Inclusion

MaxForum 1.0.0 - Local File Inclusion +---------------------------------------+ | MaxForum v1.0.0 Local File Inclusion | +---------------------------------------+ Author.............: ahwak2000 Mail...............: z.u5athotmaildotcom Software link......: http://www.max4dev.com/ Tested...

Social Book Facebook Clone Script Cross Site Scripting

Exploit Title: Social Book Facebook Clone Script Reflected XSS Vulnerability Date: 2011 Author: Eyup CELIK Version: All Version Tested on: All versions are Vulnerability Web Site: www.eyupcelik.com.tr ISSUE XSS can be done using the command input Vulnerable Page: signup.php lostpass.php login.php...

Zen Cart store system, upload, cross-site exploit-vulnerability warning-the black bar safety net

Zen Cart is open source, free Mall system, for establishing a professional online store. Zen Cart support multi-language, multi-currency, search engine optimization, bulk update, is the most secure online systems. Zen Cart = v1. 3. 9 presenceXSScross-site, script, upload, path disclosure, etc. of...

GR Board 1.8.6 - 'page.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/40437/info GR Board is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also...

Microsoft Log Sink Class - ActiveX Control Arbitrary File Creation

source: https://www.securityfocus.com/bid/12646/info Microsoft Log Sink Class ActiveX control can allow remote attackers to create arbitrary files on an affected computer. A remote attacker can exploit this issue by crafting a malicious Web site that triggers this vulnerability and enticing a use...

Microsoft Windows XMLHTTP component allows remote access to local data sources

Overview The Microsoft XMLHTTP ActiveX control allows unauthorized reading of any known file on a system. A victim must be enticed to visit a malicious site in order to be attacked. Description Description from MS02-008:Microsoft XML Core Services MSXML includes the XMLHTTP ActiveX control, which...