372 matches found
SQL Injection Vulnerability in u*** Parameters on zzzphp sa***.php Page
zzphp is a PHP and MYSQL based CMS, free open source building system. zzzphp sa.php page u parameters exist SQL injection vulnerability, attackers can exploit the vulnerability to obtain database sensitive information...
XSS Vulnerability in WHATSNS System
WHATSNS system is a php open source Q&A system that can quickly build verticalized domains based on your business needs. WHATSNS system has an XSS vulnerability that can be exploited by attackers to obtain sensitive information...
CVE-2013-10067
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/glossworduploadexec.rb 2025-08-22 13:26:18+00:00| seen| MISP/af1fbe07-e10c-40c4-844e-d4419bdf6f80 2025-10-23 21:12:57+00:00| seen|...
Malware Information Sharing Platform Cross-Site Scripting Vulnerability
MISP is an open source software solution for collecting, storing, distributing and sharing cybersecurity metrics and threats cybersecurity incident analysis and malware analysis. MISP suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to inject arbitrary...
JVN#09460804: Knowledge vulnerable to cross-site request forgery
Knowledge provided by support-project.org is an open-source knowledge base platform. Knowledge contains a cross-site request forgery vulnerability CWE-352. Impact If a user views a malicious page while logged in, unintended operations may be performed. Solution Update the Software Update to the...
Moodle Security Bypass Vulnerability (CNVD-2017-00904)
Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A security bypass vulnerability exists in Moodle. An attacker could use this...
Red Hat OpenShift Origin Information Disclosure Vulnerability
Red Hat OpenShift Origin is an open source Platform as a Service PaaS product from Red Hat, Inc. An information disclosure vulnerability exists in Red Hat OpenShift Origin, which can be exploited by attackers to obtain sensitive information...
Moodle Security Bypass Vulnerability (CNVD-2015-07117)
Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A security bypass vulnerability exists in Moodle. An attacker could use this...
Android Open Source Platform (AOSP) Browser UXSS
This module exploits a Universal Cross-Site Scripting UXSS vulnerability present in all versions of Android's open source stock browser before 4.4, and Android apps running on 'Android Open Source Platform AOSP Browser UXSS', 'Description' = %q This module exploits a Universal Cross-Site Scriptin...
Android Open Source Platform (AOSP) Browser UXSS
This module exploits a Universal Cross-Site Scripting UXSS vulnerability present in all versions of Android's open source stock browser before 4.4, and Android apps running on 'Android Open Source Platform AOSP Browser UXSS', 'Description' = %q This module exploits a Universal Cross-Site Scriptin...
The Security of the Android Operating System
In this video, Tim Armstrong, a malware researcher at Kaspersky Lab talks with Ryan Naraine about the strengths and weaknesses of the Android operating system. Armstrong looks at strengths and weaknesses of the open-source platform and warns about the risks associated with jailbreaking/rooting...
Mono System.Math BigInteger整数溢出漏洞
BUGTRAQ ID: 26279 CVECAN ID: CVE-2007-5197 Mono是基于.NET框架的开源开发平台,允许开发人员构建Linux和跨平台的应用。 Mono的Mono.Math.BigInteger类在实现BigInteger数据类型时存在整数溢出漏洞,允许本地攻击者执行任意指令。 Mono Mono 2.0 Mono Mono 1.x 厂商补丁: Debian ------ Debian已经为此发布了一个安全公告(DSA-1397-1)以及相应补丁: DSA-1397-1:New mono packages fix integer overflow...