CVE-2017-10989

The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3, as used in GDAL and other products, mishandles undersized RTree blobs in a crafted database, leading to a heap-based buffer over-read or possibly unspecified other impact...

UBUNTU-CVE-2017-10989

The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3, as used in GDAL and other products, mishandles undersized RTree blobs in a crafted database, leading to a heap-based buffer over-read or possibly unspecified other impact...

Schneider Electric U.motion Builder nfcserver Remote Code Execution Vulnerability

U.motion Builder is a builder product from Schneider Electric France. A remote code execution vulnerability exists in the Schneider Electric U.motion Builder nfcserver. The underlying SQLite database query requires SQL injection on the sessionid input parameter. A remote attacker can exploit the...

(0Day) Schneider Electric U.motion Builder HTTP Cookie SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of applets which are exposed on the web service. The...

(0Day) Schneider Electric U.motion Builder loadtemplate SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of loadtemplate.php, which is exposed on the web servic...

(0Day) Schneider Electric U.motion Builder editobject SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of the editobject.php, which is exposed on the web...

(0Day) Schneider Electric U.motion Builder xmlserver SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of xmlserver.php, which is exposed on the web service...

(0Day) Schneider Electric U.motion Builder localize SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of localize.php, which is exposed on the web service wi...

(0Day) Schneider Electric U.motion Builder nfcserver SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of nfcserver.php, which is exposed on the web service...

(0Day) Schneider Electric U.motion Builder track_import_export SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of trackimportexport.php, which is exposed on the web...

(0Day) Schneider Electric U.motion Builder track_getdata SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of trackgetdata.php, which is exposed on the web servic...

Geography Learning Trivia Quiz - Dynamic Code Loading, External URLs, SQLite database found vulnerabilities

HackApp vulnerability scanner discovered that application Geography Learning Trivia Quiz published at the 'play' market has multiple vulnerabilities...

Open Source Intelligence Automation: Spiderfoot

Open Source Intelligence Automation SpiderFoot is an open source footprinting tool, available for Windows and Linux. It is written in Python and provides an easy-to-use GUI. SpiderFoot obtains a wide range of information about a target, such as web servers, netblocks, e-mail addresses and more...

Apple iOS and macOS Sierra SQLite memory corruption vulnerability (CNVD-2017-11832)

Apple iOS and macOS Sierra are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices; macOS Sierra is a specialized operating system developed for Mac computers; SQLite is a C-based, open source, embedded relational database management component developed by D...

Apple iOS and macOS Sierra SQLite Memory Corruption Vulnerability

Apple iOS and macOS Sierra are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices; macOS Sierra is a specialized operating system developed for Mac computers; SQLite is a C-based, open source, embedded relational database management component developed by D...

Apple iOS and macOS Sierra SQLite memory corruption vulnerability (CNVD-2017-11050)

Apple iOS and macOS Sierra are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices; macOS Sierra is a specialized operating system developed for Mac computers; SQLite is a C-based, open source, embedded relational database management component developed by D...

probeSniffer - A Tool for Sniffing Unencrypted Wireless Probe Requests from Devices

| | \ / | \ / / | | | | |/ | \ | o | D | | o / | || || | / | D | /| /| O | | \ | | || || | | || | / | | | | | O | / \ | | || || | | | \ | | | . | | | \ | | || || | | | | | . \ || |||/|||||||| || |||| v2.1 by David SchĂźtz @xdavidhu A tool for sniffing unencrypted wireless probe requests...

Apple macOS Sierra SQLite SQL Query has a Corruption Vulnerability

Apple macOS is a set of operating systems that run on Apple's Macintosh line of computers. A memory corruption vulnerability exists in Apple macOS Sierra SQLite SQL queries, which can be exploited by remote attackers to submit a special SQL query and execute arbitrary code...

Apple macOS Sierra SQLite SQL Query Buffer Overflow Vulnerability

Apple macOS is an operating system that runs on Apple's Macintosh line of computers. A buffer overflow vulnerability exists in Apple macOS Sierra SQLite SQL queries, which can be exploited by a remote attacker to submit a special SQL query and execute arbitrary code...

Apple macOS Sierra SQLite SQL Buffer Overflow Vulnerability

Apple macOS is an operating system that runs on Apple's Macintosh line of computers. A buffer overflow vulnerability exists in Apple macOS Sierra SQLite SQL queries, which can be exploited by a remote attacker to submit a special SQL query and execute arbitrary code...