Lucene search
+L

64 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2018/04/27 12:0 a.m.76 views

JVN#61081552: WordPress plugin "PixelYourSite" vulnerable to cross-site scripting

The WordPress plugin "PixelYourSite" provided by Minimal Work SRL contains a reflected cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on a logged in user's web browser. Solution Update the plugin Update the plugin according to the information provided by the...

5.4CVSS5.3AI score0.00766EPSS
Exploits0
exploitpack
exploitpack
added 2018/02/12 12:0 a.m.40 views

LogicalDOC Enterprise 7.7.4 - User Enumeration

LogicalDOC Enterprise 7.7.4 - User Enumeration LogicalDOC Enterprise 7.7.4 Username Enumeration Weakness Vendor: LogicalDOC Srl Product web page: https://www.logicaldoc.com Affected version: 7.7.4 7.7.3 7.7.2 7.7.1 7.6.4 7.6.2 7.5.1 7.4.2 7.1.1 Summary: LogicalDOC is a free document management...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/02/12 12:0 a.m.34 views

LogicalDOC Enterprise 7.7.4 - Root Remote Code Execution

LogicalDOC Enterprise 7.7.4 Post-Auth Command Execution Via Binary Path Manipulation Vendor: LogicalDOC Srl Product web page: https://www.logicaldoc.com Affected version: 7.7.4 7.7.3 7.7.2 7.7.1 7.6.4 7.6.2 7.5.1 7.4.2 7.1.1 Summary: LogicalDOC is a free document management system that is designe...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/12/14 12:0 a.m.61 views

Multiple OEM - 'nsd' Remote Stack Format String (PoC)

STX Subject: Remote Stack Format String in 'nsd' binary from multiple OEM Attack vector: Remote Authentication: Anonymous no credentials needed Researcher: bashis December 2017 PoC: https://github.com/mcw0/PoC Release date: December 14, 2017 Full Disclosure: 0-Day - PoC - 1 $ curl...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/11/28 12:0 a.m.218 views

Red Hat JBoss EAP - Deserialization of Untrusted Data

Security Advisory @ Mediaservice.net Srl 05, 23/11/2016 Data Security Division Title: Red Hat JBoss EAP deserialization of untrusted data Application: JBoss EAP 5.2.X and prior versions Description: The application server deserializes untrusted data via the JMX Invoker Servlet. This can lead to a...

8.8CVSS8.8AI score0.12471EPSS
Exploits3
Packet Storm
Packet Storm
added 2016/03/05 12:0 a.m.49 views

McAfee VirusScan Enterprise 8.8 Security Bypass

Security Advisory @ Mediaservice.net Srl 01, 13/04/2016 Data Security Division Title: McAfee VirusScan Enterprise security restrictions bypass Application: McAfee VirusScan Enterprise 8.8 and prior versions Platform: Microsoft Windows Description: A local Windows administrator is able to bypass t...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2015/06/01 12:0 a.m.212 views

iClassSchedule 1.6 iOS & Android - Persistent UI Vulnerability

Document Title: =============== iClassSchedule 1.6 iOS & Android - Persistent UI Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1494 Release Date: ============= 2015-05-13 Vulnerability Laboratory ID VL-ID:...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2015/05/18 12:0 a.m.41 views

iClassSchedule 1.6 Script Insertion

Document Title: =============== iClassSchedule 1.6 iOS & Android - Persistent UI Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1494 Release Date: ============= 2015-05-13 Vulnerability Laboratory ID VL-ID:...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2015/05/13 12:0 a.m.30 views

iClassSchedule 1.6 iOS & Android - Persistent Vulnerability

Document Title: =============== iClassSchedule 1.6 iOS & Android - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1494 Release Date: ============= 2015-05-13 Vulnerability Laboratory ID VL-ID: ===================================...

7.1AI score
Exploits0
Cisco Threats
Cisco Threats
added 2015/04/10 2:56 p.m.8 views

Threat Outbreak Alert RuleID14582: Email Messages Distributing Malicious Software on April 10, 2015

Medium Alert ID: 38326 First Published: 2015 April 10 14:56 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID14582 may contain the following files: Name | Si...

0.6AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Feng Office 1.7.3.3 CSRF Vulnerability

No description provided by source. Vulnerability ID: HTB22910 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinfengoffice.html Product: Feng Office Vendor: Secure Data SRL http://www.fengoffice.com/ Vulnerable Version: 1.7.3.3 and probably prior versions Vendor Notification: 17 March 2011...

6.7AI score
Exploits0
Packet Storm
Packet Storm
added 2014/06/05 12:0 a.m.24 views

ABZ Srl CMS SQL Injection

Exploit Title: ABZ Srl Cms SQL Injection + Exploit Author: Medrik + Found Date: 13-03-2014 + Vendor Homepage: http://www.abzsrl.com/ + Google Dork: intext:"powered by ABZ Srl" inurl:pagine.php?id= + Tested on: Windows ========================================== + Exploit Vulnerability Locate:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2014/04/04 12:0 a.m.22 views

A10 Networks ACOS 2.7.0-P2 (Build 53) - Buffer Overflow (PoC)

A10 Networks ACOS 2.7.0-P2 Build 53 - Buffer Overflow PoC -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 === Details === Advisory: http://www.quantumleap.it/a10-networks-remote-buffer-overflow-softax/ Affected Product: ACOS Version: 2.7.0-P2build: 53 older versions may be affected too Tested on...

0.5AI score
Exploits0
0day.today
0day.today
added 2013/10/10 12:0 a.m.53 views

Feng Office 2.3.2-rc Cross Site Scripting Vulnerability

Feng Office version 2.3.2-rc suffers from a cross site scripting vulnerability. Advisory ID: HTB23174 Product: Feng Office Vendor: Secure Data SRL Vulnerable Versions: 2.3.2-rc and probably prior Tested Version: 2.3.2-rc Advisory Publication: September 18, 2013 without technical details Vendor...

4.3CVSS6.2AI score0.0096EPSS
Exploits3
Packet Storm
Packet Storm
added 2013/10/09 12:0 a.m.60 views

Feng Office 2.3.2-rc Cross Site Scripting

Advisory ID: HTB23174 Product: Feng Office Vendor: Secure Data SRL Vulnerable Versions: 2.3.2-rc and probably prior Tested Version: 2.3.2-rc Advisory Publication: September 18, 2013 without technical details Vendor Notification: September 18, 2013 Public Disclosure: October 9, 2013 Vulnerability...

4.3CVSS6.6AI score0.0096EPSS
Exploits3
0day.today
0day.today
added 2011/04/02 12:0 a.m.24 views

Feng Office 1.7.3.3 CSRF Vulnerability

Exploit for php platform in category web applications Product: Feng Office Vendor: Secure Data SRL http://www.fengoffice.com/ Vulnerable Version: 1.7.3.3 and probably prior versions Vendor Notification: 17 March 2011 Vulnerability Type: CSRF Cross-Site Request Forgery Risk level: Low Credit:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2011/04/01 12:0 a.m.16 views

Feng Office 1.7.3.3 - Cross-Site Request Forgery

Feng Office 1.7.3.3 - Cross-Site Request Forgery Vulnerability ID: HTB22910 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinfengoffice.html Product: Feng Office Vendor: Secure Data SRL http://www.fengoffice.com/ Vulnerable Version: 1.7.3.3 and probably prior versions Vendor Notification: 17...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2011/04/01 12:0 a.m.34 views

Feng Office 1.7.3.3 - Cross-Site Request Forgery

Vulnerability ID: HTB22910 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinfengoffice.html Product: Feng Office Vendor: Secure Data SRL http://www.fengoffice.com/ Vulnerable Version: 1.7.3.3 and probably prior versions Vendor Notification: 17 March 2011 Vulnerability Type: CSRF Cross-Site...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2011/03/31 12:0 a.m.27 views

Feng Office 1.7.3.3 Cross Site Request Forgery

Vulnerability ID: HTB22910 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinfengoffice.html Product: Feng Office Vendor: Secure Data SRL http://www.fengoffice.com/ Vulnerable Version: 1.7.3.3 and probably prior versions Vendor Notification: 17 March 2011 Vulnerability Type: CSRF Cross-Site...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2011/03/31 12:0 a.m.57 views

HTB22910: XSRF (CSRF) in Feng Office

Vulnerability ID: HTB22910 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinfengoffice.html Product: Feng Office Vendor: Secure Data SRL http://www.fengoffice.com/ Vulnerable Version: 1.7.3.3 and probably prior versions Vendor Notification: 17 March 2011 Vulnerability Type: CSRF Cross-Site...

6.6AI score
Exploits0
Rows per page
Query Builder