140 matches found
CVE-2018-20302
An XSS issue was discovered in Steve Pallen Xain before 0.6.2 via the order parameter...
CVE-2018-20302
An XSS issue was discovered in Steve Pallen Xain before 0.6.2 via the order parameter...
CVE-2018-20302
An XSS issue was discovered in Steve Pallen Xain before 0.6.2 via the order parameter...
CVE-2018-20302
Steve Pallen Xain is affected by an XSS vulnerability in versions prior to 0.6.2, exploitable via the order parameter. The issue is reported across multiple sources (CVE-2018-20302, related advisories). Remediation: upgrade to Xain 0.6.2 or newer to mitigate.
git security update
1.8.3.1-20 - Fix CVE-2018-17456: arbitrary code execution via .gitmodules Thanks to Jonathan Nieder for backporting to 2.1.x and to Steve Beattie for backporting to 1.9.1...
git security update
1.8.3.1-14 - Backport fix for CVE-2018-1123 - Thanks to Jonathan Nieder for backporting to 2.1.x and to Steve Beattie for backporting to 1.9.1...
CVE-2017-18201
An issue was discovered in GNU libcdio before 2.0.0. There is a double free in getcdtextgeneric in lib/driver/cdiogeneric.c...
steve-tee.com XSS vulnerability
Open Bug Bounty ID: OBB-557377 Description| Value ---|--- Affected Website:| steve-tee.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosure based...
WordPress Apocalypse Meow plugin <=21.2.7 - BCrypt Authentication Bypass vulnerability
BCrypt Authentication Bypass vulnerability found by Steve Sc00bzT in WordPress Apocalypse Meow plugin versions =21.2.7. Solution Update the WordPress Apocalypse Meow plugin to the latest available version at least 21.2.8...
Apple co-founder Steve Wozniak Launches ‘Woz U’ Online Tech Education Platform
By Waqas Steve Wozniak nicknamed The Woz known as a coding genius and This is a post from HackRead.com Read the original post: Apple co-founder Steve Wozniak Launches Woz U Online Tech Education Platform...
Flash Player is Dead, Long Live Flash Player!
Adobe last week detailed plans to retire its Flash Player software, a cross-platform browser plugin so powerful and so packed with security holes that it has become the favorite target of malware developers. To help eradicate this ubiquitous liability, Adobe is enlisting the help of Apple,...
kernel security, bug fix, and enhancement update
3.10.0-514.10.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.10.2 - net dccp: fix freeing skb too early for IPV6RECVPKTINFO Hannes...
Kill Steve 2 - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Kill Steve 2 published at the 'play' market has multiple vulnerabilities...
How to Disable Windows 10 Upgrade (Forever) With Just One Click
If you are a Windows 7 or Windows 8.1 user, who don't want to upgrade to Windows 10 now or anytime soon, you might be sick of Microsoft constantly pestering you to upgrade your OS. Aren't you? With its goal to deploy Windows 10 on over 1 Billion devices worldwide, Microsoft is becoming more...
Steve Adegbite on Data Integrity
Mike Mimoso talks with Steve Adegbite, Chief Information Security Officer at ETRADE, about data integrity and some of the challenges he encounters when it comes to encrypting data and dealing with third-party access to data...
Critical: Red Hat Security Advisory: firefox security update
Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
Apache Solr Real-Time - Critical - Access Bypass - SA-CONTRIB-2015-119
This module allows content-changes to be committed to Apache Solr in real-time. The module doesn't check the status of an entity being indexed which means that unpublished content will get indexed by Solr and the title and partial content may be exposed to any user who has permission to search si...
Critical: Red Hat Security Advisory: firefox security update
Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
win32/xp sp3 Create "file.txt" 83 bytes
win32/xp sp3 Create "file.txt" 83 bytes. Shellcode exploit for win32 platform / + Author: TUNISIAN CYBER + Title: Shellcode: win32/xp sp3 Create "file.txt" 83 bytes + Date: 15-04-2015 + Type: Local Exploits + Tested on: WinXp 32bit SP3 + Friendly Sites: sec4ever.com + Twitter: @TCYB3R + Credits:...
Important: Red Hat Security Advisory: thunderbird security update
An updated thunderbird package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...