3943 matches found
Miniweb 2.0 Business Portal and Social Networking Platform SQL Injection
No description provided by source. Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title:Miniweb 2.0 Business Portal and Social Networking Platform SQL Injection Vulnerability Vendor url:http://www.miniweb2.com/ Version:2.0 Price:250$ Published: 2010-06-10 Greetz to:Sid3^effects, MaYu...
Compaq Client Management Agents 3.70/4.0,Insight Management Agents 4.21 A/4.22 A/4.30 A,Intelligent Cluster Administrator 1.0,Management Agents for Workstations 4.20 A,Server Management Agents <= 4.23,Survey Utility 2.0 Web File Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/282/info A vulnerability in the Compaq Management Agents and the Compaq Survey Utility when running as an agent allows remote malicious users to steal local files. All Compaq Server and Client Management Agents version 4....
UCCASS <= 1.8.1 - Blind SQL Injection Vulnerability
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ posdubatgmail.com 2012-06-22 UCCASS = v1.8.1 Blind SQL Injection Vulnerability Script: The Unit Command Climate...
Apple Releases Security Updates for OS X, Safari, iOS devices, and Apple TV
Apple has released security updates for Mac OS X, Safari, iOS devices, and Apple TV to address multiple vulnerabilities, some of which could allow attackers to execute arbitrary code with system privileges or cause an unexpected application termination. Updates available include: Security Update...
PHP-Nuke 6.x/7.0 Survey Module SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9305/info A vulnerability has been reported to exist in the Survey module of PHP-Nuke that may allow a remote attacker to inject malicious SQL syntax into database queries. The source of this issue is insufficient...
Microsoft Releases Security Advisory for Microsoft Malware Protection Engine
Microsoft has released a security advisory to address a vulnerability to the Microsoft Malware Protection Engine. Successful exploitation of the vulnerability could allow an attacker to cause a denial of service. An update is available for the following affected software: Microsoft Forefront Clie...
Microsoft Releases June 2014 Security Bulletin
Microsoft has released updates to address vulnerabilities in Windows, Office, Internet Explorer, Lync, and Lync Server as part of the Microsoft Security Bulletin Summary for June 2014. Some of these vulnerabilities could allow remote code executions. US-CERT encourages users and administrators to...
Google Releases Security Updates for Chrome and Chrome OS
Google has released security updates to address multiple vulnerabilities in Chrome and Chrome OS. Some of these vulnerabilities could potentially allow an attacker to take control of the affected system or cause a denial of service. Updates available include: Chrome 35.0.1916.153 for Windows, Mac...
OpenSSL Releases Security Advisory
OpenSSL has released updates patching 6 vulnerabilities, which may allow an attacker to decrypt or modify traffic between a vulnerable client and server, cause a denial of service condition, or remotely execute arbitrary code. The following updates are available: OpenSSL 0.9.8 SSL/TLS users shoul...
NCSC-NZ Releases 2013 Incident Summary
New Zealand’s National Cyber Security Centre NCSC-NZ has released its 2013 Incident Summary. The NCSC provides enhanced cybersecurity services to New Zealand Government and private sector organizations against cybersecurity threats. This product is provided subject to this Notification and this...
Apple Releases Security Updates for Safari
Apple has released updates for Safari to address multiple vulnerabilities, some of which could allow a remote attacker to execute arbitrary code or cause a denial of service. Safari 6.1.4 and Safari 7.0.4 updates are available for: OS X Lion v10.7.5 OS X Lion Server v10.7.5 OS X Mountain Lion...
Cisco Releases Security Advisories
Cisco has released two security advisories to address multiple product vulnerabilities, one of which may allow a remote attacker to execute arbitrary code with elevated privileges. The advisories are listed below: Cisco Wide Area Application Services Remote Code Execution Vulnerability Multiple...
Apple Releases Security Updates for OS X and iTunes
Apple has released updates to OS X and iTunes to address multiple vulnerabilities, some of which could allow an attacker to execute arbitrary code, obtain website credentials, or take control of the affected system. Updates are available: OS X Mavericks 10.9.3 for OS X Mavericks 10.9 to 10.9.2...
Google Releases Security Update for Chrome
Google has released Chrome 34.0.1847.137 for Windows, Mac, and Linux to address multiple vulnerabilities. Some of these vulnerabilities could potentially allow an attacker to take control of the affected system. US-CERT encourages users and administrators to review the Google Chrome Blog post and...
Adobe Releases Security Updates for Reader, Acrobat, Flash Player, and Illustrator
Adobe has released security updates to address multiple vulnerabilities in Reader, Acrobat, Flash Player, and Illustrator. Exploitation of these vulnerabilities could potentially allow an attacker to take control of the affected system. The following updates are available: Adobe Reader XI 11.0.07...
Formidable Forms Pro <= 1.06.02 - ofc_upload_image.php Arbitrary File Upload
The Formidable Form Builder – Contact Form, Survey & Quiz Forms Plugin for WordPress WordPress plugin was affected by an ofcuploadimage.php Arbitrary File Upload security vulnerability...
Microsoft Releases Security Update for Internet Explorer Use-After-Free Vulnerability
Microsoft has released out-of-band updates to address a critical use-after-free vulnerability in Internet Explorer versions 6 through 11, including IE versions running on Windows XP. US-CERT recommends that users and administrators review Microsoft Security Bulletin MS14-021 and apply the necessa...
Microsoft Internet Explorer Use-After-Free Vulnerability Guidance
US-CERT is aware of active exploitation of a use-after-free vulnerability in Microsoft Internet Explorer. This vulnerability affects IE versions 6 through 11 and could allow unauthorized remote code execution. US-CERT recommends that users and administrators review Microsoft Security Advisory...
Google Releases Security Updates for Chrome
Google has released security updates to address multiple vulnerabilities in Chrome. Some of these vulnerabilities may lead to memory corruption or arbitrary code execution. Updates available include: Chrome 34.0.1847.131 for Windows and Mac. Chrome 34.0.1847.132 for Linux. Chrome 34.0.1847.134 fo...
Apple Releases Security Updates for OS X, iOS devices, and Apple TV
Apple has released security updates for Mac OS X, iOS devices, and Apple TV to address multiple vulnerabilities, some of which could allow an attacker to execute arbitrary code, cause application termination, or expose users to covert eavesdropping. Updates available include: Security Update...