3943 matches found
UCCASS 1.8.1 Blind SQL Injection
:::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ posdubatgmail.com 2012-06-22 UCCASS comheader"Filter Survey Results"; echo $survey-filter$REQUEST'sid'; // 2 unfiltered $REQUEST'sid' var echo...
UCCASS 1.8.1 - Blind SQL Injection
UCCASS 1.8.1 - Blind SQL Injection :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ posdubatgmail.com 2012-06-22 UCCASS comheader"Filter Survey Results"; echo $survey-filter$REQUEST'sid'; // 2...
UCCASS <= v1.8.1 Blind SQL Injection Vulnerability
Exploit for php platform in category web applications :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ posdubatgmail.com 2012-06-22 UCCASS comheader"Filter Survey Results"; echo...
LimeSurvey 1.92+ Build120620 Remote File Inclusion / Traversal
:::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ posdubatgmail.com 2012-06-22 LimeSurvey 1.92+ build 120620 Multiple Vulnerabilities Script: "LimeSurvey - the free and open source survey software...
Bluetooth scanner: Bluelog
Bluelog is a Linux Bluetooth scanner written to do a single task, log devices that are in discoverable mode. It is intended to be used as a site survey tool, determining how many discoverable Bluetooth devices there are in the area. It has also proven to be very well suited to Bluetooth traffic...
Cisco Releases Multiple Security Advisories
Cisco has released three security advisories to address vulnerabilities affecting the following products: Cisco ASA 5500 Series Adaptive Security Appliances Cisco ASA Cisco Catalyst 6500 Series ASA Service Module Cisco ASASM Cisco AnyConnect Secure Mobility Client Cisco Application Control Engine...
Apple Releases Java Update for OS X Lion and Mac OS X
Apple has released a Java update to address multiple vulnerabilities for the following products: Mac OS X v10.6.8 Mac OS X Server v10.6.8 OS X Lion v10.7.4 OS X Lion Server v10.7.4 These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. US-CER...
Microsoft Releases Security Advisory for Microsoft XML Core Services
Microsoft has released Security Advisory 2719615 to address a vulnerability in Microsoft XML Core Services 3.0, 4.0, 5.0, and 6.0. This vulnerability may allow an attacker to execute arbitrary code if a user accesses specially crafted web pages using Internet Explorer. According to the advisory,...
Adobe Releases Security Bulletin for Adobe Flash Player
Adobe has released a Security Bulletin for Adobe Flash Player to address vulnerabilities affecting the following software versions: Adobe Flash Player 11.2.202.235 and earlier versions for Windows, Macintosh, and Linux Adobe Flash Player 11.1.115.8 and earlier versions for Android 4.x Adobe Flash...
Survey Shows 85 Percent of Small Business Owners Convinced a Data Breach Unlikely
If a newly released survey is any indication, publicized data breaches aren’t enough to prompt small businesses to better protect their customer or employee data. A survey released this week by The Hartford found 85 percent of small business owners believe a data breach is unlikely and often lack...
Microsoft Releases June Security Bulletin
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Internet Explorer, .NET Framework, Lync, and Dynamics AX as part of the Microsoft Security Bulletin Summary for June 2012. These vulnerabilities may allow an attacker to execute arbitrary code or operate with elevated...
Mozilla Releases Multiple Updates
The Mozilla Foundation has released updates for the following products to address multiple vulnerabilities: Firefox 13.0 Firefox ESR 10.0.5 Thunderbird 13.0 Thunderbird ESR 10.0.5 SeaMonkey 2.10 These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service...
Adobe Releases Security Bulletins for Multiple Products
Adobe has released security bulletins to address multiple vulnerabilities for the following products: Adobe Illustrator CS5 15.0.x for Windows and Macintosh Adobe Illustrator CS5.5 15.1 for Windows and Macintosh Adobe Photoshop CS5 12.0 for Windows and Macintosh Adobe Photoshop CS5.1 12.1 for...
Google Releases Google Chrome 19.0.1084.52
Google has released Google Chrome 19.0.1084.52 for Linux, Mac, Windows, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users and administrators to review the...
WordPress WP Survey And Quiz Tool 2.9.2 Cross Site Scripting
Hi We have used our tool, THAPS, to identify vulnerabilities in this WordPress plugin. We have confirmed at least one of the reported vulnerabilities and created a working exploit located below. Attached is one or more log files containing the output of our tool, identifying the location of the...
Google Releases Google Chrome 19
Google has released Google Chrome 19 for Linux, Mac, Windows, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users and administrators to review the Google Chrome...
Apple Releases Multiple Security Updates
Apple has released security updates for Apple OS X and Safari to address multiple vulnerabilities for the following products: Safari 5.1.7 for Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion Server v10.7.4, OS X Lion v10.7.4, Windows 7, Vista, XP SP2 or later OS X Lion v10.7.4 and Security...
Microsoft Releases May Security Bulletin
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Office, .NET Framework, and Silverlight as part of the Microsoft Security Bulletin Summary for May 2012. These vulnerabilities may allow an attacker to execute arbitrary code or operate with elevated privileges. US-CE...
Microsoft Releases Advanced Notification for May Security Bulletin
Microsoft has issued a Security Bulletin Advanced Notification indicating that its May release will contain seven bulletins. These bulletins will have the severity rating of critical and important and will be for Microsoft Windows, Office, .NET Framework, and Silverlight. Releases of these...
Google Releases Chrome 18.0.1025.168
Google has released Chrome 18.0.1025.168 for Linux, Macintosh, Windows, and Google Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users and administrators to review...