Squiz CMS 4.6.3 XXE Injection / Cross Site Scripting

Sense of Security - Security Advisory - SOS-12-007 Release Date. 14-Jun-2012 Last Update. - Vendor Notification Date. 02-Apr-2012 Product. Squiz CMS Platform. Independent Affected versions. Squiz 4.6.3 verified and possibly others Severity Rating. Medium Impact. Exposure of session information...

QNAP Turbo NAS 3.6.1 Build 0302T - Multiple Vulnerabilities

Sense of Security - Security Advisory - SOS-12-006 Release Date. 13-Jun-2012 Last Update. - Vendor Notification Date. 12-Mar-2012 Product. QNAP Platform. Turbo NAS verified and possibly others Affected versions. Firmware Version: 3.6.1 Build 0302T and prior Severity Rating. High Impact. Exposure ...

QNAP Command Injection

Sense of Security - Security Advisory - SOS-12-006 Release Date. 13-Jun-2012 Last Update. - Vendor Notification Date. 12-Mar-2012 Product. QNAP Platform. Turbo NAS verified and possibly others Affected versions. Firmware Version: 3.6.1 Build 0302T and prior Severity Rating. High Impact. Exposure ...

http-rfi-spider NSE Script

Crawls webservers in search of RFI remote file inclusion vulnerabilities. It tests every form field it finds and every parameter of a URL containing a query. Script Arguments http-rfi-spider.withinhost only spider URLs within the same host. default: true http-rfi-spider.url the url to start...

[SECURITY] Fedora 15 Update: rubygem-actionpack-3.0.5-8.fc15

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

[SECURITY] Fedora 16 Update: rubygem-actionpack-3.0.10-6.fc16

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

[SECURITY] Fedora 17 Update: rubygem-actionpack-3.0.11-4.fc17

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

Fedora Update for rubygem-actionpack FEDORA-2012-8883

Check for the Version of rubygem-actionpack OpenVAS Vulnerability Test Fedora Update for rubygem-actionpack FEDORA-2012-8883 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

TYPO3 v4.7 <= ShellUpload with (CSRF) Vulnerability

Exploit for php platform in category web applications Happy Milw0rm 1337 Day!!! Congratulations all h4x0rz 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by...

TYPO3 4.7 Cross Site Request Forgery

Happy Milw0rm 1337 Day!!! Congratulations all h4x0rz 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

TinyCMS v1.3 <= XSRF/LFI/FU Multiple Vulnerabilities

Exploit for php platform in category web applications Happy Milw0rm 1337 Day!!! Congratulations all h4x0rz 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by...

DSA-2484-1 nut - denial of service

Bulletin has no description...

Radius Manager V4.0.3 Sql injection/CSRF Vulnerabilties

Exploit for php platform in category web applications Radius Manager V4.0.3 Sql injection/CSRF Vulnerabilties ======================================================================= .:. Author : AtT4CKxT3rR0r1ST email protected .:. Script : http://dmasoftlab.com/cont/home .:. Tested On Demo :...

Debian Security Advisory DSA 2476-1 (pidgin-otr)

The remote host is missing an update to pidgin-otr announced via advisory DSA 2476-1. OpenVAS Vulnerability Test $Id: deb24761.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2476-1 pidgin-otr Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

PowerSploit

This project is no longer supported PowerSploit is a col...

[SECURITY] Fedora 17 Update: rubygem-actionmailer-3.0.11-2.fc17

Makes it trivial to test and deliver emails sent from a single service laye r...

[SECURITY] Fedora 16 Update: rubygem-actionmailer-3.0.10-2.fc16

Makes it trivial to test and deliver emails sent from a single service laye r...

DSA-2476-1 pidgin-otr - format string vulnerability

Bulletin has no description...

Web ellasan Design - SQL injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Web ellasan Design SQL injection Vulnerability Author: Becax Home : CrimeIRCD ---------------------------------------------------------------------! Email : email protected Category: webapps Version: n/a Google dork: "powered by...

[SECURITY] [DSA 2670-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2670-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez May 11, 2012 http://www.debian.org/security/faq -...