GRAND Flash Album Gallery 0.55 SQL Injection / File Disclosure

=============================== Vulnerability ID: HTB22871 Reference: http://www.htbridge.ch/advisory/filecontentdisclosureingrandflashalbumgallerywordpressplugin.html Product: GRAND Flash Album Gallery wordpress plugin Vendor: Sergey Pasyuk http://codeasily.com/ Vulnerable Version: 0.55 Vendor...

PhotoSmash 1.0.1 Cross Site Scripting

Vulnerability ID: HTB22867 Reference: http://www.htbridge.ch/advisory/xssinphotosmashwordpressplugin.html Product: PhotoSmash wordpress plugin Vendor: Byron Bennett http://smashly.net/ Vulnerable Version: 1.0.1 Vendor Notification: 22 February 2011 Vulnerability Type: XSS Cross Site Scripting...

Fedora Update for rubygem-actionpack FEDORA-2011-2133

Check for the Version of rubygem-actionpack OpenVAS Vulnerability Test Fedora Update for rubygem-actionpack FEDORA-2011-2133 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Fedora Update for rubygem-actionpack FEDORA-2011-2138

Check for the Version of rubygem-actionpack OpenVAS Vulnerability Test Fedora Update for rubygem-actionpack FEDORA-2011-2138 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Debian Security Advisory DSA 2147-1 (pimd)

The remote host is missing an update to pimd announced via advisory DSA 2147-1. OpenVAS Vulnerability Test $Id: deb21471.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2147-1 pimd Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

[SECURITY] Fedora 13 Update: rubygem-actionpack-2.3.5-4.fc13

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

[SECURITY] Fedora 14 Update: rubygem-actionpack-2.3.8-3.fc14

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

GnackTrackR6 Released , available for Download !

GnackTrackR6 Released , available for Download ! GnackTrack is a Live and installable Linux distribution designed for Penetration Testing and is based on Ubuntu. Although this sounds like BackTrack, it is most certainly not; it's very similar but based on the much loved GNOME! GnackTrackR6 has ju...

HTB22864: XSS vulnerability in xtcModified

Vulnerability ID: HTB22864 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinxtcmodified1.html Product: xtcModified Vendor: xtcModified Team http://www.xtc-modified.org/ Vulnerable Version: 1.05 and probably prior versions Vendor Notification: 17 February 2011 Vulnerability Type: Store...

NextGEN Gallery WordPress Plugin 1.7.3 Path Disclosure

Vulnerability ID: HTB22862 Reference: http://www.htbridge.ch/advisory/pathdisclosureinnextgengallerywordpressplugin.html Product: NextGEN Gallery wordpress plugin Vendor: Alex Rabe http://alexrabe.de/ Vulnerable Version: 1.7.3 Vendor Notification: 15 February 2011 Vulnerability Type: Path...

Share v1.0 for iPhone / iPod touch, Directory Traversal

Exploit for hardware platform in category remote exploits Exploit Title: Share v1.0 for iPhone / iPod touch, Directory Traversal Date: 02/24/2011 Author: email protected, Sunlight, email protected Software Link : http://itunes.apple.com/kr/app/filer-lite-download-view-manage/id350671847?mt=8...

Air Files v2.6 for iPhone / iPod touch, Directory Traversal

Exploit for hardware platform in category remote exploits Exploit Title: Air Files v2.6 for iPhone / iPod touch, Directory Traversal Date: 02/24/2011 Author: email protected, Sunlight, email protected Software Link : http://itunes.apple.com/kr/app/filer-lite-download-view-manage/id339732484?mt=8...

WP Forum Server 1.6.5 Wordpress Plugin SQL Injection Vulnerability

Exploit for php platform in category web applications Product: WP Forum Server wordpress plugin Vendor: VastHTML Vulnerable Version: 1.6.5 Vendor Notification: 10 February 2011 Vulnerability Type: SQL Injection Risk level: High Credit: High-Tech Bridge SA - Ethical Hacking & Penetration Testing...

iOS myDBLite 1.1.10 - Directory Traversal

iOS myDBLite 1.1.10 - Directory Traversal Exploit Title : myDBLite v1.1.10 for iPhone / iPod touch, Directory Traversal Date: 02/24/2011 Author: R3d@l3rt, Sp@2K, Sp@2K, Sunlight, H@ckk3y Software Link: http://itunes.apple.com/kr/app/mydb-lite/id335521112?mt=8 Version: 1.1.10 Tested on: iPhone, iP...

WordPress Plugin IWantOneButton 3.0.1 - Multiple Vulnerabilities

WordPress Plugin IWantOneButton 3.0.1 - Multiple Vulnerabilities Vulnerability ID: HTB22846 Reference: http://www.htbridge.ch/advisory/sqlinjectioniniwantonebuttonwordpres splugin.html Product: IWantOneButton wordpress plugin Vendor: Daniel Sands http://www.danielsands.co.cc/ Vulnerable Version:...

Z-Vote 1.1 Wordpress Plugin SQL Injection Vulnerability

Exploit for php platform in category web applications Vulnerability ID: HTB22839 Reference: http://www.htbridge.ch/advisory/sqlinjectioninzvotewordpressplugin.html Product: Z-Vote wordpress plugin Vendor: 140hours http://wordpress.org/extend/plugins/z-vote/ Vulnerable Version: 1.1 Vendor...

iSO Filer Lite 2.1.0 - Directory Traversal

iSO Filer Lite 2.1.0 - Directory Traversal Exploit Title: Filer Lite v2.1.0 for iPhone / iPod touch, Directory Traversal Date: 02/24/2011 Author: R3d@l3rt, Sp@2K, Sunlight, H@ckk3y Software Link : http://itunes.apple.com/kr/app/filer-lite-download-view-manage/id350939597?mt=8 Version: 2.1.0 Teste...

SideBooks v1.0 for iPhone / iPod touch, Directory Traversal

Exploit for hardware platform in category remote exploits Exploit Title: SideBooks v1.0 for iPhone / iPod touch, Directory Traversal Date: 02/22/2011 Author: email protected, email protected, Sunlight, Hackkey Software Link: http://itunes.apple.com/kr/app/sidebooks/id409777225?mt=8 Version: 1.0...

FtpDisc v1.0 for iPhone / iPod touch, Directory Traversal

Exploit for hardware platform in category remote exploits Exploit Title: FtpDisc v1.0 for iPhone / iPod touch, Directory Traversal Date: 02/22/2011 Author: email protected, email protected, Sunlight Software Link: http://itunes.apple.com/kr/app/ftpdisc-lite-pdf-reader/id329157971?mt=8 Version: 1....

WordPress Plugin Z-Vote 1.1 - SQL Injection

Source: http://packetstormsecurity.org/files/view/98671/zvote-sql.txt Vulnerability ID: HTB22839 Reference: http://www.htbridge.ch/advisory/sqlinjectioninzvotewordpressplugin.html Product: Z-Vote wordpress plugin Vendor: 140hours http://wordpress.org/extend/plugins/z-vote/ Vulnerable Version: 1.1...