1026 matches found
CVE-2018-1000096
CVE-2018-1000096 affects the tiny-json-http library (all versions since commit 9b8e74a232bba4701844e07bcba794173b0238a8). The root cause is Missing SSL certificate validation in the library’s core functionality, which can expose users to man-in-the-middle (MITM) attacks. The connected documents c...
CVE-2018-1000096
brianleroux tiny-json-http version all versions since commit 9b8e74a232bba4701844e07bcba794173b0238a8 Oct 29 2016 contains a Missing SSL certificate validation vulnerability in The libraries core functionality is affected. that can result in Exposes the user to man-in-the-middle attacks...
Tiny Tiny RSS SQL Injection Vulnerability
Tiny Tiny RSS is an open source RSS Really Simple Syndication reader written in PHP. forgotpass component is one of the password recovery component. A SQL injection vulnerability exists in the classes/handler/public.php file of the forgotpass component in Tiny Tiny RSS version 17.4. A remote...
DEBIAN-CVE-2017-16896
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter...
CVE-2017-16896
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter...
CVE-2017-16896
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter...
UBUNTU-CVE-2017-16896
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter...
Sql injection
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter...
CVE-2017-16896
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter...
CVE-2017-16896
CVE-2017-16896 affects Tiny Tiny RSS 17.4, specifically the forgotpass component’s login parameter. Multiple connected entries confirm a SQL injection in classes/handler/public.php, producing high/severe impact (NVD metrics: CVSSv2 7.5 MED/ HIGH; CVSSv3 9.8 CRITICAL) with network reach and no aut...
CVE-2017-16896
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter...
CVE-2017-16896
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter...
Tiny HTTPd 0.1.0 - Directory Traversal Vulnerability
Exploit for linux platform in category remote exploits ====================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: Tiny HTTPd 0.1.0 Local File Traversal Date: 26-09-2017 Website: www.touhidshaikh.com Vulnerable Software: Ti...
Tiny HTTPd 0.1.0 - Directory Traversal
====================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: Tiny HTTPd 0.1.0 Local File Traversal Date: 26-09-2017 Website: www.touhidshaikh.com Vulnerable Software: Tiny HTTPd Version: 0.1.0 Download Link:...
Tiny Tiny RSS Cross-Site Scripting Vulnerability
Tiny Tiny RSS is an open source use of PHP language written RSS RSS Simple Syndication reader . A cross-site scripting vulnerability exists in previous versions of Tiny Tiny RSS 829d478f. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...
CVE-2017-1000035
Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack...
CVE-2017-1000035
Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack...
DEBIAN-CVE-2017-1000035
Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack...
UBUNTU-CVE-2017-1000035
Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack...
CVE-2017-1000035
Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack...