1515 matches found
CentOS Update for bpftool CESA-2019:3979 centos7
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slither v0.6.7 - Static Analyzer For Solidity
Slither is a Solidity static analysis framework written in Python 3. It runs a suite of vulnerability detectors, prints visual information about contract details, and provides an API to easily write custom analyses. Slither enables developers to find vulnerabilities, enhance their code...
CVE-2019-6113
Directory traversal vulnerability on ONKYO TX-NR686 1030-5000-1040-0010 A/V Receiver devices allows remote attackers to read arbitrary files via a .. dot dot and %2f to the default URI...
CVE-2019-6113
Directory traversal vulnerability on ONKYO TX-NR686 1030-5000-1040-0010 A/V Receiver devices allows remote attackers to read arbitrary files via a .. dot dot and %2f to the default URI...
Directory traversal
Directory traversal vulnerability on ONKYO TX-NR686 1030-5000-1040-0010 A/V Receiver devices allows remote attackers to read arbitrary files via a .. dot dot and %2f to the default URI...
CVE-2019-6113
Directory traversal vulnerability on ONKYO TX-NR686 1030-5000-1040-0010 A/V Receiver devices allows remote attackers to read arbitrary files via a .. dot dot and %2f to the default URI...
CVE-2019-6113
CVE-2019-6113 affects ONKYO TX-NR686 series A/V Receivers. The vulnerability is a directory traversal in the device’s URI handling that allows remote attackers to read arbitrary files by supplying a ../ sequence and %2f in the default URI. Documented impact indicates partial confidentiality impac...
DEBIAN-CVE-2016-10906
An issue was discovered in drivers/net/ethernet/arc/emacmain.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arcemactx and arcemactxclean...
The vulnerability in the implementation of the ems_usb_disconnect handler in the Astra Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the emsusbdisconnect handler in the Astra Linux operating system’s kernel is related to a memory release error. In the emsusbprobe function, located in the drivers/net/can/usb/emsusb.c file, memory is allocated to the txmsgbuffer field. However, the emsusbdisconnect handler...
Siemens SIPLUS IM 155-6PN ST TX RAIL Detection
Binary data 750335.prm...
Command Execution Vulnerability in TextpatternCMS
TextpatternCMS is a content management system written in PHP. A command execution vulnerability exists in the TextpatternCMS txmi.php file. which allows an attacker to remotely execute commands to gain server privileges...
File upload vulnerability in tx***_fi***.php file in TextpatternCMS backend
TextpatternCMS is a content management system written in PHP. A file upload vulnerability exists in the txfi.php file in the backend of TextpatternCMS. It allows an attacker to upload a webshell and gain server privileges...
Buffer overflow
In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, Possible buffer overflow in TX and RX FIFOs of microcontroller in camera subsystem used to exchange commands and messages between Micro FW and CPP driver...
openSUSE Security Update : dpdk (openSUSE-2018-1484)
This update for dpdk to version 16.11.8 provides the following security fix : - CVE-2018-1059: restrict untrusted guest to misuse virtio to corrupt host application ovs-dpdk memory which could have lead all VM to lose connectivity bsc1089638 and following non-security fixes : - Enable the broadco...
Command injection
Security Onion Solutions Squert version 1.0.1 through 1.6.7 contains a CWE-78: Improper Neutralization of Special Elements used in an OS Command OS Command Injection vulnerability in .inc/callback.php that can result in execution of OS Commands. This attack appear to be exploitable via Web reques...
We Did It Again! Trend Micro Named a Leader in 2018 Gartner Magic Quadrant for Intrusion Detection and Prevention Systems (IDPS)
Trend Micro has been named a Leader in the Gartner 2018 Magic Quadrant for Intrusion Detection and Prevention Systems IDPS again. We have improved our position in both Completeness of Vision and Ability to Execute from last year, and we believe that placement in the Leaders’ quadrant illustrates...
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of December 25, 2017
Last Sunday, my day could be best described by the lyrics of Sammy Hagar’s song “I Can’t Drive 55.” I was issued a ticket for an alleged speeding infraction. I usually drive about 10 mph over the speed limit, but my “alleged” lead foot got the best of me and so did the Texas Highway Patrol. C’est...
buprenorphine-doctors.com XSS vulnerability
Open Bug Bounty ID: OBB-447318 Description| Value ---|--- Affected Website:| buprenorphine-doctors.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Preventi...
conpct6.harriscountytx.gov XSS vulnerability
Vulnerable URL: https://conpct6.harriscountytx.gov/layouts/15/viewlsts.aspx?FollowSite=0=%27-confirm%27OPENBUGBOUNTY%27-%27 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 06.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown /...
houstonboxoffice.com XSS vulnerability
Vulnerable URL: https://www.houstonboxoffice.com/tickets.php?/Guy,-Monica,-112/Smart-Financial-Centre-TX/=1"...