15 matches found
RHEL 6 : libsamplerate (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libsamplerate: Buffer overflow in calcoutputsingle CVE-2017-7697 Note that Nessus has not tested for this issue but...
RHEL 5 : freeradius2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - freeradius: stack-based buffer overflow flaw in rlmpap module CVE-2014-2015 Note that Nessus has not tested for thi...
RHEL 8 : audiofile (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - audiofile: NULL pointer dereference in ModuleState::setup in modules/ModuleState.cpp allows for denial of service v...
RHEL 7 : tpm2-tss (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - tpm2-tss: Buffer Overlow in TSS2RCDecode CVE-2023-22745 Note that Nessus has not tested for this issue but has...
HealthForYou 1.11.1 / HealthCoach 2.9.2 User Enumeration
Trovent Security Advisory 2104-01 User enumeration through API Overview Advisory ID: TRSA-2104-01 Advisory version: 1.0 Advisory status: Public Advisory URL: https://trovent.io/security-advisory-2104-01 Affected product: HealthForYou & Sanitas HealthCoach mobile and web applications Tested...
CITSmart ITSM 9.1.2.22 - LDAP Injection
Exploit Title: CITSmart ITSM 9.1.2.22 - LDAP Injection Google Dork: "citsmart.local" Date: 29/12/2020 Exploit Author: skysbsb Vendor Homepage: https://docs.citsmart.com/pt-br/citsmart-platform-9/get-started/about-citsmart/release-notes.html Version: = 9.1.2.23 Using this LDAP query in the usernam...
Virtual Airlines Manager 2.6.2 SQL Injection
Exploit Title: Virtual Airlines Manager 2.6.2 - 'notam' SQL Injection Date: 2020-06-07 Exploit Author: Pankaj Kumar Thakur Vendor Homepage: http://virtualairlinesmanager.net/ Dork: inurl:notamid= Affected Version: 2.6.2 Tested on: Ubuntu CVE : N/A Vulnerable parameter -------------------...
Ubiquiti UniFi Video 3.7.3 (Windows) Local Privilege Escalation
RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Ubiquiti UniFi Video Windows Vendor URL: https://www.ubnt.com Type: Improper Handling of Insufficient Permissions or Privileges CWE-280 Date found: 2016-05-24 Date published: 2017-12-20 CVSS...
Bug Hunters Prefer Communication Over Compensation
Unlike their criminal counterparts, it turns out that white hats aren’t necessarily as financially motivated when it comes to bug hunting. Bug bounties are everywhere, and many researchers are making a decent amount of money privately disclosing vulnerabilities through coordinated bounty programs...
Cisco Firepower Threat Management Console 6.0.1 - Hard-Coded MySQL Credentials
KL-001-2016-005 : Cisco Firepower Threat Management Console Hard-coded MySQL Credentials Title: Cisco Firepower Threat Management Console Hard-coded MySQL Credentials Advisory ID: KL-001-2016-005 Publication Date: 2016.10.05 Publication URL:...
Design/Logic Flaw
Unspecified vulnerability in Oracle Java SE 7 Update 11 JRE 1.7.011-b21 allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors, aka "Issue 51," a different vulnerability than CVE-2013-0431. NOTE: as of 20130130, this vulnerability does not contain any...
Chamilo 1.8.8.4 Multiple Vulnerabilities
Chamilo 1.8.8.4 Multiple Vulnerabilities ======================== CVE: CVE-2012-4029 Issue: Reflected XSS PHPSELF in third-party app, Stored XSS PHPSELF XSS http://chamilo-1.8.8.4/main/inc/lib/phpdocx/pdf/www/examples.php/'"img src=404 onerror=alert1 Stored XSS unfiltered input categoryname...
JAHx101 - Huski retail mulitple SQL injection vulnerabilities
-------------------------------------------------------------------------------------------- 20100205 - Justanotherhacker.com : Huski retail mulitple SQL injection vulnerabilities JAHx101 - http://www.justanotherhacker.com/advisories/JAHx101.txt...
LinkLogger 2.4.10.15 - syslog Denial of Service
LinkLogger 2.4.10.15 - syslog Denial of Service !/usr/bin/perl LinkLogger 2.4.10.15 syslog DoS Tested against 2.4.10.15 Coded by Mike Cyr, aka h00die mcyr2 at csc dotcom Notes: 1. Based on code from http://www.pythonprasanna.com/Papers%20and%20Articles/Sockets/udpspoofpl.txt 2. The exact amount o...
LinkLogger 2.4.10.15 (syslog) Denial of Service Exploit
Exploit for linux platform in category dos / poc ======================================================= LinkLogger 2.4.10.15 syslog Denial of Service Exploit ======================================================= !/usr/bin/perl LinkLogger 2.4.10.15 syslog DoS Tested against 2.4.10.15 Coded by...