Lucene search
K

420 matches found

Vulnerability Lab
Vulnerability Lab
added 2015/05/18 12:0 a.m.23 views

WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability

Document Title: =============== WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1498 Release Date: ============= 2015-05-18 Vulnerability Laboratory ID VL-ID: ==================================== 149...

0.5AI score
Exploits0
Patchstack
Patchstack
added 2015/05/15 12:0 a.m.9 views

WordPress Wise Search Widget Plugin <= 1.1 - Cross Site Scripting

This plugin is prone to a cross site scripting vulnerability via "s" parameter. Solution Upgrade this plugin...

2.6AI score
Exploits0Affected Software1
Patchstack
Patchstack
added 2015/05/15 12:0 a.m.9 views

WordPress Wise Search Widget Plugin <= 1.1 - Cross Site Scripting

This plugin is prone to a cross site scripting vulnerability via "s" parameter. Solution Upgrade this plugin...

2.6AI score
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2014/08/01 10:59 a.m.10 views

Wise Search Widget 1.1 - s Parameter Reflected XSS

The Category Wise Search WordPress plugin was affected by a s Parameter Reflected XSS security vulnerability...

2.3AI score
Exploits0Affected Software1
Patchstack
Patchstack
added 2014/08/01 12:0 a.m.7 views

WordPress Wise Theme - Email Spoofing

Because of this vulnerability, the attackers can send email from your server without authorization. Solution Disable this theme...

3.6AI score
Exploits0References1Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.33 views

WISE-FTP 4.1/5.5.8 FTP Client 'LIST' Command Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29844/info WISE-FTP is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting this issue allows an attacker to write arbitrary files to location...

7.1AI score
Exploits0
NVD
NVD
added 2012/03/17 10:55 a.m.14 views

CVE-2012-0293

Multiple SQL injection vulnerabilities in Symantec Altiris WISE Package Studio before 8.0MR1 allow remote attackers to execute arbitrary SQL commands via unspecified vectors...

6.8CVSS8.5AI score0.01263EPSS
Exploits0References3
Prion
Prion
added 2012/03/17 10:55 a.m.15 views

Sql injection

Multiple SQL injection vulnerabilities in Symantec Altiris WISE Package Studio before 8.0MR1 allow remote attackers to execute arbitrary SQL commands via unspecified vectors...

6.8CVSS9.2AI score0.01263EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2012/03/17 10:0 a.m.47 views

CVE-2012-0293

The CVE-2012-0293 issue affects Symantec Altiris WISE Package Studio prior to 8.0MR1, where multiple SQL injection vulnerabilities in the packaging/deployment application could allow remote attackers to execute arbitrary SQL commands via unspecified vectors. The root cause is SQL injection in the...

6.8CVSS8.8AI score0.01263EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2012/03/17 10:0 a.m.21 views

CVE-2012-0293

Multiple SQL injection vulnerabilities in Symantec Altiris WISE Package Studio before 8.0MR1 allow remote attackers to execute arbitrary SQL commands via unspecified vectors...

8.5AI score0.01263EPSS
Exploits0References3
Symantec
Symantec
added 2012/03/14 8:0 a.m.24 views

Altiris WISE Package Studio SQL Injections

SUMMARY Symantecs Altiris WISE Package Studio is susceptible to SQL injection attacks. It is possible to execute arbitrary SQL queries on the backend database of a targeted system. AFFECTED PRODUCTS Product | Version | Build | Solution ---|---|---|--- Altiris WISE Package Studio | 8.0 and prior |...

0.6AI score0.01263EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2011/10/19 5:17 p.m.4 views

HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)

The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HT...

4.3CVSS6.7AI score0.73327EPSS
Exploits4References4
0day.today
0day.today
added 2010/10/27 12:0 a.m.35 views

Wise Registry Cleaner DLL Hijacking Exploit (dwmapi.dll)

Exploit for windows platform in category local exploits ======================================================== Wise Registry Cleaner DLL Hijacking Exploit dwmapi.dll ======================================================== || || | || o,7 || . o7 || 4||| ow, : / /...

6.8AI score
Exploits0
NVD
NVD
added 2008/06/27 6:41 p.m.22 views

CVE-2008-2889

Directory traversal vulnerability in the FTP client in AceBIT WISE-FTP 4.1.0 and 5.5.8 allows remote FTP servers to create or overwrite arbitrary files via a ..\ dot dot backslash in a response to a LIST command, a related issue to CVE-2002-1345...

6.8CVSS6.4AI score0.02205EPSS
Exploits0References6
Prion
Prion
added 2008/06/27 6:41 p.m.18 views

Directory traversal

Directory traversal vulnerability in the FTP client in AceBIT WISE-FTP 4.1.0 and 5.5.8 allows remote FTP servers to create or overwrite arbitrary files via a ..\ dot dot backslash in a response to a LIST command, a related issue to CVE-2002-1345...

6.8CVSS6.7AI score0.02776EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2008/06/27 6:0 p.m.57 views

CVE-2008-2889

The CVE-2008-2889 entry documents a directory traversal flaw in AceBIT WISE-FTP client (versions 4.1.0 and 5.5.8). The vulnerability enables remote FTP servers to create or overwrite arbitrary files via a ..\ (dot dot backslash) in a response to a LIST command, and is described as related to CVE-...

6.8CVSS6.5AI score0.02205EPSS
Exploits0References6Affected Software1
Kaspersky
Kaspersky
added 2008/06/27 12:0 a.m.47 views

KLA10388 WLF vulnerability in AceBIT WISE-FTP

A directory traversal vulnerability was found in WISE-FTP. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited remotely via a specially designed response. Original advisories - Related products WISE-FTP CVE list CVE-2008-2889 high...

6.8CVSS6.6AI score0.02205EPSS
Exploits0References2
exploitpack
exploitpack
added 2008/06/20 12:0 a.m.17 views

WISE-FTP 4.15.5.8 - FTP Client LIST Directory Traversal

WISE-FTP 4.15.5.8 - FTP Client LIST Directory Traversal source: https://www.securityfocus.com/bid/29844/info WISE-FTP is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting this issue allows an attacker to write...

0.7AI score
Exploits0
Cvelist
Cvelist
added 2006/02/01 8:0 p.m.24 views

CVE-2005-4697

The Microsoft Wireless Zero Configuration system WZCS allows local users to access WEP keys and pair-wise Master Keys PMK of the WPA pre-shared key via certain calls to the WZCQueryInterface API function in wzcsapi.dll...

6.3AI score0.01895EPSS
Exploits0References8
securityvulns
securityvulns
added 2005/10/05 12:0 a.m.44 views

Advisory: WZCS vulnerabilities

Summary "The Wireless Zero Configuration system service enables automatic configuration for IEEE 802.11 wireless adapters for wireless communication." There are two closely related vulnerabilities: Once the "View Available Wireless Networks" dialogue box is opened the Pair-wise Master Keys of the...

0.1AI score
Exploits0
Rows per page
Query Builder