13538 matches found
WordPress WP Hide And Security Enhancer Plugin Arbitrary File Download
An arbitrary file download vulnerability exists in Wordpress WP Hide & Security Enhancer Plugin. Successful exploitation of this vulnerability by sending a specially crafted HTTP request would allow a remote attacker to gain access to arbitrary files...
JasPer jp2_decode Out of Bounds Read (CVE-2017-9782)
An out-of-bounds array indexing vulnerability has been reported in JasPer. The vulnerability is due to improper handling of objects in memory within the jp2decode function of jp2dec.c. A remote attacker could exploit this vulnerability by supplying a crafted image file to an application using the...
HPE Intelligent Management Center imcwlandm SSID Stack Buffer Overflow (CVE-2017-5806)
A stack buffer overflow exists in HPE Intelligent Management Center. The vulnerability is due to improper validation of the size field when parsing an SSID attribute. A remote, unauthenticated attacker can exploit this vulnerability by sending a maliciously crafted packet to the target server...
Symantec Messaging Gateway remote code execution (CVE-2017-6326)
Command injection vulnerability exists in Symantec Messaging Gateway. The vulnerability is due to insufficient validation of property. An authenticated user can execute a terminal command under the context of the web server user which is root...
Cisco Prime Collaboration Provisioning ScriptMgr Authentication Bypass (CVE-2017-6622)
An authentication bypass vulnerability has been reported in Cisco Prime Collaboration Provisioning. The vulnerability is due to insufficient validation on user supplied paths when a request is sent to ScriptMgr servlet. A remote, unauthenticated attacker can exploit this vulnerability by sending ...
Microsoft Windows System Information Console XXE Injection Information Disclosure (CVE-2017-8557)
An XML external entity XXE injection vulnerability exist in the System Information Console component of Microsoft Windows. The vulnerability is due to a failure to properly handle external entity references in XML files. A remote attacker could exploit this vulnerability by enticing a target user...
Suspicious Site Containing Tech Scams
Many scams have emerged looking to steal money or information by giving users false information claiming that their computers are infected. After such claims they give the users a phone number to call or a way to pay to solve their issues. A successful attack can lead to stolen credentials or mon...
WordPress Shortcodes Ultimate Plugin Authenticated Directory Traversal (CVE-2017-2245)
A directory traversal vulnerability exists in WordPress Shortcodes Ultimate Plugin. An authenticated user with admin privileges could exploit this vulnerability by sending specially crafted requests. Successful exploitation may result in an information disclosure...
strongSwan x509 Plugin Denial of Service (CVE-2017-9023)
A denial-of-service vulnerability exists in strongSwan. The vulnerability is due to improper parsing of various X.509 certificate extensions using ASN.1 CHOICE and SEQUENCE types within the X.509 and ASN.1 parsers. A remote attacker can exploit this vulnerability by sending a crafted public key...
Schneider Electric U.motion Builder localize.php SQL Injection (CVE-2017-7973)
An SQL injection vulnerability has been reported in Schneider Electric U.motion Builder. The vulnerability is due to insufficient validation of the username HTTP request parameter in requests made to localize.php. A remote, unauthenticated user can exploit this vulnerability by sending a crafted...
Systemd resolved dns_packet_new Heap Buffer Overflow (CVE-2017-9445)
A heap buffer overflow vulnerability exists in the dnspacketnew function of systemd-resolved. This vulnerability is due to the allocation of a heap buffer of insufficient size when handling DNS responses. A malicious DNS server can exploit this vulnerability by sending a crafted DNS response...
Malicious JavaScript Trojan Downloader
A Javascript trojan exists in the wild. The trojan acts by redirecting the victim to a malicious website for further exploitation...
Suspicious Executable Containing Ransomware
A malicious executable file was observed as part of different ransomware campaigns. A remote attacker could convince users to manually run it. This would allow the malicious code to run and infect the target system...
Microsoft Windows OLE Global Buffer Overflow (CVE-2017-8487)
A global buffer overflow vulnerability exists in Microsoft Windows OLE. The vulnerability is due to improper validation of image files embedded within an OLE stream. A remote attacker can exploit this vulnerability by enticing the target user to open a specially crafted web page, an email message...
Cisco Prime Collaboration Provisioning licensestatus.jsp Arbitrary File Deletion (CVE-2017-6635)
An arbitrary file deletion exists in Cisco Prime Collaboration Provisioning. The vulnerability is due to insufficient validation on user-supplied paths before using them in file operations. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the targe...
Microsoft Edge Remote Code Execution (CVE-2017-8619)
A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to the way Microsoft Edge handles objects in memory. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page...
Microsoft Internet Explorer Remote Code Execution (CVE-2017-8618)
A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted we...
Adobe Flash Player Memory Corruption (APSB17-21: CVE-2017-3080)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash API while parsing a specially crafted media file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted media file...
Microsoft Win32k Elevation of Privilege (CVE-2017-8578)
An elevation of privilege vulnerability exists in Windows. The vulnerability is due to an error in the way Microsoft Graphics Component fails to properly handle objects in memory. A remote attacker can exploit this issue by log on to the system and run a specially crafted application...
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-8605)
A remote code execution vulnerability has been reported in Microsoft Edge. The vulnerability is due to an error in the way that Microsoft Edge accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a user to open a...
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-8601)
A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to the way Microsoft Edge handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the users system...
ISC BIND TSIG Authentication Bypass (CVE-2017-3143)
There exists an authentication bypass vulnerability in the TSIG protocol in BIND. This vulnerability is due to the way TSIG handles incorrect digest lengths. A successful attack can lead to an authentication bypass...
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-8598)
A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to the way Microsoft Edge handles objects in memory. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page...
Microsoft Edge Remote Code Execution (CVE-2017-8617)
A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to the way affected Microsoft Edge JavaScript scripting engine handles objects in memory. A remote attacker can exploit this vulnerability and execute arbitrary code in the context of the current user...
Adobe Flash Player Information Disclosure (APSB17-21: CVE-2017-3099)
An information disclosure vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Microsoft Internet Explorer Memory Corruption (CVE-2017-8594)
A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted we...
Microsoft Win32k Elevation of Privilege (CVE-2017-8577)
An elevation of privilege vulnerability exists in Windows. The vulnerability is due to an error in the way Microsoft Graphics Component fails to properly handle objects in memory. A remote attacker can exploit this issue by log on to the system and run a specially crafted application...
Adobe Flash Player Memory Corruption (APSB17-21: CVE-2017-3100)
A remote memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an out-of-bounds memory read while handling specially crafted SWF files. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted SWF file...
Microsoft Browser Security Feature Bypass (CVE-2017-8592)
An information disclosure vulnerability exists in Microsoft Browsers. The vulnerability is due to improper implementation of the mixed content warning security feature. A remote attacker can exploit this issue by enticing a user to open a specially crafted web-page with an affected version of...
Microsoft Graphics Component Information Disclosure (CVE-2017-0283)
An information disclosure vulnerability exists in Microsoft Graphics Component. The vulnerability is due to improper handling of objects in memory, allowing an attacker to retrieve information that could lead to an Address Space Layout Randomization ASLR bypass. An attacker could convince a user ...
Microsoft Windows Graphics Information Disclosure (CVE-2017-0288)
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system...
Apache Struts2 Struts1_Plugin Remote Code Execution (CVE-2017-9791)
A remote code execution vulnerability exists in the Apache Struts2 using Struts1 plugin. An attacker can leverage this vulnerability by sending a crafted HTTP request to a target system. Successful exploitation could result in execution of arbitrary code on the affected system...
HPE Intelligent Management Center dbman BackupZipFile Command Injection (CVE-2017-5820)
A command injection vulnerability exist in the dbman component of HPE Intelligent Management Center. The vulnerability is due to missing validation of user-provided parameters when handling BackupZipFile commands. A remote, unauthenticated attacker can exploit the vulnerability by sending a...
Schneider Electric U.motion Builder track_import_export.php SQL Injection (CVE-2017-7973)
An SQL injection vulnerability exists in Schneider Electric U.motion Builder. The vulnerability is due to insufficient validation of the objectid HTTP parameter of the trackimportexport.php request. A remote, unauthenticated user can exploit this vulnerability by sending a crafted HTTP request to...
GnuTLS status_request Extension Null Pointer Dereference (CVE-2017-7507)
A denial of service vulnerability exists in the GnuTLS library. The vulnerability is due to improper parsing of certain values in the statusrequest extension. A remote attacker can exploit this vulnerability by sending a crafted Client Hello to the target server...
WordPress Statistics Cross Site Scripting
A XSS injection vulnerability exists in WordPress Statistics Plugin. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary commands on the affected system...
GoAutoDial 3.3 Authentication Bypass Command Injection (CVE-2015-2843; CVE-2015-2844; CVE-2015-2845)
An SQL injection vulnerability has been reported in GoAutoDial version 3.3. The vulnerability is due to improper validation of the user input. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to the target server...
WordPress Statistics Plugin SQL Injection
An SQL injection vulnerability has been reported in WordPress Statistics Plugin. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Suspicious URL Padding Evasion Technique
Certain phishing campaigns use malicious URLs containing popular website names to hide intent...
Cisco Prime Infrastructure and EPNM DashboardRenderer XML External Entity Injection (CVE-2017-6662)
A directory traversal vulnerability exists in Oracle Fusion Middleware MapViewer. The vulnerability is due to a lack of proper input sanitization on multipart form-data requests in FileUploaderServlet. A remote attacker can exploit this vulnerability by sending a maliciously crafted HTTP request...
Trend Micro IWSVA DeploymentWizardAction GetClusterInfo Command Injection
A command injection vulnerability exists in Trend Micro InterScan Web Security Virtual Appliance IWSVA. The vulnerability is due to improper validation of the HTTP request parameters in the GetClusterInfo method of the DeploymentWizardAction class. A remote, authenticated attacker can exploit thi...
Samba Symlink Unauthorized File Access (CVE-2017-2619)
There exists a race condition vulnerability in Samba Symlink. This vulnerability is due to the way Symlink handles file access requests. A successful attack could lead to a file leak...
HPE Intelligent Management Center dbman RestoreZipFile Command Injection (CVE-2017-5821)
A command injection vulnerability exists in the dbman component of HPE Intelligent Management Center. The vulnerability is due to missing validation of user-provided parameters when handling RestoreZipFile commands. A remote, unauthenticated attacker can exploit the vulnerability by sending a...
Petya Ransomware Lateral Movement Remote Code Execution
Petya is a malware that infects Windows computers, encrypting files and demanding ransom to decrypt the files. Once a network is infected the malware propagates laterally to further infect devices on the network...
HPE Intelligent Management Center dbman RestartDB Command Injection (CVE-2017-5816)
A command injection vulnerability exists in the dbman component of HPE Intelligent Management Center. The vulnerability is due to improper validation of the dbInstance parameter when handling RestartDB commands. A remote, unauthenticated attacker can exploit the vulnerability by sending a...
Schneider Electric U.motion Builder runscript.php Directory Traversal (CVE-2017-7974)
A directory traversal vulnerability has been reported in Schneider Electric U.motion Builder. This vulnerability is caused by a lack of input validation, and access control to the runscript.php script. A remote, unauthenticated attacker could exploit this vulnerability by sending a malicious...
Trend Micro SafeSync for Enterprise license Command Injection
A command injection vulnerability exists in Trend Micro's SafeSync for Enterprise. The vulnerability is due to insufficient validation of the user-supplied parameter sent to the license end point. A remote, authenticated attacker could exploit this vulnerability by sending a crafted input to the...
Suspicious URL Containing Multiple Top Level Domains
Many scam websites attempt to look like regular websites in order to steal information. One technique is to have multiple top level domains in the URL in order to confuse the user. A successful attack can lead to stolen information...
Microsoft Malware Protection Engine VFS API Remote Code Execution (CVE-2017-8558)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to arbitrary code execution...
Good Man Exploit Kits Traffic Distribution System
Good Man Traffic Distribution System TDS operates by silently redirecting the victim to a malicious web page, leading to infection by an exploit kit. Successful infection will allow the attacker to download additional malware to the target...