47153 matches found
Acuity CMS 2.6.x <= Arbitrary File Upload
OVERVIEW Acuity CMS 2.6.x ASP-based versions are vulnerable to Arbitrary File Upload. 2. BACKGROUND Acuity CMS is a powerful but simple, extremely easy to use, low priced, easy to deploy content management system. It is a leader in its price and feature class. 3. VULNERABILITY DESCRIPTION Acuity...
NGS00106 Technical Advisory: Increased exploitation of Oracle GlassFish Server Administration Console Remote Authentication Bypass Vulnerability
======= Summary ======= Name: Increased exploitation of Oracle GlassFish Server Administration Console Remote Authentication Bypass Vulnerability Release Date: 5 January 2012 Reference: NGS00106 Discoverer: David Spencer [email protected] Vendor: Oracle Vendor Reference: Systems Affecte...
0A29-11-4 : Privilege escalation vulnerabilities in Nagios XI installer < 2011R1.9
================ Privilege escalation vulnerabilities in Nagios XI installer 2011R1.9 Author: 0a29406d9794e4f9b30b3c5d6702c708 twitter.com/0a29 - 0a29.blogspot.com - GMail 0a2940 ================ Description: ================ Multiple privilege escalations exist within Nagios XI installer. Tested...
[DSECRG-11-031] SAP RFC EPS_DELETE_FILE - Authorisation bypass, smbrelay
DSECRG-11-031 SAP RFC EPSDELETEFILE - Authorisation bypass, smbrelay Security vulnerability was founded in sap EPSDELETEFILE RFC function allows attacker to delete files remotely or steal hashes of SAP server account in windows environment using SMBRelay attack. Digital Security Research Group...
APPLE-SA-2011-10-12-3 OS X Lion v10.7.2 and Security Update 2011-006
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-10-12-3 OS X Lion v10.7.2 and Security Update 2011-006 OS X Lion v10.7.2 and Security Update 2011-006 is now available and addresses the following: Apache Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7 and...
Dow Group (dynamic.php?id) (sub.php?solutioncat_id) (news_desc.php?id) (product.php?id) Remote SQL injection Vulnerability
IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Dow Group dynamic.php?id sub.php?solutioncatid newsdesc.php?id product.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.dowgroup.com/ Persian Gulf 4 Ever! Dork :...
Mozilla Foundation Security Advisory 2011-16
Mozilla Foundation Security Advisory 2011-16 Title: Directory traversal in resource: protocol Impact: Moderate Announced: April 28, 2011 Reporter: Soroush Dalili Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.6.17 Firefox 3.5.19 Thunderbird 3.1.10 SeaMonkey 2.0.14 Description...
'Seo Panel' Cookie-Rendered Persistent XSS Vulnerability (CVE-2010-4331)
'Seo Panel' Cookie-Rendered Persistent XSS Vulnerability CVE-2010-4331 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in 'Seo Panel' page rendering which allows for unfiltered, unencrypted content to be presented to a user...
Microsoft Security Bulletin MS10-061 - Critical Vulnerability in Print Spooler Service Could Allow Remote Code Execution (2347290)
Microsoft Security Bulletin MS10-061 - Critical Vulnerability in Print Spooler Service Could Allow Remote Code Execution 2347290 Published: September 14, 2010 Version: 1.0 General Information Executive Summary This security update resolves a publicly disclosed vulnerability in the Print Spooler...
Mozilla Foundation Security Advisory 2010-32
Mozilla Foundation Security Advisory 2010-32 Title: Content-Disposition: attachment ignored if Content-Type: multipart also present Impact: Moderate Announced: June 22, 2010 Reporter: Ilja van Sprundel Products: Firefox, SeaMonkey Fixed in: Firefox 3.6.4 Firefox 3.5.10 SeaMonkey 2.0.5 Description...
Hijacking Opera's Native Page using malicious RSS payloads
Hijacking Opera's Native Page using malicious RSS payloads ---------------------------------------------------------------------------- --------- For complete post with images, please visit - http://securethoughts.com/2009/10/hijacking-operas-native-page-using-malicio us-rss-payloads/ Well, this...
[oCERT-2009-007] FCKeditor input sanitization errors
2009-007 FCKeditor input sanitization errors Description: FCKeditor, a web based open source HTML text editor, suffers from a remote file upload vulnerability. The input of several connector modules is not properly verified before being used, this leads to exposure of the contents of arbitrary...
[Full-disclosure] [SVRT-06-08] MULTI SECURITY VULNERABILITIES IN MVNFORUM
MULTI SECURITY VULNERABILITIES IN MVNFORUM 1. General Information mvnForum is software used for creating forums on the Internet http://www.mvnforum.com. This is an open source software making use of Java J2EE ISP/Servlet technology. On September 6 2008, SVRT-Bkis found several CSRF and XSS...
Mozilla Foundation Security Advisory 2008-34
Mozilla Foundation Security Advisory 2008-34 Title: Remote code execution by overflowing CSS reference counter Impact: Critical Announced: July 15, 2008 Reporter: TippingPoint Zero Day Initiative Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.0.1 Firefox 2.0.0.16 Thunderbird 2.0.0....
SMEweb 1.4b (SQL/XSS) Multiple Remote Vulnerabilities
======================================================= SMEweb 1.4b SQL/XSS Multiple Remote Vulnerabilities ======================================================= ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...
Multiple vulnerabilities in Double-Take 5.0.0.2865
Luigi Auriemma Application: Double-Take http://www.doubletake.com Versions: = 5.0.0.2865 version 4.5.x tested with success too Platforms: Windows Bugs: A server termination through "vectorT too long" exception B NULL pointer crash C termination through memory allocation D informations disclosure ...
WebED-0.8999 Multiple Remote File Inclusion Vulnerability
--------------------------------------------------------------- Multiple Remote File Inclusion Vulnerability --------------------------------------------------------------- Founded by : Seph1roth Download Script: http://sourceforge.net/projects/ed-engine/ WebED-0.8999.tar.gz Exploit:...
iDefense Security Advisory 07.11.07: SquirrelMail G/PGP Plugin gpg_check_sign_pgp_mime() Command Injection Vulnerability
SquirrelMail G/PGP Plugin gpgchecksignpgpmime Command Injection Vulnerability iDefense Security Advisory 07.11.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jul 11, 2007 I. BACKGROUND The SquirrelMail G/PGP Encrpytion Plugin is a general purpose encryption, decryption, and digital...
iWare Pro <= 5.0.4 (chat_panel.php) Remote Code Execution Vulnerability
+------------------------------------------------------------------------------------------- + iWare Pro = 5.0.4 chatpanel.php Remote Code Execution Vulnerability +------------------------------------------------------------------------------------------- + Affected Software .: iWare Professional...
Simple Machines Forum (SMF) XSS issue
title: Simple Machines Forum SMF XSS issue author: Jose Carlos Norte discovered by: Jose Carlos Norte 1. introduction Simple machines forum is a popular scalable free bulletin board system written in php over mysql database, the url of the project: http://www.simplemachines.org/ 2. XSS problem SM...
bug com_madeira
lintah|adv|02@2006=========mambo-commadeira===php injek by : iFX a.k.a inversFX [email protected] [email protected] [email protected] ------------------------------- locate : Indonesia, Jakarta -------------------------------- date : 21/09/2006 -------------------------------- title : php backdoo...
[Full-disclosure] [SECURITY] [DSA 1104-1] New OpenOffice.org packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1104-1 [email protected] http://www.debian.org/security/ Martin Schulze June 30th, 2006 http://www.debian.org/security/faq -...
ashnews v0.83(pathtoashnews) - Remote File Include Vulnerabilities
DEVIL TEAM THE BEST POLISH TEAM ashnews v0.83pathtoashnews - Remote File Include Vulnerabilities Script site: http://dev.ashwebstudio.com/ dork: News powered by ashnews Find by Kacper Rahim. Greetings; DragonHeart, Satan, Leito, Leon, Luzak, Adam, DeathSpeed, Drzewko, pepi Special greetz...
[SA15842] CSV_DB / i_DB Arbitrary Command Execution Vulnerability
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...
[Full-Disclosure] EEYE: RealSecure/BlackICE Server Message Block (SMB) Processing Overflow
RealSecure/BlackICE Server Message Block SMB Processing Overflow Release Date: February 26, 2004 Date Reported: February 18, 2004 Severity: High Remote Code Execution Vendor: Internet Security Systems Software Affected: RealSecure Network 7.0, XPU 20.15 through 22.9 Real Secure Server Sensor 7.0...
Security Advisory YYYY-NNN
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2000-014 ================================= Topic: Global-3.55 allows world-wide executable cgi. Version: any before 4.01 Severity: permits remote execution of arbitrary shell commands Abstract ======== When using the CGI interface of the...
Jenkins 1.626 - Cross Site Request Forgery / Code Execution
Title: Jenkins 1.626 - Cross Site Request Forgery / Code Execution Date: 27.08.15 Affected versions: = 1.626 current Vendor: jenkins-ci.org Contact: smash at devilteam.pl Cross site request forgery vulnerability in Jenkins 1.626 allows remote attackers to hjiack the authentication of users for mo...
APPLE-SA-2015-10-21-8 OS X Server 5.0.15
APPLE-SA-2015-10-21-8 OS X Server 5.0.15 OS X Server 5.0.15 is now available and addresses the following: BIND Available for: OS X Yosemite 10.10.5, OS X El Capitan 10.11.1 or later Impact: Multiple vulnerabilities in BIND Description: Multiple vulnerabilities existed in BIND versions prior to...
[Onapsis Security Advisory 2014-034] SAP Business Objects Search Token Privilege Escalation via CORBA
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory ONAPSIS-2014-034: SAP Business Objects Search Token Privilege Escalation via CORBA 1. Impact on Business ===================== By exploiting this vulnerability a remote and potentially unauthenticated attacker would be able t...
Re: [oss-security] CVE-2014-6271: remote code execution through bash
On Wed, Sep 24, 2014 at 04:05:51PM +0200, Florian Weimer wrote: Stephane Chazelas discovered a vulnerability in bash, related to how environment variables are processed: trailing code in function definitions was executed, independent of the variable name. In many common configurations, this...
Multiple Vulnerabilities with Aztech Modem Routers
PRODUCT DESCRIPTION The Aztech ADSL family of modems/routes are shipped to residential and SOHO users that desires speed from 150-300mbps rate. This modem/router also supports IEEE802.11b/g/n as a Wireless LAN Access point. The vulnerable model numbers are: DSL5018EN 1T1R Shipped with Globe Telec...
[security bulletin] HPSBMU03028 rev.1 - HP Matrix Operating Environment and CloudSystem Matrix Software Components running OpenSSL, Remote Disclosure of Information
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04268239 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04268239 Version: 1 HPSBMU03028 rev....
[SECURITY] [DSA 2649-1] lighttpd security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2649-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 15, 2013 http://www.debian.org/security/faq -...
Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities
Title: ====== Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities Date: ===== 2012-09-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=700 VL-ID: ===== 700 Common Vulnerability Scoring System: ==================================== 4.1 Introduction: =============...
The history of a -probably- 13 years old Oracle bug: TNS Poison
tl;dr - Patch your database ASAP with Oracle Critical Patch Update April 2012. Introduction ------------ The following advisory explains a vulnerability I found in 2008 in all versions of Oracle Database server until very recently. The bug is probably available in any Oracle Database version sinc...
Flatnux CMS 2011 08.09.2 - Multiple Web Vulnerabilities
Title: ====== Flatnux CMS 2011 08.09.2 - Multiple Web Vulnerabilities Date: ===== 2012-04-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=487 VL-ID: ===== 487 Introduction: ============= Flatnux is no database CMS for accessible websites, corporate websites, e-commer...
Lighttpd Proof of Concept code for CVE-2011-4362
29 of November 2011 was the date of public disclosure interesting vulnerability in lighttpd server. Xi Wang discovered that modauth for this server does not propely decode characters from the extended ASCII table. The vulnerable code is below: "src/httpauth.c:67" --- CUT --- static const short...
Java HotSpot Cryptographic Provider signature verification vulnerability
An attacker can add a cryptographic provider containing cipher implementation signed by an untrusted certificate. The attacker can also create his or her own jurisdiction policy files signed by an untrusted certificate. In order to achieve this, the attacker must first of all add a fake...
ZDI-11-191: Oracle Java ICC Screening Tag Parsing Remote Code Execution Vulnerability
ZDI-11-191: Oracle Java ICC Screening Tag Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-191 June 8, 2011 -- CVE ID: CVE-2011-0862 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Oracle -- Affected Products: Oracle Java Runtime --...
HTB22920: Path disclosure in Viscacha
Vulnerability ID: HTB22920 Reference: http://www.htbridge.ch/advisory/pathdisclosureinviscacha.html Product: Viscacha Vendor: MaMo Net http://www.viscacha.org Vulnerable Version: 0.8.1 Vendor Notification: 24 March 2011 Vulnerability Type: Path disclosure Risk level: Low Credit: High-Tech Bridge ...
PHP 5.3.5 grapheme_extract() NULL Pointer Dereference
PHP 5.3.5 graphemeextract NULL Pointer Dereference Author: Maksymilian Arciemowicz http://securityreason.com/ http://cxib.net/ Date: - Dis.: 09.12.2010 - Pub.: 17.02.2011 CVE: CVE-2011-0420 CERT: VU210829 Affected Software: - PHP 5.3.5 Fixed: SVN Original URL:...
ZDI-11-043: Microsoft Excel 2007 Office Drawing Layer Remote Code Execution Vulnerability
ZDI-11-043: Microsoft Excel 2007 Office Drawing Layer Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-043 February 7, 2011 - This vulnerability is being disclosed publicly without a patch in accordance with the ZDI 180 day deadline. To view mitigations for...
[SECURITY] CVE-2011-0534 Apache Tomcat DoS vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2011-0534 Apache Tomcat DoS vulnerability Severity: Important Vendor: The Apache Software Foundation Versions Affected: - - Tomcat 7.0.0 to 7.0.6 - - Tomcat 6.0.0 to 6.0.30 Description: Tomcat did not enforce the maxHttpHeaderSize limit while...
nSense-2010-003: Cisco Unified Communications Manager
nSense Vulnerability Research Security Advisory NSENSE-2010-003 --------------------------------------------------------------- Affected Vendor: Cisco Systems, Inc Affected Product: Cisco Unified Communications Manager Platform: All Impact: Privilege Escalation Vendor response: Patch. IntelliShie...
[SECURITY] [DSA 2121-1] New TYPO3 packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2121-1 [email protected] http://www.debian.org/security/ Florian Weimer October 19, 2010 http://www.debian.org/security/faq -...
Mozilla Foundation Security Advisory 2010-33
Mozilla Foundation Security Advisory 2010-33 Title: User tracking across sites using Math.random Impact: Low Announced: June 22, 2010 Reporter: Amit Klein Products: Firefox, SeaMonkey Fixed in: Firefox 3.6.4 Firefox 3.5.10 SeaMonkey 2.0.5 Description Security researcher Amit Klein reported that i...
Knowledgeroot (fckeditor) Remote Arbitrary File Upload Exploit
-= Description =- A security issue has been discovered in Knowledgeroot, which can be exploited by malicious people to bypass certain security restrictions. Access to the enabled FCKeditor component is not properly restricted, which can be exploited to e.g upload files of certain types. The...
[USN-824-1] PHP vulnerability
=========================================================== Ubuntu Security Notice USN-824-1 August 24, 2009 php5 vulnerability CVE-2009-2687 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 8.04 LTS Ubuntu...
iPhone Safari phone-auto-dial vulnerability (original date: Nov. 2008)
Released since Apple published the iPhone 3.0 security fixes. Vulnerability Report --- BEGIN ADVISORY --- Manufacturer: Apple www.apple.com Device: iPhone 3G iPhone 1st Gen Firmware: 2.1 possible earlier versions Device Type: smart phone Subsystems: Safari and mobile telephony...
[security bulletin] HPSBMA02406 SSRT080100 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01661610 Version: 1 HPSBMA02406 SSRT080100 rev.1 - HP OpenView Network Node Manager OV NNM, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted up...