Lucene search
K
SecurityvulnsMost viewed

47153 matches found

securityvulns
securityvulns
added 2001/11/30 12:0 a.m.106 views

Advisory CA-2001-33 Multiple Vulnerabilities in WU-FTPD

CERT Advisory CA-2001-33 Multiple Vulnerabilities in WU-FTPD Original release date: November 29, 2001 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Systems running WU-FTPD and its derivatives Overview WU-FTPD is a widely deploy...

10CVSS0.2AI score0.74762EPSS
Exploits4
securityvulns
securityvulns
added 2000/12/02 12:0 a.m.106 views

All, After reading a report on security focus that deals with the sonicwall soho versions 4.0 and 5.0 being vulnerable to a buffer overflow by using a alot of characters in the username...I started testing againg our Sonicwall Pro and Pro VX in the lab. Entering this for the username -...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2000/10/26 12:0 a.m.106 views

Ntop -w remote exploit

Problem: ntop has a stack-based BOF when it's requested too long filename. 2. Tested Version ntop-1.2a1 I only tested this version. 3. Example 1. first run ntop -w 8080 2. run this script $ printf "GET /perl -e 'print "A"x240'rnrn" |nc localhost 8080 3. the ntop goes seg. fault. $ ntop -w 8080...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2000/10/19 12:0 a.m.106 views

SuSE Security Announcement: ypbind/ypclient (SuSE-SA:2000:042)

-----BEGIN PGP SIGNED MESSAGE----- SuSE Security Announcement Package: ypbind/ypclient Announcement-ID: SuSE-SA:2000:042 Date: Wednesday, October 18th, 2000 19:15 MEST Affected SuSE versions: 6.0, 6.1, 6.2, 6.3, 6.4, 7.0 Vulnerability Type: possible remote root compromise Severity 1-10: 8 SuSE...

8AI score
Exploits0
securityvulns
securityvulns
added 2015/10/26 12:0 a.m.105 views

[REVIVE-SA-2015-001] Revive Adserver - Multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ======================================================================== Revive Adserver Security Advisory REVIVE-SA-2015-001 ========================================================================...

7.5CVSS6.2AI score0.0325EPSS
Exploits1
securityvulns
securityvulns
added 2015/10/25 12:0 a.m.105 views

Zhone ADSL2+ 4P Bridge & Router (Broadcom) - Multiple Vulnerabilities

Document Title: =============== Zhone ADSL2+ 4P Bridge & Router Broadcom - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1591 Download: http://www.zhone.com/support/downloads/cpe/6218-I2/6218-I2R030220AnnexA.zip Release Date:...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.105 views

[SECURITY] [DSA 3330-1] activemq security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3330-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 07, 2015 https://www.debian.org/security/faq -...

7.5CVSS2.3AI score0.12794EPSS
Exploits1
securityvulns
securityvulns
added 2015/05/11 12:0 a.m.105 views

[ MDVSA-2015:216 ] ntop

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:216 http://www.mandriva.com/en/support/security/ Package : ntop Date : April 29, 2015 Affected: Business Server 1.0 Problem Description: Updated ntop package fixes security vulnerability: Lack of filtering i...

4.3CVSS6.3AI score0.02094EPSS
Exploits1
securityvulns
securityvulns
added 2015/05/05 12:0 a.m.105 views

Incorrect handling of self signed certificates in OpenFire XMPP Server

Incorrect handling of self signed certificates in OpenFire XMPP Server Affected software: OpenFire XMPP server Affected versions: 3.9.3 and earlier Vulnerabilities addressed: CVE-2014-3451, CVE-2015-2080 Openfire is a real time collaboration RTC server licensed under the Open Source Apache Licens...

5CVSS0.74881EPSS
Exploits16
securityvulns
securityvulns
added 2015/02/22 12:0 a.m.105 views

[RT-SA-2014-016] Directory Traversal and Arbitrary File Disclosure in hybris Commerce Software Suite

Advisory: Directory Traversal and Arbitrary File Disclosure in hybris Commerce Software Suite During a penetration test, RedTeam Pentesting discovered a Directory Traversal vulnerability in hybris Commerce software suite. This vulnerability allows attackers to download arbitrary files of any size...

5CVSS7.4AI score0.04083EPSS
Exploits3
securityvulns
securityvulns
added 2015/02/22 12:0 a.m.105 views

UNIT4 Prosoft HRMS XSS Vulnerability

Vulnerability type: Cross-site Scripting Vendor: http://www.unit4.com/ Product: UNIT4 Prosoft HRMS Product site: http://www.unit4apac.com/products/prosofthrms Affected version: 8.14.230.47 Fixed version: 8.14.330.43 Credit: Jerold Hoong & Edric Teo PROOF OF CONCEPT The login page of UNIT4's Proso...

Exploits0
securityvulns
securityvulns
added 2014/12/01 12:0 a.m.105 views

CVE-2014-8731 - RCE in phpMemcachedAdmin <=1.2.2

CVE-2014-8731 CVSSv2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:U/RC:C CVSSv2 Base Score=10.0 CVSSv2 Temp Score=9.5 OWASP Top 10 classification: A1 - Injection PHPMemcachedAdmin is a web-based frontend for Linux's memcached Daemon. Project Homepage: https://code.google.com/p/phpmemcacheadmin/...

10CVSS1.7AI score0.11763EPSS
Exploits1
securityvulns
securityvulns
added 2014/10/18 12:0 a.m.105 views

APPLE-SA-2014-10-16-3 OS X Server v4.0

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-10-16-3 OS X Server v4.0 OS X Server v4.0 is now available and addresses the following: BIND Available for: OS X Yosemite v10.10 or later Impact: Multiple vulnerabilities in BIND, the most serious of which may lead to a denial of service...

7.8CVSS0.3AI score0.99999EPSS
Exploits17
securityvulns
securityvulns
added 2014/08/04 12:0 a.m.105 views

APPLE-SA-2014-06-30-1 Safari 6.1.5 and Safari 7.0.5

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-06-30-1 Safari 6.1.5 and Safari 7.0.5 Safari 6.1.5 and Safari 7.0.5 are now available and address the following: WebKit Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.3 Impact...

6.8CVSS0.5AI score0.02661EPSS
Exploits0
securityvulns
securityvulns
added 2014/05/04 12:0 a.m.105 views

Cross-Site Scripting (XSS) in CMSimple

Advisory ID: HTB23205 Product: CMSimple Vendor: Preben Bjorn Biermann Madsen Vulnerable Versions: 3.54 and probably prior Tested Version: 3.54 Advisory Publication: February 26, 2014 without technical details Vendor Notification: February 26, 2014 Vendor Patch: February 26, 2014 Public Disclosure...

4.3CVSS6.5AI score0.01193EPSS
Exploits3
securityvulns
securityvulns
added 2014/04/07 12:0 a.m.105 views

HP Integrated Lights-Out unauthorized access

Information leakage of password...

7.8CVSS2.5AI score0.81802EPSS
Exploits2References1Affected Software1
securityvulns
securityvulns
added 2014/03/24 12:0 a.m.105 views

[SECURITY] [DSA 2877-1] lighttpd security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2877-1 [email protected] http://www.debian.org/security/ Michael Gilbert March 12, 2014 http://www.debian.org/security/faq -...

7.5CVSS2.5AI score0.61665EPSS
Exploits4
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.105 views

ESA-2013-057: RSA Archer(r) GRC Multiple Vulnerabilities

ESA-2013-057.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-057: RSA Archer® GRC Multiple Vulnerabilities EMC Identifier: ESA-2013-057 CVE Identifier: CVE-2013-3276, CVE-2013-3277 Severity Rating: CVSS v2 Base Score: See below for individual scores Affected Products: RSA Archer versio...

6CVSS0.3AI score0.01057EPSS
Exploits0
securityvulns
securityvulns
added 2013/08/12 12:0 a.m.105 views

[SECURITY] [DSA 2732-1] chromium-browser security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2732-1 [email protected] http://www.debian.org/security/ Michael Gilbert July 31, 2013 http://www.debian.org/security/faq -...

7.5CVSS0.3AI score0.02493EPSS
Exploits5
securityvulns
securityvulns
added 2013/07/15 12:0 a.m.105 views

MiniUPnPd information leakage

Memory content leakage in SSDP reply...

1.7AI score0.02335EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
added 2013/07/15 12:0 a.m.105 views

ESA-2013-039: RSA BSAFE® SSL-J Multiple Vulnerabilities

ESA-2013-039.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-039: RSA BSAFE® SSL-J Multiple Vulnerabilities EMC Identifier: ESA-2013-039 CVE Identifier: CVE-2011-3389, CVE-2013-0169 Severity Rating: CVSS v2 Base Score: Refer NVD http://nvd.nist.gov/ for individual scores for each CVE...

4.3CVSS0.2AI score0.73327EPSS
Exploits4
securityvulns
securityvulns
added 2013/05/04 12:0 a.m.105 views

nginx integer overflow

Integer overflow leads to code execution...

4.3AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2013/03/11 12:0 a.m.105 views

[security bulletin] HPSBGN02854 SSRT100881 rev.1 - HP Intelligent Management Center (iMC), iMC TACACS+ Authentication Manager (TAM), and iMC User Access Manager (UAM), Cross Site Scripting (XSS), Remote Code Execution,

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03689276 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03689276 Version: 1 HPSBGN02854...

10CVSS0.6AI score0.63744EPSS
Exploits15
securityvulns
securityvulns
added 2013/02/18 12:0 a.m.105 views

[USN-1723-1] Qt vulnerabilities

========================================================================== Ubuntu Security Notice USN-1723-1 February 14, 2013 qt4-x11 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: ...

4.3CVSS0.1AI score0.01939EPSS
Exploits0
securityvulns
securityvulns
added 2012/08/27 12:0 a.m.105 views

[USN-1542-1] PostgreSQL vulnerabilities

========================================================================== Ubuntu Security Notice USN-1542-1 August 21, 2012 postgresql-8.3, postgresql-8.4, postgresql-9.1 vulnerabilities ========================================================================== A security issue affects these...

4.9CVSS0.03297EPSS
Exploits2
securityvulns
securityvulns
added 2012/06/03 12:0 a.m.105 views

CVE-2012-2216 - Social Engine Multiples Vulnerabilities (XSS and CSRF)

Social Engine 4.2.2 Multiples Vulnerabilities Earlier versions are also possibly vulnerable. INFORMATION Product: Social Engine 4.2.2 Remote-Exploit: yes Vendor-URL: http://www.socialengine.net/ Discovered by: Tiago Natel de Moura aka "i4k" Discovered at: 10/04/2012 CVE Notified: 10/04/2012 CVE...

0.7AI score
Exploits5
securityvulns
securityvulns
added 2012/05/01 12:0 a.m.105 views

[ MDVSA-2012:065 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:065 http://www.mandriva.com/security/ Package : php Date : April 27, 2012 Affected: 2010.1, 2011. Problem Description: Multiple vulnerabilities has been identified and fixed in php: The PDORow implementation...

7.5CVSS10AI score0.83911EPSS
Exploits21
securityvulns
securityvulns
added 2012/03/19 12:0 a.m.105 views

CJWSoft ASPGuest GuestBook 'edit.asp' - SQL Injection Vulnerability

Title: CJWSoft ASPGuest GuestBook 'edit.asp' - SQL Injection Vulnerability Product : CJWSoft ASPGuest GuestBook Version : Free Version Vendor: http://www.cjwsoft.com/aspguest/default.asp Class: Input Validation Error CVE: Remote: Yes Local: No Published: 2012-02-24 Updated: Impact : Medium CVSSv2...

1.2AI score
Exploits0
securityvulns
securityvulns
added 2011/08/17 12:0 a.m.105 views

[SECURITY] CVE-2011-2729: Commons Daemon fails to drop capabilities (Apache Tomcat)

CVE-2011-2729: Commons Daemon fails to drop capabilities Apache Tomcat Severity: Important Vendor: The Apache Software Foundation Versions Affected: Tomcat 7.0.0 to 7.0.19 Tomcat 6.0.30 to 6.0.32 Tomcat 5.5.32 to 5.5.33 Description: Due to a bug in the capabilities code, jsvc the service wrapper...

5CVSS1.8AI score0.07243EPSS
Exploits0
securityvulns
securityvulns
added 2011/08/01 12:0 a.m.105 views

Web Fusion Nepal (find.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Web Fusion Nepal find.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://webfusion.com.np/ Persian Gulf 4 Ever! Dork : "Powered by: Web Fusion Nepal" "inurl:find.php?id="...

2.9AI score
Exploits0
securityvulns
securityvulns
added 2011/07/22 12:0 a.m.105 views

Microsoft Internet Explorer 'toStaticHTML' HTML Sanitizing Information Disclosure

Name: Microsoft Internet Explorer 'toStaticHTML' HTML Sanitizing Information Disclosure Vulnerability Author: Adi Cohen of IBM Rational Application Security [email protected] Date: June 14, 2011 Risk: Medium CVE: CVE-2011-1252 Introduction ------------- The JavaScript function toStaticHTML, which i...

4.3CVSS5.8AI score0.13973EPSS
Exploits3
securityvulns
securityvulns
added 2011/04/11 12:0 a.m.105 views

LFI Vulnerability in 024cms Admin Control Panel v1.1.0 Beta (Complete-Modules Package)

============================================================================================================= 1024cms Admin Control Panel v1.1.0 Beta Complete-Modules Package - Local File Include Vulnerability...

1AI score
Exploits0
securityvulns
securityvulns
added 2011/02/08 12:0 a.m.105 views

HTB22819: XSS vulnerability in WebAsyst Shop-Script

Vulnerability ID: HTB22819 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinwebasystshopscript1.html Product: WebAsyst Shop-Script Vendor: WebAsyst, LLC http://www.shop-script.ru/ Vulnerable Version: Current version 2011.01.23 shop-script.ru/demo/ Vendor Notification: 25 January 2011...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2010/11/28 12:0 a.m.105 views

[eVuln.com] URL XSS in Easy Banner Free

New eVuln Advisory: URL XSS in Easy Banner Free Summary: http://evuln.com/vulns/148/summary.html Details: http://evuln.com/vulns/148/description.html -----------Summary----------- eVuln ID: EV0148 Software: Easy Banner Free Vendor: PHP Web Scripts Version: 2009.05.18 Critical Level: low Type: Cro...

6.1AI score
Exploits0
securityvulns
securityvulns
added 2010/09/14 12:0 a.m.105 views

About the security content of Safari 5.0.2 and Safari 4.1.2

About the security content of Safari 5.0.2 and Safari 4.1.2 Last Modified: September 07, 2010 Article: HT4333 Email this article Print this page Summary This document describes the security content of Safari 5.0.2 and Safari 4.1.2. For the protection of our customers, Apple does not disclose,...

9.3CVSS0.6AI score0.61319EPSS
Exploits13
securityvulns
securityvulns
added 2010/09/11 12:0 a.m.105 views

SQL Injection and XSS vulnerabilities in CubeCart version 4.3.3

We are continuing with the list of security vulnerabilities found in a number of web applications while testing our latest version of Acunetix WVS v7 . In this blog post, we will look into the details of a number of security problems discovered by Acunetix WVS in CubeCart. "CubeCart is a fully...

Exploits0
securityvulns
securityvulns
added 2010/06/09 12:0 a.m.105 views

VUPEN Security Research - Microsoft Office Excel EDG Heap Overflow Vulnerability (CVE-2010-1250)

VUPEN Security Research - Microsoft Office Excel EDG Heap Overflow Vulnerability CVE-2010-1250 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Office Excel is a powerful tool you can use to create and format spreadsheets, and analyze and share information ...

9.3CVSS7.6AI score0.23843EPSS
Exploits0
securityvulns
securityvulns
added 2010/05/11 12:0 a.m.105 views

Microsoft Security Bulletin MS10-031 - Critical Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution (978213)

Microsoft Security Bulletin MS10-031 - Critical Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution 978213 Published: May 11, 2010 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Microsof...

9.3CVSS0.5AI score0.22364EPSS
Exploits1
securityvulns
securityvulns
added 2010/04/09 12:0 a.m.105 views

Joomla com_jashowcase Local File Inclusion Vulnerability

======================================================== Joomla comjashowcase Local File Inclusion Vulnerability ======================================================== + Joomla comjashowcase Local File Inclusion Vulnerability...

1.5AI score
Exploits0
securityvulns
securityvulns
added 2010/04/06 12:0 a.m.105 views

ZDI-10-051: Sun Java Runtime RMIConnectionImpl Privileged Context Remote Code Execution Vulnerability

ZDI-10-051: Sun Java Runtime RMIConnectionImpl Privileged Context Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-051 April 5, 2010 -- CVE ID: CVE-2010-0094 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime --...

7.5CVSS1.2AI score0.81593EPSS
Exploits5
securityvulns
securityvulns
added 2010/04/05 12:0 a.m.105 views

PHP-fusion dsmsf (module downloads) SQL Inj3ct0r Exploit

======================================================== PHP-fusion dsmsf module downloads SQL Inj3ct0r Exploit ======================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' ...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2009/10/22 12:0 a.m.105 views

Everfocus EDR1600 remote authentication bypass

Product: Everfocus EDR1600 Version affected: all Website: http://www.everfocus.com/ Discovered By: Andrea Fabrizi Email: [email protected] Web: http://www.andreafabrizi.it Vuln: remote DVR authentication bypass The EDR1600 firmware don't handle correctly users authentication and sessions...

1.6AI score
Exploits0
securityvulns
securityvulns
added 2009/08/26 12:0 a.m.105 views

Oracle 11g (11.1.0.6) Password Policy and Compliance

Many security standards require the tracking of users' password history to prevent password re-use. In Oracle 11g 11.1.0.6, if a security administrator has enabled 11g passwords exclusively then tracking password history is broken. This can affect compliance. This was addressed by Oracle in their...

2.1CVSS0.01214EPSS
Exploits1
securityvulns
securityvulns
added 2009/08/07 12:0 a.m.105 views

iDefense Security Advisory 08.06.09: Microsoft Internet Explorer HTML TIME 'ondatasetcomplete' Use After Free Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 07.28.09 http://labs.idefense.com/intelligence/vulnerabilities/ Jul 28, 2009 I. BACKGROUND HTML+TIME HTML Timed Interactive Multimedia Extensionsis a web standard that was created for Microsoft Corp.'s Internet Explorer IE t...

9.3CVSS0.27472EPSS
Exploits1
securityvulns
securityvulns
added 2009/06/25 12:0 a.m.105 views

[USN-791-3] Smarty vulnerability

=========================================================== Ubuntu Security Notice USN-791-3 June 24, 2009 smarty vulnerability CVE-2009-1669 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 9.04 This advisory also applies ...

10CVSS1AI score0.14117EPSS
Exploits1
securityvulns
securityvulns
added 2009/05/19 12:0 a.m.105 views

[security bulletin] HPSBMA02417 SSRT090031 rev.1 - HP Data Protector Express and HP Data Protector Express Single Server Edition (SSE), Local Denial of Service (DoS), Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01697543 Version: 1 HPSBMA02417 SSRT090031 rev.1 - HP Data Protector Express and HP Data Protector Express Single Server Edition SSE, Local Denial of Service DoS, Execution of Arbitrary Code...

7.2CVSS1AI score0.51612EPSS
Exploits8
securityvulns
securityvulns
added 2009/02/16 12:0 a.m.105 views

[Full-disclosure] [SECURITY] [DSA 1725-1] New websvn packages fix information leak

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1725-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst February 15, 2009 http://www.debian.org/security/faq -...

3.5CVSS0.8AI score0.01599EPSS
Exploits1
securityvulns
securityvulns
added 2008/10/02 12:0 a.m.105 views

Remote File Inclusion Vulnerability

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- eFront = 3.5.1 / build 2710: Remote File Inclusion Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: eFront $ File affected: studentpage.php / professorpage $ Version: 3.5.1 / build 2710 $...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/09/30 12:0 a.m.105 views

Linksys/Cisco WRT350N 1.0.3.7 Insecure Samba Static Configuration

As of today 25 September 2008, I am using the latest 1.0.3.7 firmware for my region Singapore, US also use this version. 1/ Outdated Samba 3.0.2, vulnerable to numerous security holes. 2/ Default admin:admin user 3/ Default open guest user, noway to disable it 4/ It is impossible to disable SAMBA...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2008/08/19 12:0 a.m.105 views

SunShop <= 4.1.4 SQL Injection

GulfTech Security Research August 18, 2008 Vendor : Turnkey Web Tools, Inc URL : http://www.turnkeywebtools.com Version : SunShop = 4.1.4 Risk : SQL Injection Description: SunShop shopping cart is a full featured ecommerce solution written in php that allows for web masters to run their own onlin...

0.6AI score
Exploits0
Total number of security vulnerabilities5000