47153 matches found
[waraxe-2013-SA#098] - Directory Traversal Vulnerabilities in OpenCart 1.5.5.1
waraxe-2013-SA098 - Directory Traversal Vulnerabilities in OpenCart 1.5.5.1 =============================================================================== Author: Janek Vind "waraxe" Date: 19. March 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-98.html Description of vulnerabl...
[SECURITY] [DSA 2653-1] icinga security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2653-1 [email protected] http://www.debian.org/security/ Florian Weimer March 26, 2013 http://www.debian.org/security/faq -...
Arbitrary File Upload and Code Execution in Accusoft Prizm Content Connect
In the course of our security assessment consulting we often find 0day vulnerabilities and report them to vendors. In this particular case the vendor has unfortunately shown a general disregard for the security risk of this uncovered vulnerability which was originally disclosed privately to them ...
eFront Enterprise v3.6.11 - Multiple Web Vulnerabilities
Title: ====== eFront Enterprise v3.6.11 - Multiple Web Vulnerabilities Date: ===== 2012-08-06 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=668 VL-ID: ===== 668 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...
Internet Explorer Script Interjection Code Execution
Internet Explorer Script Interjection Code Execution Derek Soeder [email protected] Reported: January 26, 2012, to SecuriTeam Secure Disclosure http://www.beyondsecurity.com/ssd.html Published: August 16, 2012 AFFECTED VENDOR --------------- Microsoft Corporation AFFECTED ENVIRONMENTS...
NGS00162 Patch Notification: Symantec Message Filter Session Hijacking via session fixation
High Risk Vulnerability in Symantec Message Filter 2 July 2012 Ben Williams of NCC Group has discovered a High risk vulnerability in Symantec Message Filter Impact: Session Hijacking via session fixation Versions affected: Symantec Message Filter Version 6.3 An updated version of the software has...
[ MDVSA-2012:096-1 ] python
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:096-1 http://www.mandriva.com/security/ Package : python Date : July 2, 2012 Affected: Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in python: The ssl...
Mybb 1.6.8 'announcements.php' Sql Injection Vulnerabilitiy
a bug in Mybb 1.6.8 'announcements.php' that allows to us to occur a Sql Injection on a Remote machin. Exploit Title : Mybb 1.6.8 'announcements.php' Sql Injection Vulnerabilitiy Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link : http://www.mybb.com/ Security Risk...
[SE-2012-01] Regarding Oracle's Critical Patch Update for Java SE
Dear All, Yesterday, Oracle released its Critical Patch Update for Java SE software 1, which incorporates fixes for 3 of more than 20+ security issues that were reported to the company in Apr 2012 2. We would like to inform, that while some of the Proof of Concept codes we developed for the...
Aruba Networks multiple advisories: OS command injection in RAP web interface and 802.1X EAP-TLS user authentication bypass
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ADVISORY NUMBER 031912 Advisory 1: TITLE OS Command Injection Vulnerability in Aruba Remote Access Point Diagnostic Web Interface. SUMMARY An OS command injection vulnerability has been discovered in the Aruba Remote Access Point's Diagnostic Web...
Serendipity freetag plugin 'serendipity[tagview]' Cross-Site Scripting vulnerability
Advisory: Serendipity freetag plugin 'serendipitytagview' Cross-Site Scripting vulnerability Advisory ID: SSCHADV2011-016 Author: Stefan Schurtz Affected Software: Successfully tested on Serendipity 1.5.5 Vendor URL: http://www.s9y.org Vendor Status: fixed CVE-ID: - ==========================...
[USN-1126-1] PHP vulnerabilities
========================================================================== Ubuntu Security Notice USN-1126-1 April 29, 2011 php5 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...
Microsoft Security Bulletin MS10-089 - Important Vulnerabilities in Forefront Unified Access Gateway (UAG) Could Allow Elevation of Privilege (2316074)
Microsoft Security Bulletin MS10-089 - Important Vulnerabilities in Forefront Unified Access Gateway UAG Could Allow Elevation of Privilege 2316074 Published: November 09, 2010 Version: 1.0 General Information Executive Summary This security update resolves four privately reported vulnerabilities...
VUPEN Security Research - Microsoft Office Excel EDG Heap Overflow Vulnerability (CVE-2010-1250)
VUPEN Security Research - Microsoft Office Excel EDG Heap Overflow Vulnerability CVE-2010-1250 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Office Excel is a powerful tool you can use to create and format spreadsheets, and analyze and share information ...
Microsoft Security Bulletin MS10-041 - Important Vulnerability in Microsoft .NET Framework Could Allow Tampering (981343)
Microsoft Security Bulletin MS10-041 - Important Vulnerability in Microsoft .NET Framework Could Allow Tampering 981343 Published: June 08, 2010 Version: 1.0 General Information Executive Summary This security update resolves a publicly disclosed vulnerability in Microsoft .NET Framework. The...
FreeBSD jail escape
It's possible to access current working directory...
MKPortal Anekdot module XSS Vulnerability
========================================= MKPortal Anekdot module XSS Vulnerability ========================================= The largest Exploit Database in the world ! 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /'...
Zigurrat CMS SQL Injection Vulnerability
================= IUT-CERT ================= Title: Zigurrat CMS SQL Injection Vulnerability Vendor: www.farsi-cms.com Dork: Design by Tagfa Co Type: Input.Validation.Vulnerability SQL Injection Fix: N/A ================== nsec.ir ================= Description: ------------------ Zigurrat CMS is ...
Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances Advisory ID: cisco-sa-20100217-asa Revision 1.0 For Public Release 2010 February 17 1600 UTC GMT...
Microsoft Windows NT #GP Trap Handler Allows Users to Switch Kernel Stack
Microsoft Windows NT GP Trap Handler Allows Users to Switch Kernel Stack ------------------------------------------------------------------------- CVE-2010-0232 In order to support BIOS service routines in legacy 16bit applications, the Windows NT Kernel supports the concept of BIOS calls in the...
IdeaCMS v1.0 (fck) Remote Arbitrary File Upload
Securitylab.ir Application Info: Name: IdeaCMS Version: 1.0 Vulnerability Info: Type: Remote Arbitrary File Upload Risk: High Vulnerability: http://site.com/admin/fckeditor/editor/filemanager/connectors/asp/connector.asp Discoverd By: Pouya Daneshmand Website: http://securitylab.ir Contacts:...
HP curiosity and vulnerability
Before the vulnerability.. HP buys 3Com in mega $2.7 billion deal http://www.scmagazineus.com/HP-buys-3Com-in-mega-27-billion-deal/article/157601/ HP plans to buy 3Com $2.7b, which owns TippingPoint, which runs ZDI, which has a 1128-day vuln in HP products: http://bit.ly/2HEonE...
[ONSEC-09-011] UMI.CMS Multiple XSS
ONSEC-09-011 UMI.CMS Multiple XSS Цель: UMI CMS =2.7.3 Тип: Межсайтовый скриптинг Угроза: Средняя Дата обнаружения: 15.07.2009 Дата оповещения разработчика: 15.07.2009 Дата выхода исправления: 03.09.2009 Автор: Vladimir Vorontsov OnSec Russian Security Group onsec dot ru Описание: Уязвимые поля...
Oracle 11g (11.1.0.6) Password Policy and Compliance
Many security standards require the tracking of users' password history to prevent password re-use. In Oracle 11g 11.1.0.6, if a security administrator has enabled 11g passwords exclusively then tracking password history is broken. This can affect compliance. This was addressed by Oracle in their...
ZDI-09-050: Sun Java Web Start JPEG Header Parsing Integer Overflow Vulnerability
ZDI-09-050: Sun Java Web Start JPEG Header Parsing Integer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-050 August 5, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- Vulnerability Details: This vulnerability allows...
Mozilla Foundation Security Advisory 2009-43
Mozilla Foundation Security Advisory 2009-43 Title: Heap overflow in certificate regexp parsing Impact: Critical Announced: August 1, 2009 Reporter: Moxie Marlinspike Products: Firefox, Thunderbird, SeaMonkey, NSS Fixed in: Firefox 3.5 NSS 3.12.3 Description Moxie Marlinspike reported a heap...
DOMPDF Arbitrary File Read <= 0.5.1
================================= DOMPDF Arbitrary File Read = 0.5.1 ================================= Discovered by: Aung Khant, YGN Ethical Hacker Group, Myanmar http://yehg.net/ believe in full disclosure Advisory URL: http://yehg.net/lab/pr0js/view.php/Apache20Security20Bypass20Vul20DomPDF.pd...
User options changer (SQLi) EXPLOIT --Bigace CMS -stable release- 2.5-->
!/usr/bin/perl ----------------------------------------------------------------------------- User options changer SQLi EXPLOIT --Bigace CMS -stable release- 2.5-- ----------------------------------------------------------------------------- CMS INFORMATION: --WEB: http://www.bigace.de/ --DOWNLOAD...
[ MDVSA-2009:050-1 ] python-pycrypto
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:050-1 http://www.mandriva.com/security/ Package : python-pycrypto Date : February 23, 2009 Affected: 2009.0 Problem Description: A vulnerability have been discovered and corrected in PyCrypto ARC2 module...
[Full-disclosure] [SECURITY] [DSA 1725-1] New websvn packages fix information leak
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1725-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst February 15, 2009 http://www.debian.org/security/faq -...
New vulnerabilities in Power Phlogger
Здравствуйте 3APA3A! Сообщаю вам о найденных мною новых Insufficient Anti-automation, Abuse of Functionality и Information Leakage уязвимостях в Power Phlogger. Insufficient Anti-automation: На странице регистрации http://site/dspSignup.php нет защиты от автоматизированных запросов капчи. Abuse o...
DoS vulnerabilities in Mozilla, Internet Explorer, Google Chrome and Opera
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Denial of Service уязвимостях в браузерах Mozilla Firefox, Opera та Google Chrome. Данные уязвимости похожи на DoS в Firefox, Opera и Chrome http://websecurity.com.ua/2456/, которые я опубликовал в проекте День багов в браузерах. Данную атаку я...
SunShop <= 4.1.4 SQL Injection
GulfTech Security Research August 18, 2008 Vendor : Turnkey Web Tools, Inc URL : http://www.turnkeywebtools.com Version : SunShop = 4.1.4 Risk : SQL Injection Description: SunShop shopping cart is a full featured ecommerce solution written in php that allows for web masters to run their own onlin...
Apache Tomcat <= 6.0.18 UTF8 Directory Traversal Vulnerability
Title: Apache Tomcat Directory Traversal Vulnerability Author: Simon Ryeobar4mi at gmail.com, barami at ahnlab.com Severity: High Impact: Remote File Disclosure Vulnerable Version: prior to 6.0.18 Solution: - Best Choice: Upgrade to 6.0.18 http://tomcat.apache.org - Hot fix: Disable allowLinking ...
[SA29344] Linksys WRT54G Security Bypass Vulnerability
TITLE: Linksys WRT54G Security Bypass Vulnerability SECUNIA ADVISORY ID: SA29344 VERIFY ADVISORY: http://secunia.com/advisories/29344/ CRITICAL: Less critical IMPACT: Security Bypass WHERE: From local network OPERATING SYSTEM: Linksys WRT54G Wireless-G Broadband Router...
c-arbre <= Multiple Remote File Include Vulnerablitiy
c-arbre = Multiple Remote File Include Vulnerablitiy D.Script: http://fresh.t-systems-sfr.com/unix/src/www/c-arbre0.6PR7full.tar.gz Discovered by: MoHaNdKo-=-=- [email protected] Homepage: http://www.MoHaNdKo.cOm Exploit:Path/c-arbre/espaces/communiques/annotations.php?rootpath=Shell Greetz To:...
openMairie 1.11(/scr/soustab.php)Local File Inclusion Vulnerabilitiy
openMairie 1.11/scr/soustab.phpLocal File Inclusion Vulnerabilitiy D.Script: http://adullact.net/frs/download.php/1302/openmairieexemple1.11.zip Discovered by: GolDM = Mahmoodali Homepage: http://Www.Tryag.Com/cc Exploit:Path/scr/soustab.php?dsnphptype= Local File 00 Greetz To: Tryag.Com/cc &...
Microsoft Windows multiple GDI vulnerabilities
No description provided...
[ECHO_ADV_67$2007] WEBO (Web Organizer) <= 1.0 (baseDir) Remote File Inclusion Vulnerability
ECHOADV67$2007 ----------------------------------------------------------------------------------------- ECHOADV67$2007 WEBO Web Organizer = 1.0 baseDir Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran...
[SA23913] CGI Rescue WebFORM Cross-Site Scripting and HTTP Header Injection
TITLE: CGI Rescue WebFORM Cross-Site Scripting and HTTP Header Injection SECUNIA ADVISORY ID: SA23913 VERIFY ADVISORY: http://secunia.com/advisories/23913/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: WebFORM 4.x http://secunia.com/product/10398/ DESCRIPTION:...
Ezboxx multiple vulnerabilities.
Ezboxx multiple vulnerabilities. Vulnerable version: Ezboxx Portal System Beta v 0.7.6 and below. The Ezboxx Portal System Beta v 0.7.6 and below versions are vulnerable to Cross-site scripting, Path disclosure and SQL Injection attacks. Cross-site scripting: ---------------------- Description:...
TFTP Server 3CTftpSvc Buffer Overflow Vulnerability (Long transporting mode)
TFTP Server 3CTftpSvc Buffer Overflow Vulnerability Long transporting mode ------------------------------------------------------------------ SUMMARY: 3CTftpSvc TFTP Server is a Freeware TFTP server for Windows 9x/NT/XP. http://support.3com.com/software/utilitiesforwindows32bit.htm or...
PHPOLL => 0.96 Cross Site Scripting
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ DigitaL Hacking TeaM PHPOLL =...
Rialto 1.6[admin login bypass & multiples injections sql]
vendor site: http://www.grandora.com/ product : Rialto 1.6 bug:multiples injection sql , login bypass , xss risk : high ! admin login bypass : /admin/default.asp username: ' or '1' = '1 passwd: ' or '1' = '1 injection sql : /listfull.asp?ID='sql /listmain.asp?cat='sql /printmain.asp?ID='sql...
UStore 1.0 (detail.asp) Remote SQL Injection Vulnerability
Title : UStore 1.0 detail.asp Remote SQL Injection Vulnerability Author : ajann http://target/path//detail.asp?ID=SQL Example: //detail.asp?ID=-120union20select200,username,password,0,0,0,0,0,0,020from20tblusers20where20id20like201 """"""""""""""""""""" ajann,Turkey ... Im not Hacker!...
[Full-disclosure] [x0n3-h4ck.org] Bug on Drake CMS v0.2
-=--------------------ADVISORY-------------------=- Drake CMS V. 0.2 Author: CorryL x0n3-h4ck.org -=----------------------------------------------------=- -=+ Application: Drake CMS -=+ Version: 0.2 -=+ Vendor's URL: https://sourceforge.net/projects/drakecms/ -=+ Platform: WindowsLinuxUnix -=+ Bu...
UltraCMS 0.9 sql injection
Tunis the 18 October 2006 bug found by fireboy product:UltraCMS 0.9 there is an sql injection problem in UltraCMS 0.9 and it can be exploited to gain admin privileges. exploit: user: 'or''=' pass: 'or''=' example : http://www.target.com/include/index.php thx...
[SA22092] Opial Audio/Video Download Management Cross-Site Scripting
TITLE: Opial Audio/Video Download Management Cross-Site Scripting SECUNIA ADVISORY ID: SA22092 VERIFY ADVISORY: http://secunia.com/advisories/22092/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Opial Audio/Video Download Management 1.x...
AK-Systems terminal unauthorized access
Passwordless VNC access to device is possible...
Microsoft Security Bulletin MS06-033 Vulnerability in ASP.NET Could Allow Information Disclosure (917283)
Microsoft Security Bulletin MS06-033 Vulnerability in ASP.NET Could Allow Information Disclosure 917283 Published: July 11, 2006 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows NET Framework 2.0 Impact of Vulnerability: Information Disclosure Maximum Severi...