47153 matches found
[CVE-2007-1358] Apache Tomcat XSS vulnerability in Accept-Language header processing
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2007-1358: Apache Tomcat XSS vulnerability in Accept-Language header processing Severity: Low cross-site scripting Vendor: The Apache Software Foundation Versions Affected: Tomcat 4.0.0 to 4.0.6 Tomcat 4.1.0 to 4.1.34 Tomcat 5.0.0 to 5.0.30 Tomcat...
[Full-disclosure] SafeNET High Assurance Remote/SoftRemote (IPSecDrv.sys) remote DoS
Attached is POC for a remote DoS in IPSecDrv.sys shipped with SafeNET High Assurance Remote and SoftRemote. The version tested is 10.4.0.12. The bug itself is due to SafeNET making a complete hash of IPv6 support for IPSec. The result of the code is a complete DoS of the machine in Kernel mode...
c-arbre <= Multiple Remote File Include Vulnerablitiy
c-arbre = Multiple Remote File Include Vulnerablitiy D.Script: http://fresh.t-systems-sfr.com/unix/src/www/c-arbre0.6PR7full.tar.gz Discovered by: MoHaNdKo-=-=- [email protected] Homepage: http://www.MoHaNdKo.cOm Exploit:Path/c-arbre/espaces/communiques/annotations.php?rootpath=Shell Greetz To:...
openMairie 1.11(/scr/soustab.php)Local File Inclusion Vulnerabilitiy
openMairie 1.11/scr/soustab.phpLocal File Inclusion Vulnerabilitiy D.Script: http://adullact.net/frs/download.php/1302/openmairieexemple1.11.zip Discovered by: GolDM = Mahmoodali Homepage: http://Www.Tryag.Com/cc Exploit:Path/scr/soustab.php?dsnphptype= Local File 00 Greetz To: Tryag.Com/cc &...
SEC Consult SA-20070314-0 :: Apache HTTP Server / Tomcat directory traversal
SEC Consult Security Advisory 20070314-0 ======================================================================= title: Apache HTTP Server / Tomcat directory traversal program: Apache HTTP Server / Apache Tomcat vulnerable version: Apache Tomcat 5.x: 5.5.22 Apache Tomcat 6.x: 6.0.10 CVE:...
[ECHO_ADV_67$2007] WEBO (Web Organizer) <= 1.0 (baseDir) Remote File Inclusion Vulnerability
ECHOADV67$2007 ----------------------------------------------------------------------------------------- ECHOADV67$2007 WEBO Web Organizer = 1.0 baseDir Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran...
FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability
FreeForum 0.9.0 =- index.php fpath Remote File Include Vulnerability Script: FreeForum Version: 0.9.0 URL: http://www.phpfreaks.com/scripts.php?action=gotoDownload&scriptid=616 Found By : BorN To K!LL Bug in : index.php code : include"$fpath/forum.php"; Explo!T :. ^^^^^ /index.php?fpath=SHe1L-CoD...
[SA22092] Opial Audio/Video Download Management Cross-Site Scripting
TITLE: Opial Audio/Video Download Management Cross-Site Scripting SECUNIA ADVISORY ID: SA22092 VERIFY ADVISORY: http://secunia.com/advisories/22092/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Opial Audio/Video Download Management 1.x...
K-Meleon Concurrency-related Vulnerability
The newest version of K-Meleon browser is affected to disclosed on Bugtraq recently. When using test link http://lcamtuf.coredump.cx/ffoxdie3.html browser crashed after a delay of some seconds. No user interaction was needed. Affected versions: Vulnerability has been confirmed in K-Meleon 1.0.1 i...
Microsoft Security Bulletin MS06-033 Vulnerability in ASP.NET Could Allow Information Disclosure (917283)
Microsoft Security Bulletin MS06-033 Vulnerability in ASP.NET Could Allow Information Disclosure 917283 Published: July 11, 2006 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows NET Framework 2.0 Impact of Vulnerability: Information Disclosure Maximum Severi...
Microsoft Security Bulletin MS06-011 Permissive Windows Services DACLs Could Allow Elevation of Privilege (914798)
Microsoft Security Bulletin MS06-011 Permissive Windows Services DACLs Could Allow Elevation of Privilege 914798 Published: March 14, 2006 | Updated: March 17, 2006 Version: 1.0 Summary Who should read this document: Customers who use Microsoft Windows Impact of Vulnerability: Elevation of...
Fortinet Security Advisory: FSA-2006-08
Fortinet Security Advisory: FSA-2006-08 Microsoft Excel Column Index Improper Memory Access Advisory Date : March 14, 2006 Reported Date : January 24, 2006 Vendor : Microsoft Affected Products : Microsoft Excel 2003 Chinese Version Windows XP Home Edition Chinese Version and possible all versions...
bsod in win32k.sys(Multi-User Win32 Driver)
Hello vuln, OS: Microsoft Windows XP, SP2, other not tested VULNERABILITY: file : win32k.sys version : 5.1.2600.2180 xpspsp2rtm.040803-2158 description : Multi-User Win32 Driver author : 6star aka mg BUG DESCRIPTION: When you try HOW TO CHECK: 1. Click on Desktop to call Context Menu. 2. Then...
WAnewsletter (PHP)
Informations : °°°°°°°°°°°°°° Website : http://www.phpcodeur.net Versions : 2.0beta - 2.1.0 Problem : Include file PHP Code/Location : °°°°°°°°°°°°°°°°°°° newsletter.php 2.1beta - 2.1.0 : ---------------------------------------------------- if !empty$HTTPPOSTVARS'action' $action =...
Security holes in LokwaBB and W-Agora
Somebody advised me to post also on bugtraq not only on vuln-dev, I thus do it : I just hope that doesn't give more work to the webmasters. Product 1 : W-Agora 4.1.3 http://www.w-agora.net Problem : - Including file Exploits : - With a file http://www.attacker.com/dbaccess.txt :...
Уязвимости в Cisco SN 5420
Различные уязвимости позволяют чтение конфигурации и DoS...
INDEXU Authentication By-Pass
UNDERSEC SECURITY ADVISORY 4th March 20001 ======================================================================= PROGRAM: INDEXU VERSIONS: All versions prior to 2.0Beta 2.0Beta included OS: All REMOTE: YES LOCAL: YES CLASS: Authentication bypass POSTED BY: Sp4rK [email protected] BACKGROUND...
CVE-2015-6576: Bamboo - Deserialisation resulting in remote code execution
Note: the current version of this advisory can be found at https://confluence.atlassian.com/x/Hw7RLg . CVE ID: CVE-2015-6576 Product: Bamboo. Affected Bamboo product versions: 2.2 = version 5.8.5 5.9.0 = version 5.9.7 Summary: This advisory discloses a critical severity security vulnerability tha...
UDID v1.0 iOS - Persistent Mail Encode Vulnerability
Document Title: =============== UDID v1.0 iOS - Persistent Mail Encode Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1590 Release Date: ============= 2015-09-22 Vulnerability Laboratory ID VL-ID: ==================================== 1590...
[USN-2735-1] Oxide vulnerabilities
========================================================================== Ubuntu Security Notice USN-2735-1 September 08, 2015 oxide-qt vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...
[ MDVSA-2015:220 ] curl
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:220 http://www.mandriva.com/en/support/security/ Package : curl Date : May 4, 2015 Affected: Business Server 1.0 Problem Description: Updated curl packages fix security vulnerabilities: NTLM-authenticated...
[SECURITY] [DSA 3108-1] ntp security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3108-1 [email protected] http://www.debian.org/security/ Florian Weimer December 20, 2014 http://www.debian.org/security/faq -...
Glype proxy cookie jar path traversal allows code execution
------------------------------------------------------------------------ Glype proxy cookie jar path traversal allows code execution ------------------------------------------------------------------------ Securify, September 2014...
[USN-2228-1] Linux kernel vulnerabilities
========================================================================== Ubuntu Security Notice USN-2228-1 May 27, 2014 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...
[SECURITY] CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat DoS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat DoS Severity: Important Vendor: The Apache Software Foundation Versions Affected: - - Commons FileUpload 1.0 to 1.3 - - Apache Tomcat 8.0.0-RC1 to 8.0.1 - - Apache Tomcat 7.0.0 to 7.0.50 - -...
Cross-Site Scripting (XSS) in Komento Joomla Extension
Advisory ID: HTB23194 Product: Komento Joomla Extension Vendor: Stack Ideas Sdn Bhd. Vulnerable Versions: 1.7.2 and probably prior Tested Version: 1.7.2 Advisory Publication: January 2, 2014 without technical details Vendor Notification: January 2, 2014 Vendor Patch: January 2, 2014 Public...
[CVE-2013-2627, CVE-2013-2628, CVE-2013-2629] Leed (Light Feed) - Multiple vulnerabilities
COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html Product: Leed Light Feed Vendor: Valentin CARRUESCO aka Idleman CSNC ID: CSNC-2013-005 SQL Injection, CSNC-2013-006 CSRF, CSNC-2013-007 Authentication Bypass CVD ID: CVE-2013-2627 SQL Injection, CVE-2013-2628 CSRF,...
Mybb Ajaxfs Plugin Sql Injection vulnerability
a Sql Injection vulnerability In Mybb Ajaxfs Plugin Version 2.0 @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@@ @@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@...
x90c WOFF Firefox 1day exploit
Hi Forks! I share my WOFF 1day exploit. attachment: http://www.x90c.org/exploits/x90cWOFFexploit.tgz dep bypass vulnerability: CVE-2010-1028 WOFF Heap Corruption due to Integer Overflow affacted Products: - Mozilla Firefox 3.6 Gecko 1.9.2 - Mozilla Firefox 3.6 Beta1, 3, 4, 5 Beta2 ko not released...
PHP Code Injection in FUDforum
Advisory ID: HTB23146 Product: FUDforum Vendor: FUDforum Vulnerable Versions: 3.0.4 and probably prior Tested Version: 3.0.4 Vendor Notification: February 21, 2013 Vendor Patch: March 11, 2013 Public Disclosure: April 3, 2013 Vulnerability Type: Code Injection CWE-94 CVE Reference: CVE-2013-2267...
[USN-1731-1] OpenStack Cinder vulnerability
========================================================================== Ubuntu Security Notice USN-1731-1 February 21, 2013 cinder vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
DefenseCode Security Advisory: Cisco Linksys Remote Preauth 0day Root Exploit Follow-Up
A few weeks ago, we have announced remote preauth root access exploit for Cisco Linksys http://www.youtube.com/watch?v=cv-MbL7KFKE. Vulnerability details were disclosed here: http://www.defensecode.com/public/DefenseCodeBroadcomSecurityAdvisory.pdf During further research, we have discovered that...
Adobe Flash Player memory corruption
Memory corruption on SWF parsing...
[ MDVSA-2012:154 ] apache
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:154 http://www.mandriva.com/security/ Package : apache Date : September 28, 2012 Affected: Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been found and corrected in apache ASF HTTPD...
[SECURITY] [DSA 2536-1] otrs2 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2536-1 [email protected] http://www.debian.org/security/ Florian Weimer August 30, 2012 http://www.debian.org/security/faq -...
Chamilo 1.8.8.4 Multiple Vulnerabilities
Chamilo 1.8.8.4 Multiple Vulnerabilities ======================== CVE: CVE-2012-4029 Issue: Reflected XSS PHPSELF in third-party app, Stored XSS PHPSELF XSS http://chamilo-1.8.8.4/main/inc/lib/phpdocx/pdf/www/examples.php/'"img src=404 onerror=alert1 Stored XSS unfiltered input categoryname...
PHP NUKE ALL VERSION MULTI VULNERABILITY
Exploit Title : PHP NUKE ALL VERSION MULTI VULNERABILITY Author : Iranian Security & Research Team Discovered By : Nafsh Home : sec-lab.ir Contact : research at sec-lab dot ir Date : 23/1/2012 - 19:30 Software Link : www.phpnuke.ir Security Risk : High...
[SECURITY] [DSA 2436-1] libapache2-mod-fcgid security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2436-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 19, 2012 http://www.debian.org/security/faq -...
Wolf CMS v0.7.5 - Multiple Web Vulnerabilities
Title: ====== Wolf CMS v0.7.5 - Multiple Web Vulnerabilities Date: ===== 2012-02-27 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=452 VL-ID: ===== 452 Introduction: ============= Wolf CMS is a content management system and is Free Software published under the GNU...
Cisco Security Advisory: Cisco Small Business SRP500 Series Command Injection Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Small Business SRP500 Series Command Injection Vulnerability Advisory ID: cisco-sa-20111102-srp500 Revision 1.0 For Public Release 2011 November 2 16:00 UTC GMT...
TeamSHATTER Security Advisory: Database Vault Account Management Vulnerabilites
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TeamSHATTER Security Advisory October 20, 2011 Risk Level: Medium Affected versions: Oracle Database Server version 10gR2, 11gR1 and 11gR2 Remote exploitable: Yes Credits: This vulnerability was discovered and researched by Esteban Martinez Fayo of...
Microsoft Office multiple security vulnerabilities
Multiple Excel memory corruptions, Word uninitialized pointer dereference, unsafe DLL loading...
Oracle / Sun / Peoplesoft applications multiple security vulnerabilities
CPU closes nearly 90 of different vulnerabilities in different applications...
PRTG V8.1.2.1809 XSS Bugs in login.htm and error.htm
XSS Reflected Bugs in login.htm and error.htm ================================================================ PRTG V8.1.2.1809 All OS Versions: http://www.paessler.com/ I have discovered two XSS bugs within PRTG version 8.1.2.1809. These bugs are in the login.htm and error.htm documents. These...
[security bulletin] HPSBMA02621 SSRT100352 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02670501 Version: 2 HPSBMA02621 SSRT100352 rev.2 - HP OpenView Network Node Manager OV NNM, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted up...
Asan Portal (IdehPardaz) Multiple Vulnerabilities
Securitylab.ir Application Info: Name: Asan Portal Vendor: http://iptech.ir/default.aspx?id=130 Vulnerability: Denial of Service: http://site.ir/Modules/Administrative/ShowPhotos/ShowImages.aspx?id=922&FieldName=ContentImage1&w=1000&h=1000 With setting of large values of width and height it's...
[Onapsis Security Advisory 2010-009] Oracle Virtual Server Agent Remote Command Execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory 2010-0009 : Oracle Virtual Server Agent Remote Command Execution This advisory can be downloaded in PDF format from http://www.onapsis.com/research.html. By downloading this advisory from the Onapsis Resource Center, you will...
[ MDVSA-2010:218 ] php
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:218 http://www.mandriva.com/security/ Package : php Date : October 31, 2010 Affected: 2009.0, 2009.1, 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Problem Description: Multiple vulnerabilities were...
SQL injection vulnerability in ImpressPages CMS
Vulnerability ID: HTB22385 Reference: http://www.htbridge.ch/advisory/sqlinjectionvulnerabilityinimpresspagescms1.html Product: ImpressPages CMS Vendor: Apro Media Vulnerable Version: 1.0.4 and Probably Prior Versions Vendor Notification: 12 May 2010 Vulnerability Type: SQL Injection Status: Fixe...
Scientific Atlanta DPC2100 WebSTAR Cable Modem vulnerabilities
=============================================================== Scientific Atlanta DPC2100 Cable Modem Cross-Site Request Forgery and Insufficient Authentication May 24, 2010 CVE-2010-2025, CVE-2010-2026 =============================================================== ==Description== Scientific...