Multiple vulnerabilities in Subrion CMS

Advisory ID: HTB23113 Product: Subrion CMS Vendor: The Subrion development team Vulnerable Versions: 2.2.1 and probably prior Tested Version: 2.2.1 Vendor Notification: September 5, 2012 Public Disclosure: October 17, 2012 Vulnerability Type: SQL Injection CWE-89, Cross-Site Scripting CWE-79,...

Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities

Title: ====== Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities Date: ===== 2012-09-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=700 VL-ID: ===== 700 Common Vulnerability Scoring System: ==================================== 4.1 Introduction: =============...

Multiple vulnerabilities in OpenX

Advisory ID: HTB23116 Product: OpenX Vendor: OpenX Vulnerable Versions: 2.8.10 and probably prior Tested Version: 2.8.10 Vendor Notification: September 19, 2012 Public Disclosure: October 10, 2012 Vulnerability Type: Cross-Site Scripting CWE-79, SQL Injection CWE-89 CVE References: CVE-2012-4989,...

NeoBill CMS v0.8 Alpha - Multiple Web Vulnerabilities

Title: ====== NeoBill CMS v0.8 Alpha - Multiple Web Vulnerabilities Date: ===== 2012-08-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=685 VL-ID: ===== 685 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...

Omnistar Mailer v7.2 - Multiple Web Vulnerabilities

Title: ====== Omnistar Mailer v7.2 - Multiple Web Vulnerabilities Date: ===== 2012-10-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=711 VL-ID: ===== 711 Common Vulnerability Scoring System: ==================================== 8.5 Introduction: ============= The...

Interspire Email Marketer v6.0.1 - Multiple Vulnerabilites

Title: ====== Interspire Email Marketer v6.0.1 - Multiple Vulnerabilites Date: ===== 2012-10-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=710 VL-ID: ===== 710 Common Vulnerability Scoring System: ==================================== 8.3 Introduction: =============...

SEC Consult SA-20121017-0 :: ModSecurity multipart/invalid part ruleset bypass

SEC Consult Vulnerability Lab Security Advisory 20121017-0 ======================================================================= title: ModSecurity multipart/invalid part ruleset bypass product: ModSecurity vulnerable version: = 2.6.8 fixed version: 2.7.0 CVE number: - impact: Depends what you...

XSS Vulnerabilities in phpFreeChat

Information -------------------- Name : XSS Vulnerabilities in phpFreeChat Software : phpFreeChat 1.4 and possibly below. Vendor Homepage : http://www.phpfreechat.net Vulnerability Type : Cross-Site Scripting Severity : Critical Researcher : Mesut Timur Advisory Reference : NS-12-010 Description...

Multiple vulnerabilities in Megapolis.Portal Manager

Hello 3APA3A! I want to warn you about multiple Cross-Site Scripting vulnerabilities in Megapolis.Portal Manager. It's commercial CMS from Softline-IT earlier Softline, which in particularly widespread among Ukrainian government sites including ministry, parliament, two special services and many...

Axis VoIP Manager v2.1.5.7 - Multiple Web Vulnerabilities

Title: ====== Axis VoIP Manager v2.1.5.7 - Multiple Web Vulnerabilities Date: ===== 2012-09-09 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=686 VL-ID: ===== 686 Common Vulnerability Scoring System: ==================================== 2.3 Introduction: =============...

vOlk Botnet Framework v4.0 - Multiple Web Vulnerabilities

Title: ====== vOlk Botnet Framework v4.0 - Multiple Web Vulnerabilities Date: ===== 2012-10-09 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=721 VL-ID: ===== 721 Common Vulnerability Scoring System: ==================================== 8.3 Introduction: =============...

CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies

Title: ====== CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies Date: ===== 2012-10-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=726 VL-ID: ===== 726 Common Vulnerability Scoring System: ==================================== 4.3 Introduction: ============= CMSQLite is...

Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities

Title: ====== Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities Date: ===== 2012-09-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=700 VL-ID: ===== 700 Common Vulnerability Scoring System: ==================================== 4.1 Introduction: =============...

XSS and IAA vulnerabilities in Wordfence Security for WordPress

Hello 3APA3A! I want to warn you about Cross-Site Scripting and Insufficient Anti-automation vulnerabilities in Wordfence Security for WordPress. Wordfence - it's security plugin for WordPress. ------------------------- Affected products: ------------------------- Vulnerable are Wordfence Securit...

Multiple vulnerabilities in jCore

Advisory ID: HTB23107 Product: jCore Vendor: jcore.net Vulnerable Versions: 1.0pre and probably prior Tested Version: 1.0pre Vendor Notification: August 1, 2012 Public Disclosure: October 17, 2012 Vulnerability Type: SQL Injection CWE-89, Cross-Site Scripting CWE-79 CVE References: CVE-2012-4231,...

MitM-vulnerability in Palo Alto Networks GlobalProtect

--------------------------------------------------------------------- SySS-Advisory: MitM-vulnerability in Palo Alto Networks GlobalProtect --------------------------------------------------------------------- Problem discovered: July 12th 2012 Vendor contacted: July 13th 2012 Advisory published:...

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

CA ARCserve Backup security vulnerabilities

Security vulnerabilities in RPC requests handling...

SilverStripe CMS 2.4.7 <= Persistent Cross Site Scripting Vulnerability

OVERVIEW SilverStripe 2.4.7 and lower versions are vulnerable to Persistent Cross Site Scripting. 2. BACKGROUND SilverStripe CMS is easy for both developers and content authors to work with. The SilverStripe Framework keeps the code tucked away neatly so that it can be accessed easily by...

[waraxe-2012-SA#089] - Multiple Vulnerabilities in TorrentTrader 2.08

waraxe-2012-SA089 - Multiple Vulnerabilities in TorrentTrader 2.08 =============================================================================== Author: Janek Vind "waraxe" Date: 17. September 2012 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-89.html Description of vulnerable...

Vbulletin (blog_plugin_useradmin) v4.1.12 Sql Injection Vulnerability

a bug in Vbulletin blogpluginuseradmin v4.1.12 that allows to us to occur a Sql Injection on a Remote machin. Exploit Title : Vbulletin blogpluginuseradmin v4.1.12 Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link :...

FileBound - Privilege Escalation Vulnerability - Security Advisory - SOS-12-010

Sense of Security - Security Advisory - SOS-12-010 Release Date. 10-Oct-2012 Last Update. - Vendor Notification Date. 14-Aug-2012 Product. FileBound On-Site Platform. Windows Affected versions. All versions prior to 6.2 Severity Rating. High Impact. Privilege escalation Attack Vector. From remote...

F5 Firepass URL redirection

Uncontrolled redirection from my.activation.cns.php3 page...

[waraxe-2012-SA#093] - Multiple Vulnerabilities in Wordpress Social Discussions Plugin

waraxe-2012-SA093 - Multiple Vulnerabilities in Wordpress Social Discussions Plugin ====================================================================================== Author: Janek Vind "waraxe" Date: 17. October 2012 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-93.html...

phptax 0.8 <= Remote Code Execution Vulnerability

----------------------------------------------------- phptax 0.8 = Remote Code Execution Vulnerability ----------------------------------------------------- Discovered by: Jean Pascal Pereira [email protected] Vendor information: "PhpTax is free software to do your U.S. income taxes. Tested under...

SonicWALL EMail Security multiple security vulnerabilities

Crossite scripting, crossite request forgery, etc...

Palo Alto Networks GlobalProtect certificate spoofing

Server certificate is no checked...

SEC Consult SA-20121017-1 :: Unirgy uStoreLocator SQL Injection - Magento extension

SEC Consult Vulnerability Lab Security Advisory 20121017-1 ======================================================================= title: SQL Injection product: Unirgy uStoreLocator - Magento extension vulnerable version: =2.0.0 fixed version: =2.0.1 impact: High homepage: http://www.unirgy.com/...

Multiple vulnerabilities in AContent

Advisory ID: HTB23117 Product: AContent Vendor: ATutor Vulnerable Versions: 1.2 and probably prior Tested Version: 1.2 Vendor Notification: September 26, 2012 Public Disclosure: October 17, 2012 Vulnerability Type: SQL Injection CWE-89, Improper Authentication CWE-287, Cross-Site Scripting CWE-79...

modsecurity for Apache protection bypass

It's possible to bypass filtering with double 'r' in boundary identifier...

SilverStripe CMS 2.4.7 <= Arbitrary URL Redirection

OVERVIEW SilverStripe 2.4.7 and lower versions are vulnerable to Open URL Redirection. 2. BACKGROUND SilverStripe CMS is easy for both developers and content authors to work with. The SilverStripe Framework keeps the code tucked away neatly so that it can be accessed easily by programmers but...

IBM Lotus Notes Traveler security vulnerabilities

Crossite scripting, crossite request forgery, URL redirection...

SonicWALL EMail Security 7.3.5 - Multiple Vulnerabilities

Title: ====== SonicWALL EMail Security 7.3.5 - Multiple Vulnerabilities Date: ===== 2012-08-14 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=543 VL-ID: ===== 543 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...

Ezhometech EzServer memory corruption

Memory corruption on RTMP AMF request parsing...

graphicsmagick memory corruption

Memory corruption on PNG parsing...

Valve Steam multiple security vulnerabilities

Buffer overflows, code executions and game engines vulnerabilities can be exploited via steam:// URI handler...

Visual Tools DVR multiple vulnerabilities

Title: Visual Tools DVR multiple vulnerabilities Version affected: VS Series = 3.0.6.16, VX Series = 4.2.19.2 Vendor: http://www.visual-tools.com/ Discovered By: Andrea Fabrizi Email: [email protected] Web: http://www.andreafabrizi.it Status: unpatched Visual Tools develops, manufactures a...

RSA Adaptive Authentication information leakage

No description provided...

Multiple vulnerabilities in Samsung Kies

Advisory ID: HTB23099 Product: Samsung Kies Vendor: Samsung Electronics Vulnerable Versions: 2.3.2.1205420 and probably prior Tested Version: 2.3.2.1205420 Vendor Notification: June 25, 2012 Public Disclosure: October 15, 2012 Vulnerability Type: NULL Pointer Dereference CWE-476, Improper Access...

Hardcoreview WriteAV Arbitrary Code Execution

!/usr/bin/perl Hardcoreview WriteAV Arbitrary Code Execution Author: Jean Pascal Pereira [email protected] Vendor URI: http://sourceforge.net/projects/hardcoreview/ Vendor Description: Image browser. Designed and created for profesional and amature watching image files. All kind of image files...

ESA-2012-035: RSAR Adaptive Authentication (On-Premise) Information Disclosure Vulnerability

ESA-2012-035.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-035: RSA® Adaptive Authentication On-Premise Information Disclosure Vulnerability EMC Identifier: ESA-2012-035 CVE Identifier: CVE-2012-2286 Severity Rating: CVSS v2 Base Score: 7.9 AV:A/AC:M/Au:N/C:C/I:C/A:C Affected Product...

[CVE-2012-4750] Ezhometech EzServer 7.0 Remote Heap Corruption Vulnerability

Title: Ezhometech EzServer 7.0 Remote Heap Corruption Vulnerability Description: EzServer is a software for audio and video streaming adopted by various companies worldwide. Version 7.0 is affected by a remote heap corruption vulnerability. Version 6.x is not affected by this issue, as does not...

Visual Tools DVRs multiple security vulnerabilities

Information leakage, code execution...

Hardcoreview memory corruption

Memory corruption on GIF parsing...

Critical issues affecting Steam users

We have just released a paper 1, in which we prove that the current implementation of the Steam Browser Protocol handling mechanism is an excellent attack vector to exploit local issues in a remote fashion. Steam 2 is the biggest gaming related digital delivery platform with an audience of more...

VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update)

!/usr/bin/perl VLC Player 2.0.3 = ReadAV Arbitrary Code Execution Author: Jean Pascal Pereira [email protected] Vendor URI: http://www.videolan.org/vlc/ Vendor Description: VLC is a free and open source cross-platform multimedia player and framework that plays most multimedia files as well as DVD...

Cisco WebEx multiple security vulnerabilities

Multiple memory corruptions and buffer overflows...

Ruby restrictions bypass

Untainted strings modification is possible...

Apache Cloudstack default account

Default account with known password...

utempter information spoofing

User supplied data is not checked before writing to utmp...