Securityvulns - Page 178 of Securityvulns Vulnerabilities List

securityvulns•added 2011/08/01 12:0 a.m.•57 views

TeamSHATTER Security Advisory: Oracle Enterprise Manager vulnerable to XSS (notifRuleInfo$mode page)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TeamSHATTER Security Advisory Oracle Enterprise Manager vulnerable to Cross-site scripting notifRuleInfo$mode page July 26, 2011 Risk Level: Medium Affected versions: Oracle Enterprise Manager Grid Control versions 10.1.0.6 Oracle Enterprise Manager...

4.3CVSS5.5AI score0.00309EPSS

securityvulns•added 2011/08/01 12:0 a.m.•282 views

ZDI-11-242: Apple Safari Rendering Object Body Detachment Remote Code Execution Vulnerability

ZDI-11-242: Apple Safari Rendering Object Body Detachment Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-242 July 27, 2011 -- CVE ID: CVE-2011-0255 -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P -- Affected Vendors: Apple -- Affected Products: Apple Safari --...

9.3CVSS0.4AI score0.04022EPSS

securityvulns•added 2011/08/01 12:0 a.m.•133 views

[USN-1181-1] libsoup2.4 vulnerability

========================================================================== Ubuntu Security Notice USN-1181-1 July 28, 2011 libsoup2.4 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

5CVSS0.4AI score0.00853EPSS

securityvulns•added 2011/08/01 12:0 a.m.•102 views

Gopal Systems (products.php?cat_id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Gopal Systems products.php?catid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.gopalsystems.com/ Persian Gulf 4 Ever! Dork : "Powered by: Gopal Systems."...

3AI score

securityvulns•added 2011/08/01 12:0 a.m.•77 views

[USN-1176-1] DBus vulnerability

========================================================================== Ubuntu Security Notice USN-1176-1 July 26, 2011 dbus vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...

4.6CVSS0.2AI score0.00098EPSS

securityvulns•added 2011/08/01 12:0 a.m.•195 views

Coherendz (products.php?cat_id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Coherendz products.php?catid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.coherendz.com/ Persian Gulf 4 Ever! Exploite: www.victim.com/products.php?catid=SQL SpeCial...

2.8AI score

securityvulns•added 2011/08/01 12:0 a.m.•4959 views

G2webCMS (products.php?cat_id) (member-profile.php?profile) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability G2webCMS products.php?catid member-profile.php?profile AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.g2web.com/ Persian Gulf 4 Ever! Dork : "Powered by G2webCMS"...

3.7AI score

securityvulns•added 2011/08/01 12:0 a.m.•54 views

SA500 vulnerabilities - details

Hi Advisory by Cisco was published a few days ago Bugtraq ID: 48810. Now more details: 1. Unathenticated access to web management any user - including admin. Due to blind SQLi in the login form of web management port 443, https, login field, embedded sqlite DB, there is possible to obtain: a all...

7.1AI score

securityvulns•added 2011/08/01 12:0 a.m.•71 views

ZDI-11-240: Apple Safari Webkit SVG Marker Remote Code Execution Vulnerability

ZDI-11-240: Apple Safari Webkit SVG Marker Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-240 July 27, 2011 -- CVE ID: CVE-2011-1453 -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P -- Affected Vendors: Apple -- Affected Products: Apple WebKit -- TippingPointTM IPS...

9.3CVSS0.4AI score0.04022EPSS

Exploits3

securityvulns•added 2011/08/01 12:0 a.m.•304 views

Elgg 1.7.9 <= | Multiple Cross Site Scripting Vulnerabilities

Elgg 1.7.9 = | Multiple Cross Site Scripting Vulnerabilities 1. OVERVIEW The Elgg 1.7.9 and lower versions are vulnerable to multiple Cross Site Scripting. 2. BACKGROUND Elgg is an award-winning social networking engine, delivering the building blocks that enable businesses, schools, universities...

1.3AI score

securityvulns•added 2011/08/01 12:0 a.m.•103 views

Web Fusion Nepal (find.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Web Fusion Nepal find.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://webfusion.com.np/ Persian Gulf 4 Ever! Dork : "Powered by: Web Fusion Nepal" "inurl:find.php?id="...

securityvulns•added 2011/08/01 12:0 a.m.•56 views

indiacon (selloffers.php?cid) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability indiacon selloffers.php?cid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.indiacon.com/ Persian Gulf 4 Ever! Dork : inurl:selloffers.php?cid= "Powered by indiacon.com"...

4.3AI score

securityvulns•added 2011/08/01 12:0 a.m.•81 views

CobraScripts (selloffers.php?cid) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability CobraScripts selloffers.php?cid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://cobrascripts.com/ Persian Gulf 4 Ever! Dork : "Powered by CobraScripts" "inurl:catsell.php?cid...

3.2AI score

securityvulns•added 2011/08/01 12:0 a.m.•72 views

cgcraft llc (info.php?id) (news_item.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability cgcraft llc info.php?id newsitem.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.cgcraft.com/ Persian Gulf 4 Ever! Dork : "website by cgCraft llc"...

2.7AI score

securityvulns•added 2011/08/01 12:0 a.m.•90 views

Avon Groups (search_result.php?cid) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Avon Groups searchresult.php?cid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.avongroups.in/it/ Persian Gulf 4 Ever! Dork : "Powered By: Avon Enterprises Pvt. Ltd. "...

securityvulns•added 2011/08/01 12:0 a.m.•79 views

Chrome Web Solutions (details.php?cat_id) (listing_more.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Chrome Web Solutions details.php?catid listingmore.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.chromewebsolutions.com/ Persian Gulf 4 Ever! Dork : "Powered By ...

3.5AI score

securityvulns•added 2011/08/01 12:0 a.m.•27 views

Wireshark 1.6.1 Malformed IKE Packet Denial of Service

Wireshark 1.6.1 Malformed IKE Packet Denial of Service ------------------------------------------------------------------ I. Summary A flaw has been identified in Wireshark 1.6.1 concerning IKEv1 protocol dissector and the function prototreeadditem ,when add more than 1000000 items to a...

0.5AI score

securityvulns•added 2011/08/01 12:0 a.m.•162 views

Canoy Softwares (search_result.php?loc_id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Canoy Softwares searchresult.php?locid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://canoysoft.in/ Persian Gulf 4 Ever! Dork : "Powered by Canoy Softwares"...

4.1AI score

securityvulns•added 2011/08/01 12:0 a.m.•119 views

A1 Solutions (cat_sell.php?cid) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability A1 Solutions catsell.php?cid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.a1sols.com/ Persian Gulf 4 Ever! Dork : "Powered by A1 Solutions" "inurl:catsell.php?cid="...

3.3AI score

securityvulns•added 2011/08/01 12:0 a.m.•87 views

WOC Consulting (search_result.php?cid) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability WOC Consulting searchresult.php?cid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.woc-consulting.com/ Persian Gulf 4 Ever! Dork : "Powered by WOC Consulting Canada"...

3.3AI score

securityvulns•added 2011/08/01 12:0 a.m.•59 views

ZDI-11-241: Webkit setAttributes attributeChanged Remote Code Execution Vulnerability

ZDI-11-241: Webkit setAttributes attributeChanged Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-241 July 27, 2011 -- CVE ID: CVE-2011-0254 -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P -- Affected Vendors: WebKit -- Affected Products: WebKit -- TippingPointTM I...

9.3CVSS0.5AI score0.04022EPSS

securityvulns•added 2011/08/01 12:0 a.m.•51 views

TeamSHATTER Security Advisory: Oracle Enterprise Manager vulnerable to XSS (metricDetail$type page)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TeamSHATTER Security Advisory Oracle Enterprise Manager vulnerable to Cross-site scripting metricDetail$type page July 26, 2011 Risk Level: Medium Affected versions: Oracle Enterprise Manager Grid Control versions 10.1.0.6, 10.2.0.5 Oracle Enterprise...

4.3CVSS5.4AI score0.00309EPSS

securityvulns•added 2011/08/01 12:0 a.m.•52 views

[USN-1179-1] ClamAV vulnerability

========================================================================== Ubuntu Security Notice USN-1179-1 July 28, 2011 clamav vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

5CVSS0.2AI score0.07432EPSS

securityvulns•added 2011/08/01 12:0 a.m.•75 views

ZDI-11-243: WebKit ContentEditable Inline Style Remote Code Execution Vulnerability

ZDI-11-243: WebKit ContentEditable Inline Style Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-243 July 27, 2011 -- CVE ID: CVE-2011-0232 -- CVSS: 9, AV:N/AC:L/Au:N/C:C/I:P/A:P -- Affected Vendors: WebKit -- Affected Products: WebKit -- TippingPointTM IPS...

9.3CVSS0.5AI score0.04022EPSS

securityvulns•added 2011/08/01 12:0 a.m.•76 views

Sitecore CMS 6.4 Open URL Redirect Vulnerability

Product Name: Sitecore CMS 6.4 Vendor: http://www.sitecore.net Date: 28 July, 2011 Author: [email protected] [email protected] Original URL: http://www.tomneaves.com/SitecoreCMSOpenURLRedirect.txt Discovered: 30 June, 2011 Disclosed: 28 July, 2011 I. DESCRIPTION Sitecore is a CMS system used wide...

0.5AI score

securityvulns•added 2011/08/01 12:0 a.m.•102 views

Multiple XSS in GBook PHP guestbook

Vulnerability ID: HTB23028 Reference: http://www.htbridge.ch/advisory/multiplexssingbookphpguestbook.html Product: GBook PHP guestbook Vendor: PHPJunkyar http://www.phpjunkyard.com Vulnerable Version: 1.7 and probably prior Tested on: 1.7 Vendor Notification: 06 July 2011 Vulnerability Type: XSS...

securityvulns•added 2011/08/01 12:0 a.m.•58 views

Multiple DoS, CSRF and XSS vulnerabilities in ADSL modem Callisto 821+

Hello 3APA3A! This is the last advisory in which I'll warn you about new multiple security vulnerabilities in ADSL modem Callisto 821+ SI2000 Callisto821+ Router. This time I will tell you about Security section of control panel, which is full of vulnerabilities. These are Denial of Service,...

1AI score

securityvulns•added 2011/08/01 12:0 a.m.•75 views

[security bulletin] HPSBMU02692 SSRT100581 rev.2 - HP SiteScope, Remote Cross Site Scripting (XSS) and Session Fixation Attack

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02940969 Version: 2 HPSBMU02692 SSRT100581 rev.2 - HP SiteScope, Remote Cross Site Scripting XSS and Session Fixation Attack NOTICE: The information in this Security Bulletin should be acted upon...

8.3CVSS0.5AI score0.01161EPSS

securityvulns•added 2011/08/01 12:0 a.m.•53 views

Redirection vulnerability in MBoard

Vulnerability ID: HTB23029 Reference: http://www.htbridge.ch/advisory/redirectionvulnerabilityinmboard.html Product: MBoard Vendor: PHPJunkyar http://www.phpjunkyard.com Vulnerable Version: 1.3 and probably prior Tested on: 1.3 Vendor Notification: 06 July 2011 Vulnerability Type: Redirection...

1AI score

securityvulns•added 2011/08/01 12:0 a.m.•63 views

ZDI-11-239: Apple Safari Webkit FrameOwner Element Remote Code Execution Vulnerability

ZDI-11-239: Apple Safari Webkit FrameOwner Element Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-239 July 27, 2011 -- CVE ID: CVE-2011-0233 -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P -- Affected Vendors: Apple -- Affected Products: Apple WebKit --...

9.3CVSS0.2AI score0.04022EPSS

securityvulns•added 2011/08/01 12:0 a.m.•386 views

iCube Lab (product_details.php?cat_id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability iCube Lab productdetails.php?catid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.icubelab.com/ Persian Gulf 4 Ever! Dork : "Powered by iCube Lab"...

3.5AI score

securityvulns•added 2011/08/01 12:0 a.m.•117 views

ESA-2011-024: EMC Captiva eInput multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-024: EMC Captiva eInput multiple vulnerabilities. EMC Identifier: ESA-2011-024 CVE Identifier: CVE-2011-1743, CVE-2011-1744 Affected products: EMC SW: EMC Captiva eInput 2.1.1 Vulnerability Summary: EMC Captiva eInput contains two...

5.8CVSS0.9AI score0.00506EPSS

securityvulns•added 2011/08/01 12:0 a.m.•68 views

[security bulletin] HPSBMU02691 SSRT100483 rev.2 - HP Performance Agent and HP Operations Agent, Remote Arbitrary File Deletion

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02941034 Version: 2 HPSBMU02691 SSRT100483 rev.2 - HP Performance Agent and HP Operations Agent, Remote Arbitrary File Deletion NOTICE: The information in this Security Bulletin should be acted...

6.4CVSS0.5AI score0.0084EPSS

Exploits1

securityvulns•added 2011/08/01 12:0 a.m.•898 views

Solutiontech (product.php?cat_id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Solutiontech product.php?catid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.solutiontechindia.com/ Persian Gulf 4 Ever! Dork : "Powered by Solutiontech"...

3.7AI score

securityvulns•added 2011/08/01 12:0 a.m.•83 views

Infocus Web Solutions (news_desc.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Infocus Web Solutions newsdesc.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.infocuswebdesigning.com/ Persian Gulf 4 Ever! Dork : "Powered by Infocus Web Solutio...

securityvulns•added 2011/08/01 12:0 a.m.•125 views

Dow Group (dynamic.php?id) (sub.php?solutioncat_id) (news_desc.php?id) (product.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Dow Group dynamic.php?id sub.php?solutioncatid newsdesc.php?id product.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.dowgroup.com/ Persian Gulf 4 Ever! Dork :...

securityvulns•added 2011/08/01 12:0 a.m.•166 views

Web Fusion Nepal (tour.php?category) XSS Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD XSS Vulnerability Web Fusion Nepal tour.php?category AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://webfusion.com.np/ Persian Gulf 4 Ever! Dork : "Powered by: Web Fusion Nepal" "inurl:tour.php?category="...

2.7AI score

securityvulns•added 2011/08/01 12:0 a.m.•111 views

FootBall Cms (view_table_lig.php?group) XSS Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD XSS Vulnerability FootBall Cms viewtablelig.php?group AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Persian Gulf 4 Ever! Dork : "inurl:viewtablelig.php?group=" Exploite: www.victim.com/viewtablelig.php?group=1&namelig=XSS...

2.6AI score

securityvulns•added 2011/08/01 12:0 a.m.•82 views

Zones Web Solution (StoneDetails.php?stone) XSS Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD XSS Vulnerability Zones Web Solution StoneDetails.php?stone AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.zones.in/ Persian Gulf 4 Ever! Dork : "Powered By : Zones Web Solution"...

2.4AI score

securityvulns•added 2011/08/01 12:0 a.m.•61 views

TeamSHATTER Security Advisory: Oracle Enterprise Manager vulnerable to XSS (sitemap page)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TeamSHATTER Security Advisory Oracle Enterprise Manager vulnerable to Cross-site scripting sitemap page July 26, 2011 Risk Level: Medium Affected versions: Oracle Enterprise Manager Grid Control versions 10.1.0.6 Oracle Enterprise Manager control...

4.3CVSS5.4AI score0.0042EPSS

securityvulns•added 2011/08/01 12:0 a.m.•137 views

Agent Image (news_details.php?news_ID) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Agent Image newsdetails.php?newsID AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.agentimage.com/ Persian Gulf 4 Ever! Dork : "Design by Agent Image"...

2.6AI score

securityvulns•added 2011/08/01 12:0 a.m.•119 views

[security bulletin] HPSBMU02669 SSRT100346 rev.3 - HP Data Protector Media Management Daemon (mmd), Remote Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02940981 Version: 1 HPSBMU02669 SSRT100346 rev.3 - HP Data Protector Media Management Daemon mmd, Remote Denial of Service DoS NOTICE: The information in this Security Bulletin should be acted up...

7.8CVSS0.8AI score0.02687EPSS

securityvulns•added 2011/08/01 12:0 a.m.•78 views

[ MDVSA-2011:121 ] samba

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:121 http://www.mandriva.com/security/ Package : samba Date : July 27, 2011 Affected: 2009.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been discovered and...

6.8CVSS5.8AI score0.17507EPSS

Exploits6

securityvulns•added 2011/08/01 12:0 a.m.•4180 views

Vegetav (news_item.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Vegetav newsitem.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.vegetav.co.uk/ Persian Gulf 4 Ever! Dork : "website design by Vegetav" "inurl:newsitem.php?id="...

3AI score