Securityvulns - Page 19 of Securityvulns Vulnerabilities List | Vulners.com

SecurityvulnsRecent

Recent Most viewed

47153 matches found

securityvulns•added 2015/05/11 12:0 a.m.•57 views

[ MDVSA-2015:230 ] squid

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:230 http://www.mandriva.com/en/support/security/ Package : squid Date : May 6, 2015 Affected: Business Server 2.0 Problem Description: Updated squid packages fix security vulnerability: Squid configured with...

2.6CVSS7.7AI score0.06474EPSS

securityvulns•added 2015/05/11 12:0 a.m.•67 views

Cross-Site Request Forgery (CSRF) Vulnerability in ManageEngine Network Configuration

Title:- Cross-Site Request Forgery CSRF Vulnerability in ManageEngine Network Configuration Management Author: Kaustubh G. Padwad Vendor: ZOHO Corp Product: ManageEngine Network Configuration Manager Tested Version: : Network Configuration Manager Build 11000 Severity: HIGH About the Product:...

securityvulns•added 2015/05/11 12:0 a.m.•46 views

Wordpress plugin Simple Ads Manager - Arbitrary File Upload

Vulnerability title: Wordpress plugin Simple Ads Manager - Arbitrary File Upload Product: Wordpress plugin Simple Ads Manager Vendor: https://profiles.wordpress.org/minimus/ Affected version: Simple Ads Manager 2.5.94 Download link: https://wordpress.org/plugins/simple-ads-manager/ CVE ID:...

7.5CVSS0.35261EPSS

securityvulns•added 2015/05/11 12:0 a.m.•38 views

[security bulletin] HPSBGN03308 rev.1 - HP TippingPoint Security Management System (SMS) and TippingPoint Virtual Security Management System (vSMS), Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04626974 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04626974 Version: 1 HPSBGN03308 rev....

7.5CVSS0.3AI score0.1015EPSS

securityvulns•added 2015/05/11 12:0 a.m.•37 views

CSRF/XSS In Ultimate Profile Builder by CMSLive Wordpress Plugin

================================================================ CSRF/Stored XSS Vulnerability in Ultimate profile Builder Plugin ================================================================ . contents:: Table Of Content Overview ======== Title :CSRF and Stored XSS Vulnerability in Ultimate...

securityvulns•added 2015/05/11 12:0 a.m.•53 views

Wordpress plugin Simple Ads Manager - Multiple SQL Injection

Vulnerability title: Wordpress plugin Simple Ads Manager - Multiple SQL Injection Product: Wordpress plugin Simple Ads Manager Vendor: https://profiles.wordpress.org/minimus/ Affected version: Simple Ads Manager 2.5.94 and 2.5.96 Download link: https://wordpress.org/plugins/simple-ads-manager/ CV...

7.5CVSS5.1AI score0.11773EPSS

securityvulns•added 2015/05/11 12:0 a.m.•37 views

CSRF/XSS In ClickBank ads Wordpress Plugin

================================================================ CSRF/Stored XSS Vulnerability in ClickBank Ads V 1.7 Plugin ================================================================ . contents:: Table Of Content Overview ======== Title :CSRF and Stored XSS Vulnerability in ClickBank Ads...

securityvulns•added 2015/05/11 12:0 a.m.•179 views

Remote file upload vulnerability in videowhisper-video-conference-integration wordpress plugin v4.91.8

Title: Remote file upload vulnerability in videowhisper-video-conference-integration wordpress plugin v4.91.8 Author: Larry W. Cashdollar, @larry0 Date: 2015-03-29 Download Site: https://wordpress.org/support/plugin/videowhisper-video-conference-integration Vendor: http://www.videowhisper.com/...

securityvulns•added 2015/05/11 12:0 a.m.•27 views

ESA-2015-078: RSA® Identity Management and Governance (IMG) Insecure Password Reset Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-078: RSA® Identity Management and Governance IMG Insecure Password Reset Vulnerability EMC Identifier: ESA-2015-078 CVE Identifier: CVE-2015-0532 Severity Rating: CVSSv2 Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Affected Products: - RSA...

7.5CVSS0.1AI score0.00519EPSS

securityvulns•added 2015/05/11 12:0 a.m.•116 views

[ MDVSA-2015:228 ] nodejs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:228 http://www.mandriva.com/en/support/security/ Package : nodejs Date : May 6, 2015 Affected: Business Server 2.0 Problem Description: Updated nodejs package fixes security vulnerability: It was found that...

10CVSS3.8AI score0.01586EPSS

securityvulns•added 2015/05/11 12:0 a.m.•26 views

Network Virtualization for HP LoadRunner and Performance Center information disclosure

No description provided...

7.8CVSS1.2AI score0.01113EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•54 views

Arbitrary Variable Overwrite in eShop WordPress Plugin

Advisory ID: HTB23255 Product: eShop WordPress plugin Vendor: Rich Pedley Vulnerable Versions: 6.3.11 and probably prior Tested Version: 6.3.11 Advisory Publication: April 15, 2015 without technical details Vendor Notification: April 15, 2015 Public Disclosure: May 6, 2015 Vulnerability Type: Cod...

4.3CVSS0.2AI score0.0017EPSS

securityvulns•added 2015/05/11 12:0 a.m.•44 views

[security bulletin] HPSBPI03315 rev.1 - HP Capture and Route Software, Remote Information Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04633710 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04633710 Version: 1 HPSBPI03315 rev....

2.7CVSS0.1AI score0.00098EPSS

securityvulns•added 2015/05/11 12:0 a.m.•28 views

[security bulletin] HPSBMU03292 rev.1 - HP Operations Orchestration Authentication Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04595607 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04595607 Version: 1 HPSBMU03292 rev....

7.5CVSS0.3AI score0.00563EPSS

securityvulns•added 2015/05/11 12:0 a.m.•71 views

[USN-2548-1] Batik vulnerability

========================================================================== Ubuntu Security Notice USN-2548-1 March 25, 2015 batik vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

6.4CVSS0.5AI score0.02944EPSS

securityvulns•added 2015/05/11 12:0 a.m.•22 views

F5 BIG-IQ information disclosure

User accounts information disclosure...

Exploits0References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•53 views

CSRF/XSS in embed-articles Wordpress Plugin

====================================================== CSRF/Stored XSS Vulnerability in embed articles Plugin ====================================================== . contents:: Table Of Content Overview ======== Title :CSRF and Stored XSS Vulnerability in embed-articles Wordpress Plugin Author:...

securityvulns•added 2015/05/11 12:0 a.m.•41 views

HP Integrated Lights-Out multiple security vulnereabilities

Code execution, privilege escalation, DoS, restrictions bypass...

10CVSS2.6AI score0.25213EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•73 views

[security bulletin] HPSBGN03329 rev.1 - HP SDN VAN Controller, Remote Denial of Service (DoS), Distributed Denial of Service (DDoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04657823 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04657823 Version: 1 HPSBGN03329 rev....

7.8CVSS0.2AI score0.92712EPSS

securityvulns•added 2015/05/11 12:0 a.m.•35 views

Cisco UCS Central code execution

Code execution via web interface...

10CVSS3.9AI score0.01071EPSS

Exploits0Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•32 views

HP Operations Orchestration authentication bypass

No description provided...

7.5CVSS1.4AI score0.00563EPSS

Exploits0References1

securityvulns•added 2015/05/11 12:0 a.m.•50 views

CVE-2015-2755 WordPress AB Google Map Travel CSRF / XSS

=============================================================================== CSRF/Stored XSS Vulnerability in AB Google Map Travel AB-MAP Wordpress Plugin =============================================================================== . contents:: Table Of Content Overview ======== Title :Stor...

6.8CVSS5.7AI score0.00828EPSS

securityvulns•added 2015/05/11 12:0 a.m.•139 views

Alienvault OSSIM/USM Multiple Vulnerabilities

Details ======= Product: Alienvault OSSIM/USM Vulnerability: Multiple Vulnerabilities XSS, SQLi, Command Execution Author: Peter Lapp, [email protected] CVE: None assigned Vulnerable Versions: Tested on 4.14, 4.15, and 5.0. It likely affects all previous versions as well. Fixed Version: No fix ha...

securityvulns•added 2015/05/11 12:0 a.m.•100 views

Code Injection in Epicor Retail Store 3.2.03.01.008

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Title: Code Injection in Epicor Retail Store Help System CVE: CVE-2015-2210 Vendor: Epicor Product: CRS Retail Store v3.2.03.01.008 Affected version: 3.2.03.01.008 Reported by: Zeng Xianbo Joseph [email protected] Issue identified by: Zeng...

7.2CVSS0.2AI score0.00139EPSS

securityvulns•added 2015/05/11 12:0 a.m.•57 views

[SECURITY] [DSA 3250-1] wordpress security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3250-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini May 04, 2015 http://www.debian.org/security/faq -...

4.3CVSS1.6AI score0.14391EPSS

securityvulns•added 2015/05/11 12:0 a.m.•40 views

mono security vulnerabilities

Multiple TLS related vulnerabilities...

7.5CVSS1.6AI score0.04829EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•145 views

Sqlbuddy Path Traversal Vulnerability

Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org/ Vendor Homepage: www.sqlbuddy.com Version: 1.3.3 SQL Buddy is an open source web based MySQL administration application. Advisory Information: ================== sqlbuddy suffers from directory traversal whereby a user can mov...

securityvulns•added 2015/05/11 12:0 a.m.•38 views

HP Data Protector multiple security vulnerabilities

DoS, code execution, privilege escalation...

9CVSS2.8AI score0.0082EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•21 views

SonicWall SonicOS crossite scripting

No description provided...

Exploits0References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•94 views

Sqlbuddy Directory Traversal Read Arbitrary Files Vulnerability

Sqlbuddy Directory Traversal Read Arbitrary Files Vulnerability. Vendor: http://www.sqlbuddy.com Release Date: ============= 05-08-2015 Source: ==================================== http://hyp3rlinx.altervista.org/advisories/AS-SQLBUDDY0508.txt Product: =============================== sqlbuddy...

securityvulns•added 2015/05/11 12:0 a.m.•98 views

[ MDVSA-2015:216 ] ntop

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:216 http://www.mandriva.com/en/support/security/ Package : ntop Date : April 29, 2015 Affected: Business Server 1.0 Problem Description: Updated ntop package fixes security vulnerability: Lack of filtering i...

4.3CVSS6.3AI score0.00422EPSS

securityvulns•added 2015/05/11 12:0 a.m.•32 views

Remote File Upload Vulnerability in WordPress Ultimate Product Catalogue Plugin

Product Description: ------------------- Ultimate Product Catalog plugin is designed to help WordPress sites administrators display products quickly and easily in an attractive and customizable layout, making your catalogue easy to browse, sort and update with categories, sub-categories, and tags...

securityvulns•added 2015/05/11 12:0 a.m.•112 views

Pimcore v3.0.5 CMS - Multiple Web Vulnerabilities

Document Title: =============== Pimcore v3.0.5 CMS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1482 Release Date: ============= 2015-05-08 Vulnerability Laboratory ID VL-ID: ==================================== 1482...

securityvulns•added 2015/05/11 12:0 a.m.•44 views

[oCERT-2015-006] dcraw input sanitization errors

2015-006 dcraw input sanitization errors Description: The dcraw photo decoder is an open source project for raw image parsing. The dcraw tool, as well as several other projects re-using its code, suffers from an integer overflow condition which lead to a buffer overflow. The vulnerability concern...

securityvulns•added 2015/05/11 12:0 a.m.•24 views

InFocus projectors authentication bypass

Few authentication bypass possibilities...

10CVSS3.8AI score0.04503EPSS

Exploits4References1

securityvulns•added 2015/05/11 12:0 a.m.•47 views

Apache libbatik XXE

XXE on SVG parsing...

6.4CVSS3.5AI score0.02944EPSS

Exploits1References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•39 views

Stored Cross Site Scripting Vulnerability in Add Link to Facebook WordPress Plugin

Title: Stored XSS Vulnerability in Add Link to Facebook Wordpress Plugin Author: Rohit Kumar Plugin Homepage: http://wordpress.org/extend/plugins/add-link-to-facebook/ Severity: Medium Version Affected: Version 1.215 and mostly prior to it. Version Tested: Version 1.215 Version Patched : 1.215...

securityvulns•added 2015/05/11 12:0 a.m.•61 views

CSRF to add admin user Vulnerability In Manage Engine Device Expert

=============================================================================== CSRF to add admin user Vulnerability In Manage Engine Device Expert =============================================================================== . contents:: Table Of Content Overview ======== Title : CSRF to add...

securityvulns•added 2015/05/11 12:0 a.m.•40 views

CSRF/XSSIn Ad_InSerter Wordpress

================================================================ CSRF/Stored XSS Vulnerability in Ad Inserter Plugin ================================================================ . contents:: Table Of Content Overview ======== Title :CSRF and Stored XSS Vulnerability in Ad Inserter Wordpress...

securityvulns•added 2015/05/11 12:0 a.m.•30 views

BullGuard antiviral applications authentication bypass

Access limitation are checked in client application...

Exploits0References3

securityvulns•added 2015/05/11 12:0 a.m.•28 views

F5 BIG-IQ Enumeration of users and Information Disclosure

Hi, I'm testing BIG-IQ v 0.0.7028, no the last HF but i don't see the bug fix in the HF1 the new mngmt of F5 BIG-IP, i see that you are loggout and join to the next link LINK : where $user is the user https://127.0.0.1/mgmt/shared/authz/users/$user/ When i open this link and try some diff users...

securityvulns•added 2015/05/11 12:0 a.m.•45 views

squid insufficient certificate validation

Insufficient check for server certificate...

2.6CVSS2.3AI score0.06474EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•86 views

Instant v2.0 SQL Injection Vulnerability

========================================================================================== Instant v2.0 SQL Injection Vulnerability ==========================================================================================...

securityvulns•added 2015/05/11 12:0 a.m.•55 views

libicu security vulnerabilities

Buffer overflow, integer overflow...

7.5CVSS3.9AI score0.41904EPSS

Exploits4References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•49 views

[CORE-2015-0008] - InFocus IN3128HD Projector Multiple Vulnerabilities

Advisory Information Title: InFocus IN3128HD Projector Multiple Vulnerabilities Advisory ID: CORE-2015-0008 Advisory URL: http://www.coresecurity.com/advisories/infocus-in3128hd-projector-multiple-vulnerabilities Date published: 2015-04-27 Date of last update: 2015-04-22 Vendors contacted:...

10CVSS6.8AI score0.04503EPSS

securityvulns•added 2015/05/11 12:0 a.m.•38 views

Advisory: Filezilla FTP server is vulnerable to FTP PORT bounce

Dear list A security advisory for Filezilla FTP server versions 0.8.0-0.9.50 is available at http://www.securitygalore.com/site3/filezillaftpserveradvisory A new version of Filezilla FTP server 0.9.51 is available for immediate download at https://filezilla-project.org/download.php?type=server I...

securityvulns•added 2015/05/11 12:0 a.m.•47 views

[SECURITY] [DSA 3254-1] suricata security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3254-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 09, 2015 http://www.debian.org/security/faq -...

5CVSS1.3AI score0.00392EPSS

securityvulns•added 2015/05/11 12:0 a.m.•31 views

suricata DoS

Crash on SSL certificate parsing...

5CVSS3.1AI score0.00392EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•31 views

HP TippingPoint Security Management System / TippingPoint Virtual Security Management System code execution

Code execution via web interface...

7.5CVSS2.8AI score0.1015EPSS

Exploits0References1Affected Software2

securityvulns•added 2015/05/11 12:0 a.m.•50 views

[SECURITY] [DSA 3202-1] mono security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3202-1 [email protected] http://www.debian.org/security/ Sebastien Delafond March 22, 2015 http://www.debian.org/security/faq -...

7.5CVSS2.2AI score0.04829EPSS

Total number of security vulnerabilities47153