Securityvulns - Page 20 of Securityvulns Vulnerabilities List | Vulners.com

SecurityvulnsRecent

Recent Most viewed

47153 matches found

securityvulns•added 2015/05/11 12:0 a.m.•66 views

vPhoto-Album v4.2 iOS - File Include Web Vulnerability

Document Title: =============== vPhoto-Album v4.2 iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1477 Release Date: ============= 2015-05-05 Vulnerability Laboratory ID VL-ID: ==================================== 147...

securityvulns•added 2015/05/11 12:0 a.m.•53 views

[security bulletin] HPSBMU03321 rev.1 - HP Data Protector, Remote Increase of Privilege, Denial of Service (DoS), Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04636829 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04636829 Version: 1 HPSBMU03321 rev....

9CVSS1.1AI score0.0082EPSS

securityvulns•added 2015/05/11 12:0 a.m.•274 views

Wordpress Twenty Fifteen Theme - DOM XSS Vulnerability - CVE-2015-3429

Information -------------------- Advisory by Netsparker. Name: DOM XSS Vulnerability in Twenty Fifteen WordPress Theme Affected Software : WordPress Affected Versions: 4.2.1 and probably below Vendor Homepage : https://wordpress.org/ and https://wordpress.org/themes/twentyfifteen/ Vulnerability...

4.3CVSS6.7AI score0.01531EPSS

securityvulns•added 2015/05/11 12:0 a.m.•46 views

CSRF/XSS In Ad_Button Wordpress

================================================================ CSRF/Stored XSS Vulnerability in Ad Buttons Plugin ================================================================ . contents:: Table Of Content Overview ======== Title :CSRF and Stored XSS Vulnerability in Ad Buttons Wordpress...

securityvulns•added 2015/05/11 12:0 a.m.•48 views

CSRF/XSS In Embed ArticlesWordpress Plugin

====================================================== CSRF/Stored XSS Vulnerability in embed articles Plugin ====================================================== . contents:: Table Of Content Overview ======== Title :CSRF and Stored XSS Vulnerability in embed-articles Wordpress Plugin Author:...

securityvulns•added 2015/05/11 12:0 a.m.•47 views

CSRF/Stored XSS Vulnerability in AB Google Map Travel (AB-MAP) Wordpress Plugin

=============================================================================== CSRF/Stored XSS Vulnerability in AB Google Map Travel AB-MAP Wordpress Plugin =============================================================================== . contents:: Table Of Content Overview ======== Title :Stor...

securityvulns•added 2015/05/11 12:0 a.m.•265 views

[SYSS-2014-007] FrontRange DSM - Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2014-007 Product: FrontRange DSM Vendor: FrontRange Solutions USA Inc. and/or its affiliates Affected Versions: v7.2.1.2020, v7.2.2.2331 Tested Versions: v7.2.1.2020, v7.2.2.2331 Vulnerability Type: Use of Hard-coded Cryptographic...

securityvulns•added 2015/05/11 12:0 a.m.•184 views

[SECURITY] CVE-2014-0230: Apache Tomcat DoS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 CVE-2014-0230 Denial of Service Severity: Low Vendor: The Apache Software Foundation Versions Affected: - - Apache Tomcat 8.0.0-RC1 to 8.0.8 - - Apache Tomcat 7.0.0 to 7.0.54 - - Apache Tomcat 6.0.0 to 6.0.43 Description: When a response for a reque...

7.8CVSS5.6AI score0.03099EPSS

securityvulns•added 2015/05/11 12:0 a.m.•43 views

SonicWall SonicOS 7.5.0.12 & 6.x - Client Side Cross Site Scripting Vulnerability

Document Title: =============== SonicWall SonicOS 7.5.0.12 & 6.x - Client Side Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1359 Release Date: ============= 2015-04-23 Vulnerability Laboratory ID VL-ID:...

securityvulns•added 2015/05/11 12:0 a.m.•149 views

vBulletin 4.x.x 'visitormessage.php' Remote Code Injection Vulnerability

Exploit Title: vBulletin 4.x.x 'visitormessage.php' Remote Code Injection Vulnerability + Discovered By: Dariush Nasirpour Net.Edit0r + My Homepage: black-hg.org / nasirpour.info + Date: 2015 27 February + Vendor Homepage: vBulletin.com + Tested on: vBulletin 4.2.2 + Greeting : Ali Razmjoo -...

securityvulns•added 2015/05/11 12:0 a.m.•27 views

HP Capture and Route information disclosure

No description provided...

2.7CVSS0.2AI score0.00098EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/11 12:0 a.m.•82 views

Pligg CMS 2.0.2 - Stored XSS

Hi Team, Affected Vendor: http://pligg.com/ Date: 23/04/2015 Discovered by: Joel Vadodil Varghese Type of vulnerability: Persistent XSS Tested on: Windows 8.1 Product: Pligg CMS Version: 2.0.2 Tested Link: http://localhost/pligg/admin/adminpage.php Description: Pligg CMS is a content management...

securityvulns•added 2015/05/10 12:0 a.m.•124 views

[SYSS-2015-018] BullGuard Premium Protection - Authentication Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-018 Product: BullGuard Premium Protection Vendor: BullGuard Ltd. Affected Versions: 15.0.297 Tested Versions: 15.0.297 Vulnerability Type: Authentication Bypass Using an Alternate Path or Channel CWE-288 Risk Level: Medium...

securityvulns•added 2015/05/10 12:0 a.m.•70 views

Grindr v2.1.1 iOS & Account System - Breach Attack Vulnerability

Document Title: =============== Grindr v2.1.1 iOS & Account System - Breach Attack Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1420 Release Date: ============= 2015-05-03 Vulnerability Laboratory ID VL-ID:...

securityvulns•added 2015/05/10 12:0 a.m.•91 views

APPLE-SA-2015-05-06-1 Safari 8.0.6, Safari 7.1.6, and Safari 6.2.6

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2015-05-06-1 Safari 8.0.6, Safari 7.1.6, and Safari 6.2.6 Safari 8.0.6, Safari 7.1.6, and Safari 6.2.6 are now available and address the following: WebKit Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5, and OS X Yosemite...

6.8CVSS0.6AI score0.67873EPSS

securityvulns•added 2015/05/10 12:0 a.m.•69 views

Album Streamer v2.0 iOS - Directory Traversal Vulnerability

Document Title: =============== Album Streamer v2.0 iOS - Directory Traversal Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1481 Release Date: ============= 2015-05-07 Vulnerability Laboratory ID VL-ID: ===================================...

securityvulns•added 2015/05/10 12:0 a.m.•48 views

Apple Safari / Webkit multiple security vulnerabilities

Multiple memory corruptions, files access, interface spoofing...

6.8CVSS2.4AI score0.67873EPSS

Exploits2References1Affected Software1

securityvulns•added 2015/05/10 12:0 a.m.•35 views

[SYSS-2015-017] BullGuard Internet Security - Authentication Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-017 Product: BullGuard Internet Security Vendor: BullGuard Ltd. Affected Versions: 15.0.297 Tested Versions: 15.0.297 Vulnerability Type: Authentication Bypass Using an Alternate Path or Channel CWE-288 Risk Level: Medium...

securityvulns•added 2015/05/10 12:0 a.m.•139 views

[SYSS-2015-019] BullGuard Antivirus - Authentication Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-019 Product: BullGuard Antivirus Vendor: BullGuard Ltd. Affected Versions: 15.0.297 Tested Versions: 15.0.297 Vulnerability Type: Authentication Bypass Using an Alternate Path or Channel CWE-288 Risk Level: Medium Solution...

securityvulns•added 2015/05/10 12:0 a.m.•39 views

libtasn1 buffer overflow

Heap buffer overflow on DER decoding...

4.3CVSS2.6AI score0.06062EPSS

Exploits1References1Affected Software1

securityvulns•added 2015/05/10 12:0 a.m.•53 views

[USN-2597-2] Linux kernel (Trusty HWE) regression

========================================================================== Ubuntu Security Notice USN-2597-2 May 08, 2015 linux-lts-trusty regression ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

securityvulns•added 2015/05/10 12:0 a.m.•45 views

[ MDVSA-2015:232 ] libtasn1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:232 http://www.mandriva.com/en/support/security/ Package : libtasn1 Date : May 8, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated libtasn1 packages fix security...

4.3CVSS6AI score0.06062EPSS

securityvulns•added 2015/05/10 12:0 a.m.•62 views

Linux kernel multiple security vulnerabilities

DoS, privilege escalation, protection bypass...

9.3CVSS2.9AI score0.0411EPSS

Exploits1References6Affected Software2

securityvulns•added 2015/05/05 12:0 a.m.•39 views

[SECURITY] [DSA 3239-1] icecast2 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3239-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini April 29, 2015 http://www.debian.org/security/faq -...

5CVSS1.9AI score0.1532EPSS

securityvulns•added 2015/05/05 12:0 a.m.•29 views

OpenFire certificate validation vulnerability

No description provided...

5CVSS1.3AI score0.01328EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/05 12:0 a.m.•29 views

[ MDVSA-2015:191 ] owncloud

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:191 http://www.mandriva.com/en/support/security/ Package : owncloud Date : April 1, 2015 Affected: Business Server 2.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in...

securityvulns•added 2015/05/05 12:0 a.m.•51 views

LibreOffice memory corruption

Memory corruption on HWP documents parsing...

6.8CVSS3.3AI score0.07403EPSS

Exploits0References1Affected Software2

securityvulns•added 2015/05/05 12:0 a.m.•52 views

[USN-2578-1] LibreOffice vulnerabilities

========================================================================== Ubuntu Security Notice USN-2578-1 April 27, 2015 libreoffice vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives:...

7.5CVSS1.5AI score0.07403EPSS

securityvulns•added 2015/05/05 12:0 a.m.•24 views

HUAWEI MobiConnect weak permissions

Weak permissions for executable files...

Exploits0References1Affected Software1

securityvulns•added 2015/05/05 12:0 a.m.•38 views

dnsmasq uninitialized memory dereference

Uninitilized memory dereference on DNS request parsing...

6.4CVSS3.6AI score0.00184EPSS

Exploits1References2Affected Software1

securityvulns•added 2015/05/05 12:0 a.m.•97 views

[SECURITY] [DSA 3242-1] chromium-browser security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3242-1 [email protected] http://www.debian.org/security/ Michael Gilbert April 30, 2015 http://www.debian.org/security/faq -...

7.5CVSS1.3AI score0.01563EPSS

securityvulns•added 2015/05/05 12:0 a.m.•62 views

Mobile Drive HD v1.8 - File Include Web Vulnerability

Document Title: =============== Mobile Drive HD v1.8 - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1446 Release Date: ============= 2015-03-11 Vulnerability Laboratory ID VL-ID: ==================================== 1446...

securityvulns•added 2015/05/05 12:0 a.m.•93 views

[ MDVSA-2015:209 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:209 http://www.mandriva.com/en/support/security/ Package : php Date : April 27, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated php packages fix security vulnerabilities:...

7.5CVSS8.5AI score0.38958EPSS

securityvulns•added 2015/05/05 12:0 a.m.•92 views

Incorrect handling of self signed certificates in OpenFire XMPP Server

Incorrect handling of self signed certificates in OpenFire XMPP Server Affected software: OpenFire XMPP server Affected versions: 3.9.3 and earlier Vulnerabilities addressed: CVE-2014-3451, CVE-2015-2080 Openfire is a real time collaboration RTC server licensed under the Open Source Apache Licens...

5CVSS0.91392EPSS

securityvulns•added 2015/05/05 12:0 a.m.•34 views

[USN-2576-1] usb-creator vulnerability

========================================================================== Ubuntu Security Notice USN-2576-1 April 23, 2015 usb-creator vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

securityvulns•added 2015/05/05 12:0 a.m.•70 views

[ALICLOUDSEC-VUL2015-001]Android wpa_supplicant WLAN Direct remote buffer overflow

Advisory Information Advisory URL: http://security.alibaba.com/blog/blog.htm?spm=0.0.0.0.p1ECc3&id=19 Date published: 2015-04-23 Date of last update: 2015-04-23 2. Vulnerability Information Class: heap overflow Impact: memory information leak and remote code execution Remote Exploitable: Yes...

5.8CVSS0.3AI score0.08546EPSS

securityvulns•added 2015/05/05 12:0 a.m.•86 views

[SECURITY] [DSA 3238-1] chromium-browser security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3238-1 [email protected] http://www.debian.org/security/ Michael Gilbert April 26, 2015 http://www.debian.org/security/faq -...

7.5CVSS0.5AI score0.02832EPSS

securityvulns•added 2015/05/05 12:0 a.m.•33 views

libphp-snoopy code execution

No description provided...

7.5CVSS1.8AI score0.02648EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/05 12:0 a.m.•54 views

[ MDVSA-2015:190 ] owncloud

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:190 http://www.mandriva.com/en/support/security/ Package : owncloud Date : April 1, 2015 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in...

6.8CVSS6AI score0.00703EPSS

securityvulns•added 2015/05/05 12:0 a.m.•24 views

glusterfs DoS

Infinite loop...

5CVSS1.3AI score0.01106EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/05/05 12:0 a.m.•74 views

Wireless File Transfer Pro Android - Multiple CSRF Vulnerabilities

Document Title: =============== Wireless File Transfer Pro Android - CSRF Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1437 Release Date: ============= 2015-02-25 Vulnerability Laboratory ID VL-ID: ====================================...

securityvulns•added 2015/05/05 12:0 a.m.•93 views

[slackware-security] proftpd (SSA:2015-111-12)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security proftpd SSA:2015-111-12 New proftpd packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+...

10CVSS8.5AI score0.93681EPSS

securityvulns•added 2015/05/05 12:0 a.m.•40 views

[ MDVSA-2015:211 ] glusterfs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:211 http://www.mandriva.com/en/support/security/ Package : glusterfs Date : April 27, 2015 Affected: Business Server 2.0 Problem Description: Updated glusterfs packages fix security vulnerability: glusterfs...

5CVSS8.5AI score0.01106EPSS

securityvulns•added 2015/05/05 12:0 a.m.•41 views

[SECURITY] [DSA 3241-1] elasticsearch security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3241-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 29, 2015 http://www.debian.org/security/faq -...

4.3CVSS1.4AI score0.91087EPSS

securityvulns•added 2015/05/05 12:0 a.m.•58 views

[ MDVSA-2015:204 ] librsync

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:204 http://www.mandriva.com/en/support/security/ Package : librsync Date : April 27, 2015 Affected: Business Server 1.0 Problem Description: Updated librsync packages fix security vulnerability: librsync...

5.8CVSS6AI score0.02282EPSS

securityvulns•added 2015/05/05 12:0 a.m.•92 views

[ MDVSA-2015:217 ] sqlite3

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:217 http://www.mandriva.com/en/support/security/ Package : sqlite3 Date : April 30, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Multiple vulnerabilities has been found and...

7.5CVSS8.9AI score0.0794EPSS

securityvulns•added 2015/05/05 12:0 a.m.•126 views

[SECURITY] [DSA 3248-1] libphp-snoopy security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3248-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 02, 2015 http://www.debian.org/security/faq -...

7.5CVSS1.4AI score0.02648EPSS

securityvulns•added 2015/05/05 12:0 a.m.•49 views

[ MDVSA-2015:207 ] perl-Module-Signature

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:207 http://www.mandriva.com/en/support/security/ Package : perl-Module-Signature Date : April 27, 2015 Affected: Business Server 1.0 Problem Description: Updated perl-Module-Signature package fixes the...

securityvulns•added 2015/05/05 12:0 a.m.•53 views

Linux ASLR mmap weakness: Reducing entropy by half

A bug in Linux ASLR implementation has been found. The issue is that the mmap base address for processes is not properly randomized on some architectures due to an improper bit-mask manipulation. Affected systems have reduced the mmap area entropy of the processes by half. The number of possible...

securityvulns•added 2015/05/05 12:0 a.m.•68 views

[USN-2577-1] wpa_supplicant vulnerability

========================================================================== Ubuntu Security Notice USN-2577-1 April 23, 2015 wpa vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...

5.8CVSS0.7AI score0.08546EPSS

Total number of security vulnerabilities47153