47153 matches found
DoS via tables corruption in WordPress
Hello 3APA3A! There is DoS vulnerability in WordPress, about which I wrote in 2009 http://websecurity.com.ua/3152/, on English http://perishablepress.com/important-security-fix-for-wordpress/comment-page-5/comment-71666, which allows to conduct DoS attack or reinstall of the engine depending on...
Vulnerabilities in plugins with CU3ER for WordPress, Joomla, SilverStripe and Plone
Hello 3APA3A! Recently I disclosed vulnerabilities in CU3ER http://seclists.org/fulldisclosure/2014/Apr/244. This is popular flash file and in Google's index there are up to million web sites with it inurl:cu3er.swf filetype:swf - now Google shows 994000 results. There are any plugins for differe...
[SECURITY] CVE-2013-2251: Apache Archiva Remote Command Execution
CVE-2013-2251: Apache Archiva Remote Command Execution Severity: Important Vendor: The Apache Software Foundation Versions Affected: - Archiva 1.3 to Continuum 1.3.6 - The unsupported versions Archiva 1.2 to 1.2.2 are also affected. Description: Apache Archiva is affected by a vulnerability in th...
[SECURITY] [DSA 2916-1] libmms security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2916-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 28, 2014 http://www.debian.org/security/faq -...
Apple TV multiple security vulnerabitilies
Unsafe cookie handling, protection ypass, information leakage, multiple WebKit vulnerabilities...
FreeBSD bfs deadlock
It's possible to cause deadlock on valid operations order...
Depot WiFi v1.0.0 iOS - Multiple Web Vulnerabilities
Document Title: =============== Depot WiFi v1.0.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1259 Release Date: ============= 2014-04-23 Vulnerability Laboratory ID VL-ID: ==================================== 1259...
Adobe Flash Player multiple security vulnerabilities
Use-after-free, buffer overflow, restrictions bypass, crossite scripting...
[security bulletin] HPSBPI03014 rev.1 - HP LaserJet Pro MFP Printers, HP Color LaserJet Pro MFP Printers, Remote Disclosure of Information
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04262495 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04262495 Version: 1 HPSBPI03014 rev....
[security bulletin] HPSBHF03006 rev.1 - HP Integrated Lights-Out 2 (iLO 2) Denial of Service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04244787 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04244787 Version: 1 HPSBHF03006 rev....
APPLE-SA-2014-04-22-2 iOS 7.1.1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-04-22-2 iOS 7.1.1 iOS 7.1.1 is now available and addresses the following: CFNetwork HTTPProtocol Available for: iPhone 4 and later, iPod touch 5th generation and later, iPad 2 and later Impact: An attacker in a privileged network positio...
Multiple vulnerabilities in Joomla-Base
Hello 3APA3A! These are Denial of Service, XML Injection, Cross-Site Scripting, Full path disclosure and Insufficient Anti-automation vulnerabilities in Joomla-Base. This is package of Joomla with different plugins with their vulnerabilities. These vulnerabilities are in Google Maps plugin for...
PDF Album v1.7 iOS - File Include Web Vulnerability
Document Title: =============== PDF Album v1.7 iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1255 Release Date: ============= 2014-04-11 Vulnerability Laboratory ID VL-ID: ==================================== 1255...
McAfee Security Scanner Plus privilege escalation
Privilege escalation via executable spoofing...
WinSCP proteciton bypass
Server X.509 certificate is not validated...
Multiple Vulnerabilities in MODX Revolution < = MODX 2.2.13-pl
Product description: ============ MODX originally MODx is a free, open source content management system and web application framework for publishing content on the world wide web and intranets. ============ MODX Revolution Blind SQL Injection CVE-2014-2736 ============ The application is vulnerab...
[SECURITY] [DSA 2888-1] ruby-actionpack-3.2 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2888-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 27, 2014 http://www.debian.org/security/faq -...
Cross-Site Scripting (XSS) in CMSimple
Advisory ID: HTB23205 Product: CMSimple Vendor: Preben Bjorn Biermann Madsen Vulnerable Versions: 3.54 and probably prior Tested Version: 3.54 Advisory Publication: February 26, 2014 without technical details Vendor Notification: February 26, 2014 Vendor Patch: February 26, 2014 Public Disclosure...
Syhunt Advisory: CGILua session.lua Predictable Session ID Vulnerability
Syhunt Advisory: CGILua session.lua Predictable Session ID Vulnerability Advisory-ID: 201404301 Discovery Date: 03.27.2014 Release Date: 04.30.2014 Affected Applications: CGILua 5.0.x, CGILua 5.1.x., CGILua 5.2 alpha 1 & CGILua 5.2 alpha 2 Class: Predictable Session ID Status: Unpatched/Vendor...
HP iLO DoS
Device crashes on request with Hearbleed exploitation demonstration...
CVE-2014-1217 - Unauthenticated access to sensitive information and functionality in Livetecs Timelive
Vulnerability title: Unauthenticated access to sensitive information and functionality in Livetecs Timelive CVE: CVE-2014-1217 Vendor: Livetecs Product: Timelive Affected version: 6.2.71 Fixed version: 6.2.8 Reported by: Richard Hatch Details: It was possible to access a URL that allowed...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
[USN-2166-1] Net-SNMP vulnerabilities
========================================================================== Ubuntu Security Notice USN-2166-1 April 14, 2014 net-snmp vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
XSS and FPD vulnerabilities in Js-Multi-Hotel for WordPress
Hello 3APA3A! These are vulnerabilities in Js-Multi-Hotel plugin for WordPress. ------------------------- Affected products: ------------------------- Vulnerable are Js-Multi-Hotel 2.2.1 and previous versions. ------------------------- Affected vendors: ------------------------- Joomlaskin...
CVE-2014-2383 - Arbitrary file read in dompdf
Vulnerability title: Arbitrary file read in dompdf CVE: CVE-2014-2383 Vendor: dompdf Product: dompdf Affected version: v0.6.0 Fixed version: v0.6.1 partial fix Reported by: Alejo Murillo Moyas Details: An arbitrary file read vulnerability is present on dompdf.php file that allows remote or local...
Net-SNMP multiple security vulnerabilities
Multiple DoS conditions...
APPLE-SA-2014-04-22-4 AirPort Base Station Firmware Update 7.7.3
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-04-22-4 AirPort Base Station Firmware Update 7.7.3 AirPort Base Station Firmware Update 7.7.3 is now available and addresses the following: Available for: AirPort Extreme and AirPort Time Capsule base stations with 802.11ac Impact: An...
Multiple Vulnerabilities in VideoWhisper Live Streaming Integration WP Plugin
Advisory ID: HTB23199 Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor Notification: February 6, 2014 Vendor Patch: February 7, 2014...
Multiple vulnerabilities in JoomLeague for Joomla
Hello 3APA3A! These are Denial of Service, XML Injection, Cross-Site Scripting, Full path disclosure and Insufficient Anti-automation vulnerabilities in JoomLeague plugin for Joomla. These vulnerabilities are in Google Maps plugin for Joomla, which is used in this plugin. In 2013-2014 I wrote...
CVE-2014-2597 - Denial of Service in PCNetSoftware RAC Server
Vulnerability title: Denial of Service in PCNetSoftware RAC Server CVE: CVE-2014-2597 Vendor: PCNetSoftware Product: RAC Server Affected version: 4.0.4, 4.0.5 Fixed version: N/A Reported by: Kyriakos Economou Details: Latest and possibly earlier versions of RAC Server software are vulnerable to...
SQL Injection in mAdserve
Advisory ID: HTB23209 Product: mAdserve Vendor: MobFox Vulnerable Versions: 2.0 and probably prior Tested Version: 2.0 Advisory Publication: March 26, 2014 without technical details Vendor Notification: March 26, 2014 Public Disclosure: April 16, 2014 Vulnerability Type: SQL Injection CWE-89 CVE...
SQL Injection in AdRotate
Advisory ID: HTB23201 Product: AdRotate Vendor: AJdG Solutions Vulnerable Versions: 3.9.4 and probably prior Tested Version: 3.9.4 Advisory Publication: January 30, 2014 without technical details Vendor Notification: January 30, 2014 Vendor Patch: January 31, 2014 Public Disclosure: February 20,...
[USN-2182-1] QEMU vulnerabilities
========================================================================== Ubuntu Security Notice USN-2182-1 April 28, 2014 qemu, qemu-kvm vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...
[SECURITY] [DSA 2913-1] drupal7 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2913-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 25, 2014 http://www.debian.org/security/faq -...
[USN-2179-1] Linux kernel vulnerabilities
========================================================================== Ubuntu Security Notice USN-2179-1 April 26, 2014 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
[USN-2173-1] Linux kernel vulnerabilities
========================================================================== Ubuntu Security Notice USN-2173-1 April 26, 2014 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
Multiple CSRF and XSS vulnerabilities in D-Link DAP 1150
Hello 3APA3A! In 2011 and beginning of 2012 I wrote about multiple vulnerabilities http://securityvulns.ru/docs27440.html, http://securityvulns.ru/docs27677.html, http://securityvulns.ru/docs27676.html in D-Link DAP 1150 several dozens. That time I wrote about vulnerabilities in admin panel in...
[ MDVSA-2014:079 ] json-c
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:079 http://www.mandriva.com/en/support/security/ Package : json-c Date : April 17, 2014 Affected: Business Server 1.0 Problem Description: Updated json-c packages fix security vulnerabilities: Florian Weimer...
json-c security vulnerabilities
Buffer overflow, weak hashing algorithm...
APPLE-SA-2014-04-22-1 Security Update 2014-002
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-04-22-1 Security Update 2014-002 Security Update 2014-002 is now available and addresses the following: CFNetwork HTTPProtocol Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.2...
[SECURITY] CVE-2014-0111 Apache Syncope
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2014-0111: Remote code execution by an authenticated administrator Severity: Important Vendor: The Apache Software Foundation Versions Affected: Syncope 1.0.0 to 1.0.8 Syncope 1.1.0 to 1.1.6 Description: In the various places in which Apache Commo...
New vulnerabilities in Google Maps plugin for Joomla
Hello 3APA3A! Last year I wrote about multiple vulnerabilities in Google Maps plugin. After my informing the developer fixed them, but this year I found new vulnerabilities. These are Denial of Service and Insufficient Anti-automation vulnerabilities in Google Maps plugin for Joomla...
CVE-2014-2042 - Unrestricted file upload in Livetecs Timelive
Vulnerability title: Unrestricted file upload in Livetecs Timelive CVE: CVE-2014-2042 Vendor: Livetecs Product: Timelive Affected version: 6.2.71 Fixed version: 6.5.1 Reported by: Richard Hatch Details: It was discovered that it was possible for low-level TimeLive application users to upload file...
[security bulletin] HPSBGN03034 rev.1 - HP OneView, Remote Elevation of Privileges
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04273152 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04273152 Version: 1 HPSBGN03034 rev....
[USN-2190-1] JBIG-KIT vulnerability
========================================================================== Ubuntu Security Notice USN-2190-1 May 01, 2014 jbigkit vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...
[USN-2186-1] Date and Time Indicator vulnerability
========================================================================== Ubuntu Security Notice USN-2186-1 April 30, 2014 indicator-datetime vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...
Ubuntu Date and Time Indicator privilege escalation
It's possible to run applications as greeter user...
JBIG-KIT buffer overflow
Buffer overflow in jbgdecin on JPEG parsing...
Microsoft Internet Explorer use-after-free vulnerability
VGX.DLL use-after-free vulnerability is actively exploitd in-the-wild...
LSE Leading Security Experts GmbH - LSE-2014-04-10 - Sitepark IES - Unauthenticated Access
=== LSE Leading Security Experts GmbH - Security Advisory 2014-04-10 === Sitepark Information Enterprise Server IES - Unauthenticated Access --------------------------------------------------------------------- Affected Versions ================= Information Enterprise Server IES Version 2.9 unti...