Securityvulns - Page 87 of Securityvulns Vulnerabilities List | Vulners.com

SecurityvulnsRecent

Recent Most viewed

47153 matches found

securityvulns•added 2013/10/01 12:0 a.m.•44 views

XSS and Redirector vulnerabilities in InstantCMS

Hello 3APA3A! These are Cross-Site Scripting and Redirector vulnerabilities in InstantCMS. ------------------------- Affected products: ------------------------- Vulnerable are InstantCMS 1.10.2 and previous versions. ------------------------- Affected vendors: ------------------------- InstantSo...

securityvulns•added 2013/10/01 12:0 a.m.•54 views

Open-Xchange Security Advisory 2013-09-10

Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Internal reference: 28260 Bug ID Vulnerability type: CWE-16: Configuration, CWE-287: Improper Authentication, CWE-200: Information Exposure Vulnerable version: 7.0.0 to 7.2.2 Vulnerable component: backend default configuration Fixed version...

7.5CVSS0.2AI score0.00514EPSS

securityvulns•added 2013/10/01 12:0 a.m.•72 views

[USN-1968-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-1968-1 September 27, 2013 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.9CVSS0.1AI score0.00054EPSS

securityvulns•added 2013/10/01 12:0 a.m.•78 views

eTransfer Lite v1.0 iOS - Persistent Filename Vulnerability

Title: ====== eTransfer Lite v1.0 iOS - Persistent Filename Vulnerability Date: ===== 2013-08-31 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1064 VL-ID: ===== 1064 Common Vulnerability Scoring System: ==================================== 3.8 Introduction:...

securityvulns•added 2013/10/01 12:0 a.m.•51 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

4.3CVSS1.6AI score0.14098EPSS

Exploits6References10Affected Software7

securityvulns•added 2013/10/01 12:0 a.m.•77 views

APPLE-SA-2013-09-26-1 iOS 7.0.2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-09-26-1 iOS 7.0.2 iOS 7.0.2 is now available and addresses the following: Passcode Lock Available for: iPhone 4 and later Impact: A person with physical access to the device may be able to make calls to any number Description: A NULL...

4.4CVSS0.2AI score0.00052EPSS

securityvulns•added 2013/10/01 12:0 a.m.•37 views

[USN-1980-1] Vino vulnerability

========================================================================== Ubuntu Security Notice USN-1980-1 September 30, 2013 vino vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.1CVSS0.3AI score0.18726EPSS

securityvulns•added 2013/10/01 12:0 a.m.•30 views

DavFS2 privilege escalation

Shell characters vulnerability...

7.2CVSS3.7AI score0.0081EPSS

Exploits2References1Affected Software1

securityvulns•added 2013/10/01 12:0 a.m.•28 views

Multiple vulnerabilities in RokIntroScroller for WordPress

Hello 3APA3A! I want to warn you about multiple vulnerabilities in plugin RokIntroScroller for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...

securityvulns•added 2013/10/01 12:0 a.m.•55 views

ESA-2013-060: EMC VPLEX Information Disclosure Vulnerability

ESA-2013-060.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-060: EMC VPLEX Information Disclosure Vulnerability EMC Identifier: ESA-2013-060 CVE Identifier: CVE-2013-3278 Severity Rating: CVSS v2 Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected products: • EMC VPLEX Local/Metro/Geo...

4.9CVSS0.4AI score0.00057EPSS

securityvulns•added 2013/10/01 12:0 a.m.•48 views

proftpd DoS

DoS via modsftp and modsftppam modules...

5CVSS2.4AI score0.01402EPSS

Exploits2References1Affected Software1

securityvulns•added 2013/10/01 12:0 a.m.•30 views

[ MDVSA-2013:244 ] davfs2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:244 http://www.mandriva.com/en/support/security/ Package : davfs2 Date : September 30, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: A vulnerability has been discovered and...

7.2CVSS6.3AI score0.0081EPSS

securityvulns•added 2013/10/01 12:0 a.m.•33 views

Multiple vulnerabilities in RokMicroNews for WordPress

Hello 3APA3A! I want to warn you about multiple vulnerabilities in plugin RokMicroNews for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...

securityvulns•added 2013/10/01 12:0 a.m.•49 views

[USN-1979-1] txt2man

========================================================================== Ubuntu Security Notice USN-1979-1 September 30, 2013 txt2man vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

3.3CVSS0.1AI score0.0004EPSS

securityvulns•added 2013/10/01 12:0 a.m.•100 views

XAMPP 1.8.1 Local Write Access Vulnerability

============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel Garcia Cardenas - Severity: 6,8/10 CVSS Base Score - CVE-ID: CVE-2013-2586...

4.3CVSS0.5AI score0.14098EPSS

securityvulns•added 2013/10/01 12:0 a.m.•39 views

Multiple vulnerabilities in RokNewsPager for WordPress

Hello 3APA3A! I want to warn you about multiple vulnerabilities in plugin RokNewsPager for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...

securityvulns•added 2013/10/01 12:0 a.m.•33 views

Vino VNC server DoS

Resources exhauston via connections...

7.1CVSS3AI score0.18726EPSS

Exploits5References1Affected Software1

securityvulns•added 2013/10/01 12:0 a.m.•37 views

Linux Kernel Patches For Linux Kernel Security

Hi forks! I release an article for linux kernel security. - http://www.x90c.org/articles/linuxkernelpatches.txt x90c...

securityvulns•added 2013/10/01 12:0 a.m.•28 views

EMC VPLEX Information leakage

Cleartetext passwords in configuration files...

4.9CVSS1.8AI score0.00057EPSS

Exploits0References1Affected Software1

securityvulns•added 2013/10/01 12:0 a.m.•41 views

hplip symbolic lcinks vulnerability

Unsafe temporary files handling...

1.9CVSS0.5AI score0.00076EPSS

Exploits0References1Affected Software1

securityvulns•added 2013/10/01 12:0 a.m.•29 views

Multiple vulnerabilities in InstantCMS

Hello 3APA3A! These are Login Enumeration, Cross-Site Scripting and Content Spoofing vulnerabilities in InstantCMS. ------------------------- Affected products: ------------------------- Vulnerable are InstantCMS 1.10.2 and previous versions. ------------------------- Affected vendors:...

securityvulns•added 2013/10/01 12:0 a.m.•46 views

Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities

Memory corruptions, integer overdlows, privilege escalations, code executions, information leakage...

10CVSS3.9AI score0.33161EPSS

Exploits4References1Affected Software4

securityvulns•added 2013/10/01 12:0 a.m.•38 views

libraw / libKDCraw DoS

Crash on raw images parsing...

4.3CVSS2.9AI score0.00512EPSS

Exploits1References1Affected Software1

securityvulns•added 2013/10/01 12:0 a.m.•68 views

[USN-1981-1] HPLIP vulnerabilities

========================================================================== Ubuntu Security Notice USN-1981-1 September 30, 2013 hplip vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

1.9CVSS0.2AI score0.00076EPSS

securityvulns•added 2013/10/01 12:0 a.m.•85 views

USN-1976-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-1976-1 September 30, 2013 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.2CVSS0.5AI score0.00515EPSS

securityvulns•added 2013/10/01 12:0 a.m.•39 views

[IBliss Security Advisory] Cross-site scripting ( XSS ) in PHP IDNA Convert

PHP IDNA Convert Cross-site scripting XSS Vendor product description PHP NetIDNA is a class to convert between the Punycode and Unicode formats. Punycode is a standard described in RFC 3492 and part of IDNA Internationalizing Domain Names in Applications RFC3490 . This class allows PHP scripts to...

securityvulns•added 2013/10/01 12:0 a.m.•37 views

CVE-2013-5118 - XSS Good for Enterprise iOS

Hello, Last month I identified a XSS vulnerability in the Good for Enterprise iOS application. The vulnerable versions are v2.2.2.1611 and earlier Proof of Concept: HTML Email including the following payload will execute Javascript statements when the victim open the email using the vulnerable...

4.3CVSS0.4AI score0.00406EPSS

securityvulns•added 2013/10/01 12:0 a.m.•26 views

txt2man symbolic links vulnerability

Unsafe temporary files creation...

3.3CVSS1.6AI score0.0004EPSS

Exploits0References1Affected Software1

securityvulns•added 2013/09/11 12:0 a.m.•36 views

Multiple vulnerabilities on D-Link Dir-505 devices

Multiple vulnerabilities on D-Link Dir-505 devices ================================================== ADVISORY INFORMATION Title: Multiple vulnerabilities on D-Link Dir-505 devices Discovery date: 05/04/2013 Release date: 09/09/2013 Credits: Alessandro Di Pinto alessandro.dipinto artificialstudio...

securityvulns•added 2013/09/11 12:0 a.m.•68 views

[ MDVSA-2013:227 ] python-setuptools

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:227 http://www.mandriva.com/en/support/security/ Package : python-setuptools Date : September 9, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: A vulnerability has been...

6.8CVSS6.4AI score0.00765EPSS

securityvulns•added 2013/09/11 12:0 a.m.•61 views

[slackware-security] subversion (SSA:2013-251-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security subversion SSA:2013-251-01 New subversion packages are available for Slackware 14.0 and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: +--------------------------+...

3.3CVSS9.1AI score0.00208EPSS

securityvulns•added 2013/09/11 12:0 a.m.•45 views

Sophos Web Protection Appliance code execution

Few command injections...

10CVSS3.9AI score0.92751EPSS

Exploits17References1Affected Software1

securityvulns•added 2013/09/11 12:0 a.m.•32 views

Microsoft Internet Explorer multiple security vulnerabilities

Multiple memory corruptions...

9.3CVSS2AI score0.81239EPSS

Exploits10Affected Software1

securityvulns•added 2013/09/11 12:0 a.m.•145 views

Microsoft Office multiple security vulnerabilities

Memory corruption on Outlook S/MIME parsing. Information leakage, multiple memory corruptions...

9.3CVSS3.3AI score0.73678EPSS

Exploits7Affected Software2

securityvulns•added 2013/09/11 12:0 a.m.•45 views

FreeBSD Security Advisory FreeBSD-SA-13:12.ifioctl

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-13:12.ifioctl Security Advisory The FreeBSD Project Topic: Insufficient credential checks in network ioctl2 Category: core Module: sysnetinet6 sysnetatm Announced...

6.9CVSS6.8AI score0.00059EPSS

securityvulns•added 2013/09/11 12:0 a.m.•76 views

HP ProCurve Manager, HP Identity Driven Manager multiple security vulnerabilities

Code execution, session reusage, SQL injection...

10CVSS2.1AI score0.89695EPSS

Exploits53References1Affected Software2

securityvulns•added 2013/09/11 12:0 a.m.•52 views

python libraries security vulnerabilities

SSL certificates parsing DoS, protection bypass...

6.8CVSS3.5AI score0.02979EPSS

Exploits0References2

securityvulns•added 2013/09/11 12:0 a.m.•48 views

FreeBSD Security Advisory FreeBSD-SA-13:13.nullfs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-13:13.nullfs Security Advisory The FreeBSD Project Topic: Cross-mount links between nullfs5 mounts Category: core Module: nullfs Announced: 2013-09-10 Credits:...

3.7CVSS6AI score0.00052EPSS

securityvulns•added 2013/09/11 12:0 a.m.•112 views

[CORE-2013-0809] Sophos Web Protection Appliance Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:...

10CVSS0.8AI score0.92751EPSS

securityvulns•added 2013/09/11 12:0 a.m.•48 views

FreeBSD Security Advisory FreeBSD-SA-13:11.sendfile

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-13:11.sendfile Security Advisory The FreeBSD Project Topic: Kernel memory disclosure in sendfile2 Category: core Module: sendfile Announced: 2013-09-10 Credits: E...

4.7CVSS6.4AI score0.00068EPSS

securityvulns•added 2013/09/11 12:0 a.m.•38 views

Subversion symbolic links vulnerabilitiy

Privilege escalation via symbolic links...

3.3CVSS4.6AI score0.00208EPSS

Exploits0References1Affected Software1

securityvulns•added 2013/09/11 12:0 a.m.•24 views

D-Link DIR-505 routers multiple security vulnerabilities

Code execution, directory taversal, weak encryption, privilege escalation, authentication bypass...

Exploits0References1

securityvulns•added 2013/09/11 12:0 a.m.•23 views

Microsoft Frontpage information leakage

XML information disclosure...

4.3CVSS0.6AI score0.13696EPSS

Exploits1Affected Software1

securityvulns•added 2013/09/11 12:0 a.m.•31 views

FreeBSD multiple security vulnerabilities

ifioctls privilege escalation, nullfs privilege escalation, sendfile information leakage...

6.9CVSS2.4AI score0.00068EPSS

Exploits0References3Affected Software1

securityvulns•added 2013/09/11 12:0 a.m.•78 views

[ MDVSA-2013:229 ] bzr

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:229 http://www.mandriva.com/en/support/security/ Package : bzr Date : September 10, 2013 Affected: Business Server 1.0 Problem Description: Updated bzr packages fix security vulnerabilities: A denial of...

4.3CVSS6.3AI score0.02979EPSS

securityvulns•added 2013/09/11 12:0 a.m.•61 views

Microsoft Windows multiple security vulnerabilities

OLE code execution, Windows Theme files code execution, kernel mode drivers privilege escalation, SCM privilege escalation, Acrive Directory DoS...

9.3CVSS5.5AI score0.82217EPSS

Exploits12Affected Software1

securityvulns•added 2013/09/11 12:0 a.m.•217 views

[security bulletin] HPSBPV02918 rev.1 - HP ProCurve Manager (PCM), HP PCM+ and HP Identity Driven Manager (IDM), SQL Injection, Remote Code Execution, Session Reuse

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03897409 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03897409 Version: 1 HPSBPV02918 rev....

10CVSS0.2AI score0.89695EPSS

securityvulns•added 2013/09/09 12:0 a.m.•60 views

VUPEN Security Research - Microsoft Internet Explorer Protected Mode Sandbox Bypass (Pwn2Own 2013 / MS13-059)

VUPEN Security Research - Microsoft Internet Explorer Protected Mode Sandbox Bypass Pwn2Own 2013 / MS13-059 Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and included as pa...

securityvulns•added 2013/09/09 12:0 a.m.•68 views

SEC Consult SA-20130904-0 :: GroupLink everything HelpDesk - undocumented password reset/admin takeover and XSS vulnerabilities

SEC Consult Vulnerability Lab Security Advisory 20130904-0 ======================================================================= title: Undocumented password reset and admin takeover & Cross-Site Scripting vulnerabilities product: GroupLink everything HelpDesk vulnerable version: =10.0.3 fixed...

securityvulns•added 2013/09/09 12:0 a.m.•45 views

Microsoft Windows multiple security vulnerabilities

Unicode Scripts Processor memory corruption, RPC privilege escalation, kernel protection bypass and memory corruptions, IPv6 and NAT DoS...

10CVSS3.5AI score0.88835EPSS

Exploits6References1Affected Software1

Total number of security vulnerabilities47153