The Clockstone WordPress theme appears to suffer from a remote shell upload vulnerability.
c5c62b70f95fe9932f14fd229bfe88499c762fcf65f2241447059818767b8ab3Centrify Deployment Manager version 2.1.0.283 local root exploit that leverages a race condition in /tmp.
38f44fe5235206c1815107ebecea1649a3da90ccbf7baa70c756abbb16cd7901Enterpriser16 LB version 7.1 suffers from multiple cross site scripting vulnerabilities.
aa91eebfe06d0523d5a5bc5c93c855ec94ee4813c161cbd2081469cf89caa728SonicWall SonicOS version 5.8.1.8 suffers from a POST-based cross site scripting vulnerability.
69736c270ef6a91bbb98fe08a560c38028dab2cab42b016f68ad8173c6b98034MyBB MyYoutube plugin suffers from a stored cross site scripting vulnerability.
5442668c0b43e318f6415ef1ecbfd2ae45e2284829bd212ed0c8016ef762a3eeMyBB Xbox Live ID plugin suffers from a stored cross site scripting vulnerability.
7e0ca0889c7441be6bab586be3052a685789dc0fb626292b68cecb36254a3a25MyBB Profile Skype ID plugin version 1.0 suffers from a persistent cross site scripting vulnerability.
5e013aabc0196147facbf7738386c71c57b37bcc6a6f4f5840cf55448e173435MyBB MyTube plugin version 1.0 suffers from a persistent cross site scripting vulnerability.
d325c54a1faea9eed66d459ba6d4bbded28e0f02cd268edf7ebc3bf3a722f7cdMyBB Facebook Profile plugin version 2.4 suffers from a persistent cross site scripting vulnerability.
3b097c11871b6cf5ca13bc88715d08e215a08bdee3fffc396cb40fc0ca2f5733MyBB Bank Transactions plugin version 2.0 suffers from a remote SQL injection vulnerability.
b5222aa3da9434e51331f92cb0cbda2b2fa97e5fbd76eddfa0fe0fd087c25916Firefox version 17.0.1 crash proof of concept exploit.
8f52c23e864a01cfd2602317604d93d20ad4e5ae9071d033b024a5a3778f49ebThis Metasploit module exploits a heap based buffer overflow in the CrystalPrintControl ActiveX, while handling the ServerResourceVersion property. The affected control can be found in the PrintControl.dll component as included with Crystal Reports 2008. This Metasploit module has been tested successfully on IE 6, 7 and 8 on Windows XP SP3 and IE 8 on Windows 7 SP1. The module uses the msvcr71.dll library, loaded by the affected ActiveX control, to bypass DEP and ASLR.
e2e444f4f608cf2a5267e52972251a3f6dc63fb45578a2ac18f6eb5ad4684ec0phpwcms versions 1.5.4.6 and below preg_replace remote code execution exploit.
815d662d1defc929cafd32019bac1baf9c7bd4c542eedf9b6366400a07994cd5Rokbox version 2.13 for WordPress suffers from content spoofing, cross site scripting, denial of service, path disclosure, and various other vulnerabilities.
51a81a8d051d242f2a2efc2c318db1e018963bd4d73085533099aba88545bf32The National Weather Service site at weather.noaa.gov suffers from a cross site scripting vulnerability.
e04b959f09b5af9ce7f9b2cbc3bab1960972e0b243ccec283657989ff930cc26It has been reported that many Peruvian universities suffer from remote SQL injection vulnerabilities.
3a065f6e2e9034a46e246a31e0787be79b96296967cd1e8a1095ef1e9c639269Sites designed by Phuse Web Design, Element C2, and Cox Web and Design suffer from a remote SQL injection vulnerability. Note that these findings house site-specific data.
504123cfc20a40a7941798db5ac7a257396e4266ab0caf5439362350aeb60890Sites designed by Pro-Service, Pulse Solutions, and Orphmedia suffer from a cross site scripting vulnerability. Note that these findings house site-specific data.
5e38611813699dd9ee222b601e6d0400e6726f1ccda60cec5442ffede8f00edbSites created by Tristar, Studio Umbrella, and Intelligent Soft Solutions suffer from a remote SQL injection vulnerability. Note that these findings house site-specific data.
663bee86429fe5059427fa7cbf13c09c652f8015577883f6a83873176982fc09Websites designed by Toto, WebConnection, and Tides all suffer from a cross site scripting vulnerability. Note that these findings house site-specific data.
919bc329ba62202198f938810d30f99a1d9e33e05ce7f90f66a2ac6b3bc32900Sites created by Nissi Infotech, Pej Studio, and Plante Graffix suffer from a cross site scripting vulnerability. Note that these findings house site-specific data.
4738782f8078e0ecdc921eb6931e8fcd4e1886f030c64327124d0ed97988d158Adobe Flash Player version 11.5.502.135 suffers from a memory corruption vulnerability.
07d935a47e6f39722a8226e2bd3af1f187d5d638fd758d8583b7629f285c8c63MyBB plugin Profile Skype ID version 1.0 suffers from a persistent cross site scripting vulnerability.
cb32773a9298280e88fa37b95b9cdf814b7f82cacf14a4c18d19123305094269Totem Movie Player version 3.4.3 with GStreamer version 0.10.36 suffers from a stack corruption vulnerability.
5b07f9e2d077151423280273534963eaef45c111f2dbf2a27e6e1fb2f488acf9TWiki versions 4.x and 5.1.0 through 5.1.2 suffers from a remote command execution vulnerability due to an underlying security issue in the Locale::Maketext CPAN module.
cb72251d574c616e51ff36e8cd83c9ea7e2a8b758b68d28544a8988cc1c489f9
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed