| Email address | private |
|---|---|
| Website | websecurity.com.ua |
| First Active | 2007-07-07 |
| Last Active | 2019-07-08 |
JW Player Pro versions 5.10.2295 and below suffers from cross site scripting and content spoofing vulnerabilities.
acc75c88cc5eca754830915e33670feca1632c8795fc3987919f0946eecc4e29CakePHP and Squiz CMS suffer from XXE injection vulnerabilities.
961339f6ca18d70df5c08cf52ba52dcf3e959a21197fa995450430621e4c7f3fZend Framework suffers from local file disclosure via XXE injection.
eb7c6a34464370c4bd7ce549e0dfb4ef4024f3518120db41e18e374bcccf17c4Various flash players, such as JWPlayer for MODx, Simple video flash player for Joomla, Poodll for Moodle, RokBox for Joomla, and RokBox for WordPress all suffer from a cross site scripting vulnerability.
260067c1b6a7935399c21b2621857237ac79808b7df319270dbb7fa906648b17Akismet version 2.5.6 suffers from cross site request forgery and cross site scripting vulnerabilities.
80fd2945fb11406963aab824dedf83f727c0c37ef1aa8104a8256df820d3cbe7Lidosys CMS suffers from remote SQL injection and information disclosure vulnerabilities.
aed75f9b422d398ddc8a3bc152ec5a54b7aa049ce7c63239350a7471edf79f3cWordPress Organizer plugin versions 1.2.1 and below suffers from cross site scripting, path disclosure, and directory traversal vulnerabilities.
499ba81c5e032c115807a91abe6758588eeb0c10a987d47065e5c933fa096c56JW Player version 5.9.x suffers from cross site scripting and content spoofing vulnerabilities.
745dad00f0d27c02390246bb3d97b20455221ab826e6936bd3380eebb74e5e06Yandex.Server version 2010 9.0 Enterprise suffers from a cross site scripting vulnerability.
7be25af2c11de6d35265a9dbf7c47a1f05b8735eb5b46f23a2623887426bfcfdWordPress Organizer version 1.2.1 suffers from cross site request forgery, cross site scripting, and shell upload vulnerabilities.
5d7da27b984ced3d8195b475c086f6fa632941aa13a56de1779eb08cce7b634dWordPress Organizer version 1.2.1 suffers from cross site scripting and path disclosure vulnerabilities.
cb5eaf654ba60434ea63c8dd98d4f667086ce8f96b6c93a73f6f3eeaf17f507aRegister Plus Redux version 3.7.2 for WordPress appears to suffer from additional cross site scripting vulnerabilities.
db3fb962011dd8d10dc7bbbb09fa3e33e1b8850fab7bbad4805726fff8226418EJBCA versions 4.0.7 and below suffer from cross site scripting and user enumeration vulnerabilities.
0f7a6afa9000c6f064009e9d7b14d0a535d2af6c02184211d70657d7d27c66a3Webglimpse versions 2.18.8 and below suffer from brute force and cross site scripting vulnerabilities.
a0943529142736b3e255c45f2904c9a7f68409577175472a5ffda0433f652636The D-Link DAP 1150 suffers from cross site request forgery, cross site scripting and denial of service vulnerabilities.
84d992689d283edc1df7b827c78c8b56fe44c863680d45edf495fbff087bbea0Register Plus versions 3.5.1 and below for WordPress suffer from code execution, cross site scripting and path disclosure vulnerabilities.
8af0748bb44a2d219bb2dab50499ab80ee471af807d2e71af2be053afca0860dRegister Plus Redux versions 3.7.3.1 and below suffer from cross site scripting, remote SQL injection and code execution vulnerabilities.
17b9d0bec625320c3f3fe806c42459e82b0311c9162527242328071b9eb678d9The D-Link DAP 1150 wifi access point and router suffers from cross site request forgery vulnerability, predictable resource location and brute force vulnerabilities.
5d314e940e386e7cdbbf532598c7c01e66fef612c6cd8783629c6bc6d05bea18The D-Link DSL-500T ADSL router suffers from cross site request forgery, brute force and predictable resource location vulnerabilities.
e1197c8518b708baebfcc89aaa6623dcba5d96a385f0f97bae7e527c4ce530bcZeema CMS suffers from cross site scripting, information leakage and remote SQL injection vulnerabilities.
0e88167fb75ef28d1a96a7a15c4869c8737467e133fe9a9d89a228940d3866b0Zeema CMS suffers from cross site scripting, brute force and path disclosure vulnerabilities.
68c544778269a8c6219cf63ce9c2189cd1eec1cc61b60b867fd4ea9bea2c143cRoundCube version 0.6 suffers from cross site scripting, content spoofing, brute force and clickjacking inclusion vulnerabilities.
9dc10274c217ba92b21fcd905f28a73c27560f55021f768548de73a3ce642a34TinyMCE and flvPlayer suffer from cross site scripting, path disclosure and content spoofing vulnerabilities.
872046dfd1f633c8ebc6d604cc01ec5c313e98caa38f7140a61c93262c92a99dAdobe ColdFusion 9 suffers from denial of service and path disclosure vulnerabilities.
c762cc8de72a8791139ab35b5a17100c35a7cd95e037d72f1b167b6f20fde5ebpoMMo Aardvark version PR16.1 and below suffer from brute force, insufficient anti-automation, and cross site scripting vulnerabilities.
4a4c5af254198f68cea36317c0e9835adfe2a92bfc0db43a4f74945c9778565f
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed