Proof of concept crash exploit for Safari on iOS that leverage a denial of service vulnerability.
d2a4ed3ad5162815b83473100ea8f5c7
Apache CXF does not verify that elements were signed or encrypted by a particular Supporting Token. This affects all released versions as of 06/08/2012.
134f655bfffaf5a415493f9f5781ac60
Apache CXF does not pick up some child policies of WS-SecurityPolicy 1.1 SupportingToken policy assertions on the client side. Apache CXF versions 2.4.5 through 2.4.7, 2.5.1 through 2.5.3, and 2.6.0 are affected.
92050d8c8f388f16e0f1c4a6454e83ce
WordPress Front File Manager plugin version 0.1 suffers from a remote shell upload vulnerability.
49a50c77069a7b987425a4bffd627b26
RIPS Scanner version 0.10 suffers from a remote file disclosure vulnerability.
e54da733fa0c831f0554f97322389c06
WordPress WP Easy Gallery plugin version 1.8 suffers from a remote shell upload vulnerability.
2074f982e5d2c5e2eb840a26d8960dee
ComSndFTP server version 1.3.7 Beta suffers from a format string denial of service vulnerability.
9537fb0ce2655728f1cd7748fbc0606a
Webspell FIRSTBORN Movie-Addon suffers from a remote blind SQL injection vulnerability.
0c1953f1920dd3faa33d75a4b4d1df7c
vBulletin version 4.1.12 suffers from a MySQL information disclosure vulnerability.
fd7539f362a0ea9730bc4e72aae66056
vBulletin version 4.1.12 suffers from a path disclosure vulnerability.
4e154f9494e85bc2c6ed4d675211eaa0
WordPress wpStoreCart plugin versions 2.5.27 through 2.5.29 suffer from a remote shell upload vulnerability.
3c7ecb11ed893f0bbd0975428c8abfac
WordPress Tinymce Thumbnail Gallery version 1.0.7 suffers from a remote file disclosure vulnerability.
0f4e2ad65dc2fdb6ccbbd2886e87fabc
WordPress Thinkun Remind plugin version 1.1.3 suffers from a remote file disclosure vulnerability.
caac218f34a0b1c5f0a0257e268cf9fb
WordPress Simple Download Button Shortcode plugin version 1.0 suffers from a remote file disclosure vulnerability.
955b6c0e3570a5b9c00f37e5a67c4b72
WordPress RBX Gallery plugin version 2.1 suffers from a remote shell upload vulnerability.
46907cc18f2e9db77239e55895b2781e
WordPress Newsletter plugin version 1.5 suffers from a remote file disclosure vulnerability.
deb49c243376d13e972121a00de14f4f
CMS Wizard suffers from a remote SQL injection vulnerability.
f478f6dfb22bcd5d5a7009d8d5c5331c
WordPress Omni Secure Files plugin version 0.1.13 suffers from a remote shell upload vulnerability.
259bed292bc27a31288d8ef5644f3e31
WordPress Front End Upload plugin version 0.5.3 suffers from a remote shell upload vulnerability.
5ee2efa43eef9065627b5e4b57132d4e
CiativaWeb suffers from a remote SQL injection vulnerability.
c5b0b39663b89053f7d09ee87b6ffc6e
Secunia Research has discovered two vulnerabilities in Network Instruments Observer, which can be exploited by malicious people to compromise a vulnerable system. A boundary error in the "CSnmp::DecodePacket()" method (NISNMP.DLL) when processing the community string can be exploited to cause a heap-based buffer overflow via a specially crafted SNMP datagram. An error in the "CSnmp::DecodePacket()" method (NISNMP.DLL) when processing an Object Identifier (OID) can be exploited to cause a heap-based buffer overflow via a specially crafted Trap PDU (0xA4) SNMP datagram sent to UDP port 162. Successful exploitation of the vulnerabilities allows execution of arbitrary code, but may require the attacker to enumerate or guess the SNMP port. Observer version 15.1 Build 0007.0000 is affected.
2d0ebd977fc8e9b3b0b33604223b6e17
PHPNet versions 1.8 and below suffer from a remote SQL injection vulnerability in ler.php.
03858a63bc69a56aa9706ccc338c2615
Secunia Research has discovered a vulnerability in Network Instruments Observer, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error in the "CSnmp::ASN1_ReadObjIDValue()" method (NISNMP.DLL) when processing an Object Identifier (OID) within a variable binding list. This can be exploited to cause a limited stack-based buffer overflow and cause a crash only via e.g. a specially crafted SetRequest SNMP datagram. Observer version 15.1 Build 0007.0000 is affected.
409759421ffb449665a68945ab0a1c42
WordPress Picturesurf Gallery plugin version 1.2 suffers from a remote shell upload vulnerability.
6ad17f5b48a379b3437ac50994ff6b34
WordPress PICA Photo Gallery plugin version 1.0 suffers from a remote file disclosure vulnerability.
c7423f557796357011b70b7165f087e4