Sitecom Home Storage Center suffers from a directory traversal vulnerability.
54bf2fd7ecaaf33eb3cda294aface7a29aed76718918492532b189951ecbc711Conceptronic Grab'n'Go Network Storage suffers from a directory traversal vulnerability.
93cf477954aa7f9aeb590aa086ea47064b8af9b68d350d3199154a4f7a56457dThis is a whitepaper that was written for beginners learning how to write shellcode.
4408a4e26d5d0e08d0400d47fc4b5fbdc7ea9f4db3d206e9f0a533805edf17edGroup-Office Calendar versions 4.0.71, 4.0.73, and 4.0.88 suffer from a remote SQL injection vulnerability.
75efd32a5429a359441d4ca694173d09e02c6484a233c5fcf825d4647f3814dcThis Metasploit module exploits a stack buffer overflow in the SAP NetWeaver Dispatcher service. The overflow occurs in the DiagTraceR3Info() function and allows a remote attacker to execute arbitrary code by supplying a special crafted Diag packet. The Dispatcher service is only vulnerable if the Developer Traces have been configured at levels 2 or 3. The module has been successfully tested on SAP Netweaver 7.0 EHP2 SP6 over Windows XP SP3 and Windows 2003 SP2 (DEP bypass).
df2e94bf3f16b9b94127f76497e9d8f082577bd02bc6dd1ff0c5913c7b9ff7faSecunia Research has discovered a vulnerability in Adobe Photoshop, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by insufficient validation in Photoshop.exe when decompressing SGI24LogLum-compressed TIFF images. This can be exploited via a specially crafted TIFF image to cause a heap-based buffer overflow. Successful exploitation may allow execution of arbitrary code.
5b250b817b803791ecb2d09e8b49b1e908f5a7faf39121b38e3d74b57f9b9b57ArticleSetup version 1.1 suffers from multiple remote SQL injection vulnerabilities.
c56e3cb2ec3a21aafa2509c81326435f07421bb3c5ab1a971fc918da398c3f82Plante Graffix suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
93d5da19409b0c29978e0ae303f9796339f11cd344ef16cb2abe44aa6f234582Studio-One CMS versions 1.7.1 and 1.11b suffer from a remote blind SQL Injection vulnerability. Note that this finding houses site-specific data.
5ad28110810d3f7b1fc935a71ea4f62fa3c6db304eb9c0724237c8a7c67db3d4InterPhoto CMS version 2.4.0 suffers from a remote shell upload vulnerability.
457ce4845991796c998a0ed68990b6fe83d6f0bf9ac3ae69ab642c73e3066f95Flexap.am Control Panel version 5.1 suffer from a remote blind SQL injection vulnerability. Note that this finding houses site-specific data.
affb027023e9cdd295090a22d861742d331f68bea85915f81cc6f4a624a6658dSitemax Maestro version 2.0 suffers from local file inclusion and remote SQL injection vulnerabilities.
e2f491d67885ede5c96a111fb35eb48b8ab56eaf65ab53718559aefdf65d3442EasyWeb suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
583bba054580237d31d824cdefc9a3a038c3b0a9de638f33a80e3f50f881ce9fAV Arcade Free Edition suffers from a remote blind SQL injection vulnerability.
4824ee1aa6674200db80c124a518a0989e057c9427cda66c7cd6eaa0d9827641Digital Whisper Electronic Magazine issue 35. Written in Hebrew.
a8cc3e9ffec78c58506637c8dc71eb00355709a3b933c6dcfa190703f7d5f606Secunia Security Advisory - A vulnerability has been discovered in the iCagenda component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
de10957b749fa3052c23835a031ca84c21ae5b0678e2248877641a5d2eb79273Secunia Security Advisory - Stefan Schurtz has discovered two vulnerabilities in Admidio, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
80eb6196b4c43a02d7fd102376080e429212d16b32eb7ae1cf0ca52e1bfa7c4bSecunia Security Advisory - Multiple vulnerabilities with an unknown impact have been reported in FFmpeg.
9aed7a759041f92efe38211afeed4056d6a61b78ae8af0e96266ab210641ec2bSecunia Security Advisory - Alcyon has reported a vulnerability in Conceptronic CH3ENAS devices, which can be exploited by malicious people to disclose potentially sensitive information.
ecdcf02bc3120251f87734929c233c692fbab427ea8171b85c63d1aca3441938Secunia Security Advisory - A vulnerability has been discovered in AV Arcade Free, which can be exploited by malicious people to conduct SQL injection attacks.
ce9ff9c75cad8970601540ce1ea08b03cef4c5e98e6d14c632d451f843430da9Secunia Security Advisory - SUSE has issued an update for gimp. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
86ea5e142cf49d88f225dec97170a5ba0255f05217e7a050e4512f5c7b415f8aSecunia Security Advisory - Alcyon has reported a vulnerability in Sitecom MD-253 and MD-254 devices, which can be exploited by malicious people to disclose potentially sensitive information.
87c70f345d5a6c020522bd7e7627baf056528a954dcc501758425eae3cbc7b84Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in CyberLink KoanBox ActiveX Control, which can be exploited by malicious people to compromise a user's system.
6ad3862139e2acd656f2e5119f17b296ba168fb70e2868973c0f77d98252248eSecunia Security Advisory - Parvez Anwar has discovered a vulnerability in CyberLink StreamAuthor, which can be exploited by malicious people to compromise a user's system.
f16a410194d9afa257b33987872e5bbca6a379d543073e96d4bf9599e39bb444Secunia Security Advisory - Parvez Anwar has discovered two vulnerabilities in CyberLink LabelPrint, which can be exploited by malicious people to compromise a user's system.
549a3e11f4027964ab1936fe0571c436f7512f882ed05a0fe957175a935d75da
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed