what you don't know can hurt you
Showing 1 - 25 of 28 RSS Feed

Files Date: 2012-11-27

PayPal Open Redirection
Posted Nov 27, 2012
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

The PayPal Reports (Berichte) export module suffers from an open redirection vulnerability.

tags | exploit
SHA-256 | 1e0589ba363292861a8ae341f3eba3df5f0b916505178bc7016353a2df8c5a77
Piwik 1.9.2 Backdoor
Posted Nov 27, 2012
Authored by Maximilian Grobecker

It was discovered that Piwik version 1.9.2 has a backdoor embedded inside of it.

tags | advisory
SHA-256 | 8a2ec60b46186d11c72baf6ef646f7c1928fbad34b08022d4182a6653660cbba
Penetration Testing Whitepaper
Posted Nov 27, 2012
Authored by Caleb Bucker

Whitepaper called Penetration Testing: Analisis Web - Evaluacion de Vulnerabilidades - Explotacion. Written in Spanish.

tags | paper, web
SHA-256 | 0c983e667bad54fcb8aae4646fb64ce025be715423e2eb9a83b06dfa8e1fdf4e
Apple WGT Dictionnaire 1.3 Script Code Injection
Posted Nov 27, 2012
Authored by Ibrahim El-Sayed, Vulnerability Laboratory | Site vulnerability-lab.com

Apple WGT Dictionnaire version 1.3 suffers from a script code injection vulnerability.

tags | exploit
systems | apple
SHA-256 | 14f69e37dbf1a5053dc0a2a1784b6ba05faf09fe11232fd01808e0a8247de914
WordPress Myflash Local File Inclusion
Posted Nov 27, 2012
Authored by Ashiyane Digital Security Team

WordPress Myflash third party plugin suffers from a local file inclusion vulnerability. Note that this finding houses site-specific data.

tags | exploit, local, file inclusion
SHA-256 | ab16c3fa650c2cf470a470a4b075adc1495a27dfd78384bbc2a311a8a164a3f3
Secunia Security Advisory 51437
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Google Chrome, where one has an unknown impact and others can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
SHA-256 | 290a43d6c1a6c6b419697175de4aa7a6f5df8280f471bc8a67da7e70d6a9981f
Secunia Security Advisory 51413
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for xen. This fixes a security issue and multiple vulnerabilities, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and gain escalated privileges and by malicious users to disclose sensitive information.

tags | advisory, denial of service, local, vulnerability
systems | linux, suse
SHA-256 | 8d5c82b2135b8fee3bc6c539e56c239f2e99876f5b131a7eea9204d56397626c
Secunia Security Advisory 51376
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability with an unknown impact has been reported in the sh404SEF component for Joomla!.

tags | advisory
SHA-256 | efaaee26dcc2f4e6db7f1c289a609dbc2f5d02e3fdca69f8d33055f9b31c53fe
Secunia Security Advisory 51372
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Symfony, which can be exploited by malicious people to disclose certain sensitive information.

tags | advisory
SHA-256 | dbf551ac5317040f86908332989c6210c6a2d8517338e2fd3e55e8d9a4f6a74d
Secunia Security Advisory 51408
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in EMC Smarts Network Configuration Manager, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
SHA-256 | 8a856554ff219076a9c45ac3cd90e64369483dc4e212fa59d94eadcae656c2fd
Secunia Security Advisory 51415
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - High-Tech Bridge has discovered some vulnerabilities in Smartphone Pentest Framework, which can be exploited by malicious people to conduct cross-site request forgery attacks and compromise a vulnerable system.

tags | advisory, vulnerability, csrf
SHA-256 | 0723934d07f4adbc2afeef00c8e8f8dbde56c4ad7f4f6a3167269c254333a952
Secunia Security Advisory 51385
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the WooCommerce Predictive Search plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | fa19214f530dcf844be4116a8517ea81747c3d800bfad9c41d267f0a58b997d2
Secunia Security Advisory 51394
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in RSA Adaptive Authentication, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | 2dc199560db0124428b0dc38c10e64765b10ec394d6e4d05e4e8d027d45f9ac2
Secunia Security Advisory 51414
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been discovered in Smartphone Pentest Framework, which can be exploited by malicious people to conduct SQL injection attacks and compromise a vulnerable system.

tags | advisory, vulnerability, sql injection
SHA-256 | bb6e261b7edb002da1fae0a45d795144d170044f3c548e0594685bd884397941
Secunia Security Advisory 51407
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for libssh. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, ubuntu
SHA-256 | b59c6ac49c3e5060eb26707d25398330808fa7262a4252a81ff263de92b73d03
Secunia Security Advisory 51384
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the WP e-Commerce Predicitive Search plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | f7a702b355e6f0387f328602d8e1e163b0a9b80eea6cf33dad4246248d81f266
Secunia Security Advisory 51395
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in ClassifiedScript, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
SHA-256 | a98686e063b7e05c60996a187c2918877a899b79d2a07ae1672fa699a9973fda
Secunia Security Advisory 51406
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Metropolis has reported a vulnerability in Beat Websites, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
SHA-256 | 02fa5cec62cd0eb13439a5a1b57da1006c2c0189c374279721ea96a5598ab869
Secunia Security Advisory 51304
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in Piwik, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
SHA-256 | 71ac4f9f36ca79b38dd76b746e235c8c77f97348fe95bcc2cc3a5b1d042132e7
Secunia Security Advisory 51398
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue and two vulnerabilities have been discovered in Greenstone, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information.

tags | advisory, vulnerability, xss
SHA-256 | fe98216e4aabcacb304f411427316aa8a054cc822f15207f4e1a88716d0b8c50
Secunia Security Advisory 51368
Posted Nov 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in phpCAS, which can be exploited by malicious people to conduct spoofing attacks.

tags | advisory, spoof
SHA-256 | a5a96a7db7145f90971a55670620bc7e469891670bc59a4fa4a1c9553ee0e609
Forescout NAC 6.3.4.1 XSS / Redirection / Filter
Posted Nov 27, 2012
Authored by Joseph Sheridan | Site reactionpenetrationtesting.co.uk

Forescout NAC (Network Access Control) version 6.3.4.1 suffers from ICMP and ARP protocols not being filtered, cross site scripting, and cross site redirection vulnerabilities.

tags | exploit, vulnerability, protocol, xss
advisories | CVE-2012-4985, CVE-2012-4982, CVE-2012-4983
SHA-256 | 90ab742926bd9cb0fc57e37ec8e11486dca2cd8c598556ffb9050f73ff6d40b3
BugTracker.Net 3.5.8 XSS / SQL Injection / File Disclosure
Posted Nov 27, 2012
Authored by DefenseCode

BugTracker.Net versions 3.5.8 and below suffer from cross site scripting, file disclosure, and remote SQL injection vulnerabilities.

tags | advisory, remote, vulnerability, xss, sql injection
SHA-256 | 07b4beeb256cbf8c5f0d3759fcd338c89a7c545ae95b815b4e6b4126652889be
RSA Adaptive Authentication (On-Premise) 6.x XSS
Posted Nov 27, 2012
Site emc.com

RSA Adaptive Authentication (On-Premise) version 6.x contains cross site scripting vulnerabilities that could be exploited by malicious users.

tags | advisory, vulnerability, xss
advisories | CVE-2012-4611
SHA-256 | 84f8cf21f7e1dfc3a155bca1ff11ed500da27015edcbfdf7f394bf6e738444f1
Skype Community Username Cross Site Scripting
Posted Nov 27, 2012
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

A filter and mail encoding vulnerability in the Skype Community website application allows for cross site scripting due to a lack of sanitization in the username parameter.

tags | exploit, xss
SHA-256 | 8139126dc6bd54dfa68f620141919aee07c4e0dfb91c8b9a3c0ad4c2c83d5fd4
Page 1 of 2
Back12Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    6 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close