The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually. Windows installer.
fd47a9374db59f4b3afe123975016976e532f71752fe45571336d16636ebc39a
The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually. Mac OS X release.
417d9208ea3df826f3641131f0f8c2c475cf56f7926f51be1a6c8b155c06b1c9
Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86_64 version.
3306c7e085052181a0b7cb7150f2e6a86adc9942ce70c90c6ca896ea79857940
All users of the following (and possibly earlier) versions of Panda security products for Windows are vulnerable to a local privilege escalation which allows a local attacker to elevate privileges from any account type and execute code as SYSTEM, thus obtaining full access over the compromised host.
bd05592c98a9bbeefe7ba5ee744232314670a99e8285c1dafadcf505cd119f51
BSS Continuity CMS version 4.2.22640.0 suffers from a remote blind SQL injection vulnerability.
43feb3cbd99eaefa88765c3c9103eabad8285af84513ee137eec680d6360a86e
BSS Continuity CMS version 4.2.22640.0 suffers from a denial of service vulnerability.
d7e9e0e3d9e9e78fbf9acded3c17d9c2499a49a7fd4828f158617351e69206d1
BSS Continuity CMS version 4.2.22640.0 suffers from a remote code execution vulnerability via an unauthenticated file upload.
f64096d831fab8b5daddf9da0cef7ef566ab842ef369e375cbf0cbd1cc51fd22
BSS Continuity CMS version4.2.22640.0 suffers from a direct access bypass vulnerability.
e3ab30109477b8b881798256ebec26615cccca5ae9a61b5ba335a7b9e3e124c4
DIR-605L suffers from password disclosure and authentication bypass vulnerabilities.
34ebc0a7494b884a027be858fbef805a053014d262af42c2fac420268583749f
Artikel CMS suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
29b2e71cf0e6d4b0890cf06eccdc9b57dff712a333e877aaf3ad3f221e394afe
ClassAd suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
02a2c0b255ff4254797f868e19ff5ad1d09521aa1ffc45f92f2aa33e8a00bbef
Sites using Flying Cart suffer from a cross site scripting vulnerability. Note that this finding houses site-specific data.
94e71e6c1f57749ac86022d71ebb2690578d7642017877347bfa8c2e2f9cfb4e
Debian Linux Security Advisory 2934-1 - Several vulnerabilities were discovered in Django, a high-level Python web development framework.
f3cac867348584be5c7e3a98278d62b519f5059a1407c982fa0160a95cfab217
Debian Linux Security Advisory 2933-1 - Several vulnerabilities were discovered in qemu-kvm, a full virtualization solution on x86 hardware.
4609c037e37dde4bff9f2e2e89d521f16f72c77707b5de202ee9ad47dad1558a
Red Hat Security Advisory 2014-0520-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Linux kernel processed an authenticated COOKIE_ECHO chunk during the initialization of an SCTP connection. A remote attacker could use this flaw to crash the system by initiating a specially crafted SCTP handshake in order to trigger a NULL pointer dereference on the system. A race condition flaw, leading to heap-based buffer overflows, was found in the way the Linux kernel's N_TTY line discipline implementation handled concurrent processing of echo output and TTY write operations originating from user space when the underlying TTY driver was PTY. An unprivileged, local user could use this flaw to crash the system or, potentially, escalate their privileges on the system.
cf3230577c1120f15292cc4b5ce4d76ea79c82dfeeb2391d814a2ba0d353662d
Red Hat Security Advisory 2014-0522-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. This update fixes several vulnerabilities in the MariaDB database server. These updated packages upgrade MariaDB to version 5.5.37.
6c7b692716d4b3231366034b209f15ed6358a6cc0307d2637ae8cab01d54704d
FTP Rush version 2.1.8 fails to validate X.509 certificates.
08db1ca6e7f0ad3753320343d94123a3e0682c3ebd85684834dbf71b50e8349d