TYPO3 CMS versions 2.0.3 and below suffer from a cross site scripting vulnerability.
4a81caee2bc61c8db645d0d58f8ebafd
BoZon version 2.4 suffers from a pre-authentication remote command execution vulnerability.
dfaef3a183675d0d76056b163c1bb642
dirList version 0.3.0 suffers from file upload bypass and remote command execution vulnerabilities.
610809d93925f3ef53825df4b21b21e6
Tempest Security Intelligence Advisory ADV-2/2016 - Atlassian Jira version 7.1.7 suffers from a cross site scripting vulnerability.
e6472969a5940d87f287d0be2baf9fe3
WordPress Direct Download for WooCommerce versions up to 1.15 suffer from a local file inclusion vulnerability.
bb66f3e733500d157bafada42f0d1eba
EuskalHack Security Congress is the first Ethical Hacking association in Euskadi, with the aim of promoting the community and culture in digital security to anyone who may be interested. It will be held June 23rd through the 24th, 2017 in Donostia - San Sebastian.
9266366ff5b618000b1cc0dda9fda53e
TrueOnline is a Thai ISP that distributes customized versions of ZyXEL and Billion routers - customized with vulnerabilities that is. The routers contain several default administrative accounts and command injections that can be abused by authenticated and unauthenticated attackers.
d49de80d7e395e6a46e6479d644ea66f
B-Sides Ljubljana will be held March 10th, 2017 in Ljubljana, Slovenia.
127b13ed28b446a3393e554983712fd4
Gentoo Linux Security Advisory 201701-40 - A buffer overflow in xdelta might allow remote attackers to execute arbitrary code. Versions less than 3.0.10 are affected.
036858c6b0e4c832f5c3593cbda948dd
Gentoo Linux Security Advisory 201701-39 - A buffer overflow in VLC might allow remote attackers to execute arbitrary code. Versions less than 2.2.4 are affected.
14a812e96ae0cd53c8df835fef13cd78
Red Hat Security Advisory 2017-0065-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: A use-after-free vulnerability was found in the kernels socket recvmmsg subsystem. This may allow remote attackers to corrupt memory and may allow execution of arbitrary code. This corruption takes place during the error handling routines within __sys_recvmmsg() function.
46507981aea58b2e763d9c5398c279df
Gentoo Linux Security Advisory 201701-42 - Multiple vulnerabilities have been found in file, the worst of which could allow remote attackers to execute arbitrary code. Versions less than 5.23 are affected.
b22bea39826581a20e8e275eb24f1a08
Gentoo Linux Security Advisory 201701-41 - A buffer overflow in MiniUPnPc might allow remote attackers to cause a Denial of Service condition. Versions less than 1.9.20150427 are affected.
bbeaaab78983032aed1dd16e0d74cddc
Gentoo Linux Security Advisory 201701-38 - Multiple vulnerabilities have been found in Pidgin, the worst of which could lead to execution of arbitrary code. Versions less than 2.11.0 are affected.
ca4a7e71977f04c21470018bdda8e442
Check Box 2016 Q2 Survey suffers from insecure direct object reference, open redirection, and directory traversal vulnerabilities.
82b10bf9cecb8a8d1df5f6e30c946569
Proof of concept exploit for CVE-2016-3074 targeting Ubuntu 15.10 x86-64 with php5-gd and php5-fpm running behind nginx.
62ec20b51bb7cee9f2062e9144826d2e
tinc is a Virtual Private Network (VPN) daemon that uses tunneling and encryption to create a secure private network between multiple hosts on the Internet. This tunneling allows VPN sites to share information with each other over the Internet without exposing any information.
7a96f7eb12dfd43b21852b4207d860f2
Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.
0de8f00a9ff2feaaada7669fdfe4e307
Gentoo Linux Security Advisory 201701-37 - Multiple vulnerabilities have been found in libxml2, the worst of which could lead to the execution of arbitrary code. Versions less than 2.9.4-r1 are affected.
eb3420ebd6d030fa80ec3adcb3d1f24c
Apache NiFi versions 1.0.0 and 1.1.0 suffer from a cross site scripting vulnerability.
bccd1f61e2bf4ebbd2c73614cd476a2e
Tenda ADSL2/2+ Modem D840R unauthenticated remote DNS changer exploit.
938cf6920f5fc1558b2125a934cecb52
Pirelli DRG A115 ADSL router unauthenticated remote DNS changer exploit.
e6496808aedaeaebfcf2b61e265bb3dc
Android suffers from an out-of-bounds write in ssp_batch_ioctl.
3114d8e090f2271dd7a1ebe1d3e15914