TYPO3 CMS versions 2.0.3 and below suffer from a cross site scripting vulnerability.
273743201ab94072e1a09e54dfb27754340fc6efe9e8db68e49310f3bf9fd3d5BoZon version 2.4 suffers from a pre-authentication remote command execution vulnerability.
90d88ac436e0bd6d454e63e5a15ed20c1bb7096cfb24b4c551c10953a833b477dirList version 0.3.0 suffers from file upload bypass and remote command execution vulnerabilities.
8dfcb3d5b7c96f1fe330caa0f93a307d6ee44e66ef831514a746e276371e9f6dTempest Security Intelligence Advisory ADV-2/2016 - Atlassian Jira version 7.1.7 suffers from a cross site scripting vulnerability.
3dd9c56b41ffd99414961adca6598dde55319f70e320fedb4f66bd617a6133bdWordPress Direct Download for WooCommerce versions up to 1.15 suffer from a local file inclusion vulnerability.
c86f833ea2cb397491425f18175efc5680a0cebbd58bf33c3c099f1c010bedcfEuskalHack Security Congress is the first Ethical Hacking association in Euskadi, with the aim of promoting the community and culture in digital security to anyone who may be interested. It will be held June 23rd through the 24th, 2017 in Donostia - San Sebastian.
be8649ffcfd7e9ff33c05d0cf42174aded302778d7ef8baa8ba7f520ecac50a2TrueOnline is a Thai ISP that distributes customized versions of ZyXEL and Billion routers - customized with vulnerabilities that is. The routers contain several default administrative accounts and command injections that can be abused by authenticated and unauthenticated attackers.
10903d4befe721f251a632833452082ea225e42bdd36042d0be7edf4cbdab914B-Sides Ljubljana will be held March 10th, 2017 in Ljubljana, Slovenia.
db8cad4b160c746e4a2616592d39aa68011fcf4c54bd77d376116f12c7453905Gentoo Linux Security Advisory 201701-40 - A buffer overflow in xdelta might allow remote attackers to execute arbitrary code. Versions less than 3.0.10 are affected.
849ca96fb6fbccc319a2dbc753723409f13c961ea4ac8dda7b987a20a91cd9edGentoo Linux Security Advisory 201701-39 - A buffer overflow in VLC might allow remote attackers to execute arbitrary code. Versions less than 2.2.4 are affected.
f487d45d161cc8c97bfe751cc0a495e171eecfd286680952e6a746196689205eRed Hat Security Advisory 2017-0065-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: A use-after-free vulnerability was found in the kernels socket recvmmsg subsystem. This may allow remote attackers to corrupt memory and may allow execution of arbitrary code. This corruption takes place during the error handling routines within __sys_recvmmsg() function.
7c283a9ccd3baaf5011ece8e0a9d64f1d2e35deb0a35ec9cc520a87378b4e825Gentoo Linux Security Advisory 201701-42 - Multiple vulnerabilities have been found in file, the worst of which could allow remote attackers to execute arbitrary code. Versions less than 5.23 are affected.
78167656850b75cb7bbbedfb7cfa5ce584845f87a00c57310c1ffbb0846e730cGentoo Linux Security Advisory 201701-41 - A buffer overflow in MiniUPnPc might allow remote attackers to cause a Denial of Service condition. Versions less than 1.9.20150427 are affected.
718f757ac77cd3faeec090845f5f38049fcf8f01f0f907bcb534673d44fbedc7Gentoo Linux Security Advisory 201701-38 - Multiple vulnerabilities have been found in Pidgin, the worst of which could lead to execution of arbitrary code. Versions less than 2.11.0 are affected.
8a00adaf28744a0f8b85c6aa185e2e04baef9410c1941237381a020576a41e77Check Box 2016 Q2 Survey suffers from insecure direct object reference, open redirection, and directory traversal vulnerabilities.
9b4750f5dcfb38041c933481c1c73bcee5f56bc5a8dcd1690f3f211a04f0f949Proof of concept exploit for CVE-2016-3074 targeting Ubuntu 15.10 x86-64 with php5-gd and php5-fpm running behind nginx.
ce82b05af66a6cc890010631b025d315ce68856b73a262d38038ee440aded59dtinc is a Virtual Private Network (VPN) daemon that uses tunneling and encryption to create a secure private network between multiple hosts on the Internet. This tunneling allows VPN sites to share information with each other over the Internet without exposing any information.
d3cbc82e6e07975a2ccc0b369d07e30fc3324e71e240dca8781ce9a4f629519bBotan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.
c0cc8ffd470fda4b257c3ef9faf5cf93751f4c283dfba878148acafedfab70feGentoo Linux Security Advisory 201701-37 - Multiple vulnerabilities have been found in libxml2, the worst of which could lead to the execution of arbitrary code. Versions less than 2.9.4-r1 are affected.
2628a764d5a6e85b5317a6369ff43fe467ae6831e0273a58e6987ad7f00c5ad7Apache NiFi versions 1.0.0 and 1.1.0 suffer from a cross site scripting vulnerability.
27d8af85dd965e878a3edbed6e172052a109ae2774adf35ecb90f823f2461300Tenda ADSL2/2+ Modem D840R unauthenticated remote DNS changer exploit.
c74eb3c2266af09f6bcf87b519630c7d6880210b33d25893b5973b93f7c34766Pirelli DRG A115 ADSL router unauthenticated remote DNS changer exploit.
7d1b621d700ac653f04afe392e27a9d02df8c045899e6c2fae15aba1cabf37edAndroid suffers from an out-of-bounds write in ssp_batch_ioctl.
d8251df417f20cd57db8bb9ace2de1104fca9ec41f56cbe14574daaf5e879d27
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed