Pay Per Watch and Bid Auktions System suffers from a remote blind SQL injection vulnerability.
914834f83048e939c395ed737f0c76e37d97650770aa3bf45c0e8a23ee407ffaVanilla versions 1.1.10 and below suffer from a remote file inclusion vulnerability.
38521929a2ad885d62cff7cd0dacd44605a60b8d1f4c12366e2cf5f6368404a2Yupi CMS version 0.44 suffers from a remote file inclusion vulnerability.
f5beb887f04d744c144d40a1f599ef7e215ee0372e3192dda39f4801440d3c46Apple Safari Tag heap spray buffer overflow exploit for OS X.
84bac39f296b2543e5ed47463e1a73c8d7da8b92855936c123cb3a0dce625d5fWoltlab Burning Board Teamsite Hack version 3.0 remote SQL injection exploit that leverages ts_other.php.
19cff7126195b799e3b76c61b3fb00db28e23124673463b39720e1385a4fe68fAdult Video Site cross site request forgery change administrator password exploit.
82c463788c212ab40d73c9378f60858bc316e3337caba35e8d33cdcbf52d0d3cCrimson Editor version 3.70 SEH overwrite proof of concept exploit. This is the second proof of concept by the same author for this vulnerability.
28a8a1f6d87ae60402d3d46e912ffdf94c157596f157fdb2520a9a9032e82e29Remote Help version 0.0.7 remote denial of service exploit.
defe99432d6b2eee6f03792639bad32f46c3fe9556a76c6ada5c12764d908146eDisplay Personal FTP Server version 1.0.0 post-authentication stack buffer overflow exploit with egg hunter shellcode.
d8bcac4e6d3681225a51e49277ef1f2caa310dfb4ef9362e17866f83feece047Debian Linux Security Advisory 2020-1 - Ivan Shmakov discovered that the htmlscrubber component of ikwiki, a wiki compiler, performs insufficient input sanitization on data:image/svg+xml URIs. As these can contain script code this can be used by an attacker to conduct cross-site scripting attacks.
37f8b6359bb2cbc490b8df853d94a9d02809616d7708a39bbe362907c08df68cSamhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
9d4f8125bd5a7271397717e336604c14cb50966df682a141cd8d9829e6aea5bdMalware 2010 Call For Papers - The 5th IEEE International Conference on Malicious and Unwanted Software (Malware 2010) will be held in Nancy, France, October 20th through the 21st, 2010. The conference is designed to bring together experts from industry, academia, and government to present and discuss, in an open environment, the latest advances and discoveries in the field of malicious and unwanted software. Techniques, economics and legal issues surrounding the topic of Malware, and the methods to detect and control them will be discussed.
383461f7576b55115bbe7be0f58312ce5728f64ebd6557ae2ef0a535cce01f87Absolute Image Gallery XE suffers from a default password vulnerability.
01fcd25eee161bc128624a8c547ad03ab71aabdd71020d0df97369cb2ef93288Cerberus Helpdesk suffers from a cross site scripting vulnerability.
0b256c96515dac71ac41d538018259d3bd16fd229655fd99e942c426ebbae308Debian Linux Security Advisory 2019-1 - Marc Schoenefeld discovered an improper input sanitization in Pango, a library for layout and rendering of text, leading to array indexing error. If a local user was tricked into loading a specially-crafted font file in an application, using the Pango font rendering library, it could lead to denial of service (application crash).
3d8f0d6c6186bfd3e30d8b268d9fd56b61496eca0914b368802ed9eb04c2153cThe Joomla Gift Exchange component suffers from a remote SQL injection vulnerability.
e47b3f3c018c909624a229778ee5fd010652a0c93f0ba75c853ab632e1a4e765Crimson Editor version 3.70 SEH overwrite proof of concept exploit.
d59c53f8a6dc87ca13156970495bd3b2817064dd37a484d7a82d901f90309f2cno$gba version 2.5c local crash exploit that creates a malicious .nds file.
0db4c92df5b2a913663b082bc01c6c5ca63753cf58b59e24bd148f0f91cbdae4KDE versions 4.4.1 and below suffer from a remote command execution vulnerability in Ksysguard.
de78459e55eaf4a500fa5221c88b9e8e1cdcb6fdbb3c4d50a4809e2cfaca45e6The Aris AGX agXchange ESM safety submissions module suffers from an open redirection vulnerability.
2c9de39e17d4804bef609db851591fe352f2c6759ab33b6236daaa76c6ef0832Webmatic version 3.0.3 suffers from cross site scripting vulnerabilities.
45062d33d054f0be7dea2a4b3543b13eb83243994010aa8a0f88a32673ca6fd7SiteDone Artist Edition version 2.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
214740011eda163decd5503724d92e46e95548684c0f768fc7766b3c9fd1b771SiteDone Custom Edition version 2.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
3169d8510c11ed538735f96c47030bf2976a112c48396193b4effe68a919cb60Secunia Security Advisory - A vulnerability has been discovered in notsoPureEdit, which can be exploited by malicious people to compromise a vulnerable system.
14003405f47757955401a75d7de2fbf3827a9435047c8a58ebb9773b71827f17Secunia Security Advisory - Some vulnerabilities have been reported in Secure Portal, which can be exploited by malicious people to bypass certain security restrictions.
25b4fc89d2b512e2ce4d7c41cc69bdeff81eb959175d6497b010cb62fd15dfab
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed