OrderSys version 1.6.4 suffers from cross site scripting and remote SQL injection vulnerabilities.
02aa1c0ab5f2f23de8440d34b2b0130b52d4dec5604d753f84a611e9d6881730ICS-CERT Advisory 12-234-01 - ICS-CERT is aware of a public report of hard-coded RSA SSL private key within RuggedCom’s Rugged Operating System (ROS). The vulnerability with proof-of-concept (PoC) exploit code was publicly presented by security researcher Justin W. Clarke of Cylance Inc. According to this report, the vulnerability can be used to decrypt SSL traffic between an end user and a RuggedCom network device.
ccc2e9d5add6093115adb23c1f03197a8b414917e07e5bc98ead1c99683d33a0Banana Dance CMS version B.2.1 suffers from cross site scripting and remote SQL injection vulnerabilities.
1033576d0aa068f9583ee4f013db8fa666dc420ad5cf382ceb56c5ebd505a417OpenDocMan version 1.2.6.1 suffers from a cross site request forgery vulnerability.
4517da3cfba89fe1336b3b7a7ed87a979770c9d980737cf914add115f588b397This is some demonstration code that explains methods of remote code execution in Apache Struts2.
95aa97a6a49a06c15fe3bd11a797cecad1606abd0dc4f24592788de224974e50VamCart version 0.9 suffers from a cross site request forgery vulnerability.
44b4331ea7a4adfb5da06983201511d8e96dbbfa64003c6c419310507d3d5a89Clipbucket version 2.5 suffers from a directory traversal vulnerability.
60276daddff1d6ad33d0d4b4a077e3bd663c889d534719331c76356e88d80d43Clipbucket version 2.5 suffers from a remote blind SQL injection vulnerability.
7dc8211e010244ae9cf4425d8fab83465c7a0a8ecade28de6cd2185bc60a2be2JW Player Pro versions 5.10.2295 and below suffers from cross site scripting and content spoofing vulnerabilities.
acc75c88cc5eca754830915e33670feca1632c8795fc3987919f0946eecc4e29Symantec Web Gateway versions 5.0.3.18 and below arbitrary password change exploit written in python.
d645d58df877b8ecffab94c68dd5f0019b36b4f527e7b11d59a6a529c9e69ac21024cms version 2.1.1 suffers from a remote SQL injection vulnerability.
4dfa37e65298e4b5b3074b6eb179e9e58dd8c378d0080429d93c29612d91006eJara version 1.6 suffers from cross site scripting and remote SQL injection vulnerabilities.
bd014b7e12bcbddd0d1b2c501d3f5a6a3280c34f03db8ebe77623f0ae37f55d6LabWiki version 1.5 suffers from a cross site scripting vulnerabilities.
1d4a551421b5d8770747c3945cb96ffb74470fe1bdd1375cf9a18f1b82cb5558XODA Document Management System version 0.4.5 suffers from cross site scripting and remote shell upload vulnerabilities.
9eddc44c334a05db869e4aa52c5baa45e22307853cc1e881f9d5952c9471991dJoomla versions 1.7 and 2.5 suffers from an arbitrary file upload vulnerability in the Civicrm component.
5409c8f69be1b43458970487fee32a18637708e439cd0869b6a54d62c9b6bb0eThis Metasploit module will change the password for the specified account on a Symantec Web Gateway server.
d89f7585df43c42d633473eb031b17ba4214562fce21acd4ea8028c84f79d52aWordPress Monsters Editor for WP Super Edit third party plugin suffers from an arbitrary file upload vulnerability.
bfa3057af6a3e02f48fb6b65f65dd7e6c991222ded98b2fd2ab474a331b66d8dWordPress Rich Widget third party plugin suffers from an arbitrary file upload vulnerability.
38935038ab3d5c40c39b162fc8ad9477c1346f6d1276d6494ee3bb8f7896074eWordPress SEM WYSIWYG third party plugin suffers from an arbitrary file upload vulnerability.
1ddc7c8afb93cc85e341c6cbe1c4f7255d215e0e0ebf1dd65c68205fef8a6cfbConsultech CMS suffers from a remote blind SQL injection vulnerability. Note that this finding houses site-specific data.
bdb1764a4186af14eca89021ef304f3dc0e67d0b6fed397c1461b3109883ced5NBA.com suffers from a cross site scripting vulnerability.
b09b802e722c67ea7148e08e62631b6ae8e2dfe4744978f4154d85b848ea4d08Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
72057df965da4f627fc3724aecdd8175c52da58fa721ad607b2911e7fd4453d7Secunia Security Advisory - A vulnerability has been reported in CuteSoft Cute Editor for ASP.NET, which can be exploited by malicious people to conduct cross-site scripting attacks.
f6b853c05830d23c3234b909965748234c325eca2071bb8c5e305c7ae6123e39Secunia Security Advisory - Red Hat has issued an update for katello. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.
f932a38ef3ebc9dc47b26092dce01965fbb1757464f86d508b811b997588ba41Secunia Security Advisory - A vulnerability has been reported in Linux Kernel, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
1bc6096af5015a01c0b1a5e29ef15d023cc4627c4a1fa6bdd9eac051a66c1e98
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed