Desss Inc CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
7567a350264c295d34fe958808b864034c1cf0f829dfd3feea8281afe5d8d919
Cybosol CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
55be1f66972b2d514adccc6605e5a5231669377517eadf48793b826983f0a51a
Corpussoft CMS suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
d975fb77deec6440b6e1f480057e4e494e4b98e9a40084a6a9dcdc9b10ef5751
Bridgelin CMS suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
6b2c88e99ba7972414713e705bf33aaef5e3fe6ad479d67de1862f32c60f7775
Arihant Infotech CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
99084c9358477f572c8282664c94c47ba5d587390b38bcf56c137b2eb5459a05
Accel Site CMS suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
a4cc5a6cca07e2d91dbc3e95c0760059f70242f8f3d6702e3b1f4cc62a565be3
This Metasploit module exploits a command injection vulnerability in the SAPHostControl Service, by sending a specially crafted SOAP request to the management console. In order to deal with the spaces and length limitations, a WebDAV service is created to run an arbitrary payload when accessed as a UNC path. Because of this, the target host must have the WebClient service (WebDAV Mini-Redirector) enabled. It is enabled and automatically started by default on Windows XP SP3, but disabled by default on Windows 2003 SP2.
4e670b1726c47184e28c99e0f1609238c9d24b4114df6fa4e834cfd4001f7777
ToorCon 14 has announced its call for papers. This conference will take place October 19th through the 21st, 2012 in San Diego, CA, USA.
c4a1086bc82764cba1738531c6d02b32780636cc258c29ed53841e3041052027
Phorum version 5.2.18 suffers from a cross site scripting vulnerability.
eacb48244f80206c5c20974e626a07b89b72ecd38320b50f7390d840e42bcd13
The Drupal Apache Solr Autocomplete third party module versions 6.x and 7.x suffer from a cross site scripting vulnerability.
d7ed5c8b5fcd4e661cf4b7bcd76dbbd151485474dd9f6fc7ff2df564fce1f109
The Drupal CAPTCHA third party module version 6.x suffers from an access bypass vulnerability.
a9ecadeb7880d395b503ef8de23d0b45db4b244be4b2badcc51a41b8806d0e77
A vulnerability in the .Net Request Validation mechanism allows bypassing the filter and execution of malicious scripts in the browsers of users via cross site scripting attacks. The exploitation technique explained here allows sending tags through the Request Validation Filter in a manner that will pass browser syntax and be rendered by browsers.
2e4ce4802fcc15ab4ea201c0086a4407e49cf77f81bc189e1205c8e38bb63357
Sistem Biwes suffers from remote SQL injection and path disclosure vulnerabilities.
624e6a3a34ad7e146e6390625d6f12f8b0d701b58b3494746bbe1943d1f6ee94
The Drupal Views third party module version 6.x suffers from a privilege escalation vulnerability.
8a7b7435a0161e0bb6269a412c3987984c6696b0cfe5a12164dbd47e7f709a6c
Joomla Spider Calendar Lite component remote SQL injection exploit.
9eacbb9d82fe4e88448617e37ad057bc3d8cfc9e467a2fc5620e51c1ad8b7365
The Drupal Taxonomy Image third party module version 6.x suffers from arbitrary php code execution and cross site scripting vulnerabilities.
12ae748ce2cecdafa67e4c738a012ec2cfdc7052744eee7152801289a0a379c4
The Drupal Announcements third party module version 6.x suffers from an access bypass vulnerability.
006364398560d005b33fbf3a7d33da2de0f3e8e1ae6d3d5bb67df8a2aad7b7d9
The Drupal Email Field third party module versions 6.x and 7.x suffer from an access bypass vulnerability.
133c9a5cc433e660bcbea02021def647671408e5f37fd23ab32eb0cc7e5882ad
PrestaShop versions 1.4.7 and 1.4.8 suffer from a cross site scripting vulnerability.
94e63abd47975a241e1fd867909d2fecfd6d076014bc0a3efa593aeb09e59263
The Drupal Javascript Tool third party module version 7.x suffers from arbitrary file read/write vulnerabilities.
e02ef3ccf27e4f564910015871b5f3c64d0c0b61f5abacae649058ac616d08ef
The Drupal Activism third party module version 6.x suffers from an access bypass vulnerability.
45707ca15d6ca20832d54d99622482961f5a5b8d45be1230ca3d9ed6278b030e
PHP iManager version 3.1 suffers from a cross site scripting vulnerability.
e81325f7ff09504c3398994ecc429a4dd80fd571ca868034ab0eca0588fcac9d
Internet Download Manager suffers from a denial of service vulnerability.
19dcbb058f55930947113cae0c2f76cc837250746a9ae391532c0501f0db61a7
Secunia Security Advisory - SUSE has issued an update for nut. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
3d9ccd298e5b2e578e565310a60769e17bd1af373f2e470bf3ef50c93ec3641e
Secunia Security Advisory - SUSE has issued an update for nut. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
3d9ccd298e5b2e578e565310a60769e17bd1af373f2e470bf3ef50c93ec3641e