BigAnt Server version 2.52 SP5 SEH stack overflow ROP-based exploit with ASLR and DEP bypass.
8c8bc43766e7deebe6d6021338e54533e80aeeb71ed2b93b85f378c83a55cfdbZenphoto version 1.4.3.3 suffers from multiple vulnerabilities including an administrative interface exposure, cross site scripting, file restriction bypass, path disclosure, and remote SQL injection vulnerabilities.
9f53c22a8ac57740fc1010024ab439c0b07a1d45e41292904b2e8ec52af6e23d360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.
a3fb818edceec758687fba61efce8b7819eef7b0a180ab390d69fb0cc2604681Sysax FTP Automation Server version 5.33 suffers from a local privilege escalation vulnerability.
9da75d5d121541879919ac465b91055fed3c2f21871f370c68a97149904b4bfaPatator is a multi-purpose brute-forcer, with a modular design and a flexible usage. When Medusa, Hydra or other brute-force tools fail to do what you want, Patator might be what you need.
af7aed50ba0db1d2e932d9edecb1b2945e675ea8e1fcb27da48273b00db8c1f0Zoom Graphics suffers from a base64 encoded cross site scripting vulnerability.
d8c64e07c3d1898fe0ca51017c317208918e0982886c48f640a7dd376d71df7aZPanel versions 10.0.1 and below suffer from cross site request forgery, cross site scripting, password reset, and remote SQL injection vulnerabilities.
170dd524a5401d3d677553774f59604d5461dc2071288c346adc2dee3d78f6c7AwAuctionScript suffers from cross site scripting, remote shell upload, and remote SQL injection vulnerabilities.
186b94103dd0420c0e53dd18b676dbe2b881924edc763c89d8e9683ed3c4177eKMPlayer version 3.3.0.33 suffers from buffer overflow and dll hijacking vulnerabilities.
3c2a4d60b3484afce787c61cc3b0c4cfe5dac25d7805ddb6ed56938d04f0e381Microsoft Windows Pro SP3 full ROP calc.exe shellcode.
289f3c1bf7939844f15a89531a486537d36030fca3be043135f9d4ec1f1d3550Rakintech suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
fbe2f7aceb8c09918f04565c36004156f722453371bd8a60908dd13eb8727d7cJanissaries Wordpress brute forcing utility written in PHP.
57c6451b85bfa914e3e4472c5bd179bb31af4039fea140cee01ca387435c0272Secunia Security Advisory - McAfee has acknowledged a vulnerability in Email and Web Security Appliance, which can be exploited by malicious people to conduct spoofing attacks.
239842d205fa42f5874980572c48cd0888cf122fc8cc1adfe6ae6ed321ce00eaSecunia Security Advisory - Marcela Benetrix has discovered a vulnerability in the AJAX Post Search plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
ec05ef29e5c7bae316377c2dd0d143cc889dfa98d40070e1f1090f235a19ccf0Secunia Security Advisory - OpenVZ has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
58dac91d2787cb09142a961a1945af927d3e5b1e841ca1fea01a76ae6d27cf16Secunia Security Advisory - A vulnerability has been reported in Tivoli Federated Identity Manager, which can be exploited by malicious people to bypass certain security restrictions.
a377a0cdac9391112253019de744dd324075136b0688806a139f17181d934e74Secunia Security Advisory - Vulnerability Lab has reported a vulnerability in PG Dating Pro, which can be exploited by malicious users to conduct SQL injection attacks.
4cdec68d7603a789a0ce03111b03f4a6b4182887d825537c87701fe446c50d67Secunia Security Advisory - Debian has issued an update for iceape. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system.
e78e912f56ed3a051550f0f858732a43c9aef16d30e5c036715cf26c5b3e2e49Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to disclose certain system information, manipulate certain data, cause a DoS (Denial of Service), gain escalated privileges, by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service), and by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
f19801c8476be7b3a2d204fe477396498dee1ce844ed8bb0ec6b2cf828a11566Secunia Security Advisory - A vulnerability with an unknown impact has been reported in YUI.
2197b4d9890141e1bc77c34f51dcc7e8b60823a2b285fadc4db6538cf3f93f4bSecunia Security Advisory - A vulnerability has been reported in IBM Tivoli Federated Identity Manager, which can be exploited by malicious people to bypass certain security restrictions.
37639dedf56db41b384e9f19112521c653711b6b78b4fbb1cbfe9ed710a3b6d0Secunia Security Advisory - A vulnerability has been reported in Webmin, which can be exploited by malicious people to conduct cross-site scripting attacks.
f4d5e6cfc597565ad9ac0d304681294c14d9ba77cca4ebda069dbd0e2c3a68fcSecunia Security Advisory - Debian has issued an update for libproxy. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
4e7fbdc4ff60d4cf3bc7b907283f63a8d98967f935f45f3fce8785eae6219cf6Secunia Security Advisory - A security issue has been reported in IBM WebSphere DataPower XC10 and IBM WebSphere eXtreme Scale, which can be exploited by malicious people to conduct spoofing attacks.
130a496d0a1d085a7367ff487c9ccb9401eab248a1283f5b04d48d00f3f54697Secunia Security Advisory - Splunk has acknowledged some vulnerabilities in Splunk, which can be exploited by malicious people to cause a DoS (Denial of Service).
da9dceb82243b0c947d4f836239341862fc9eb748e19420fc3b6b104d42875de
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed