exploit the possibilities
Showing 1 - 25 of 100 RSS Feed

Files

WordPress Quick Post Widget 1.9.1 Cross Site Scripting
Posted Aug 10, 2012
Authored by Stefan Schurtz

WordPress Quick Post Widget version 1.9.1 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2012-4226
MD5 | 615cbf348739d0efce5c30b420d9345b

Related Files

WordPress Widget Control 1.0.1 Cross Site Scripting
Posted Feb 26, 2014
Authored by HauntIT

WordPress Widget Control Powered by Everyblock plugin version 1.0.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | c09baf86eadf41c9752867404c95360a
Red Hat Security Advisory 2013-1273-01
Posted Sep 20, 2013
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2013-1273-01 - The spice-gtk packages provide a GIMP Toolkit widget for SPICE clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. spice-gtk communicated with PolicyKit for authorization via an API that is vulnerable to a race condition. This could lead to intended PolicyKit authorizations being bypassed. This update modifies spice-gtk to communicate with PolicyKit via a different API that is not vulnerable to the race condition.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2013-4324
MD5 | edfc2a0be49c104cbd48b56b8e19ba50
ADIF Log Search Widget 1.0e Cross Site Scripting
Posted May 27, 2013
Authored by Keith Makan

ADIF Log Search Widget version 1.0e suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | f8f39044ee3ee8a24cd4e913c949407d
Drupal AWTNF 6.x / 7.x Access Bypass
Posted Apr 17, 2013
Authored by Cash Williams | Site drupal.org

Drupal Autocomplete Widgets for Text and Number Fields third party module versions 6.x and 7.x suffer from an access bypass vulnerability.

tags | advisory, bypass
MD5 | a4dc5b667df2749aa02450c739cba37e
Mandriva Linux Security Advisory 2013-135
Posted Apr 11, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-135 - A denial of service flaw was found in the way VTE, a terminal emulator widget, processed certain escape sequences with large repeat counts. A remote attacker could provide a specially-crafted file, which once opened in a terminal using the VTE terminal emulator could lead to excessive CPU consumption.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2012-2738
MD5 | bb397171c112b10028e4e08bd8a843d6
PayPal Portable Store Front Cross Site Scripting
Posted Mar 12, 2013
Authored by Ibrahim El-Sayed | Site vulnerability-lab.com

The PayPal Portable Store Front widget suffered from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 66786969052867b64ad14e88484bb349
Elgg Twitter Widget Cross Site Scripting
Posted Jan 30, 2013
Authored by Moritz Naumann

Elgg versions 1.8.12 and 1.7.16 suffer from a cross site scripting vulnerability in the Twitter Widget module.

tags | advisory, xss
MD5 | b2c930d84be809cac3711d054fcd91b8
Red Hat Security Advisory 2012-1284-01
Posted Sep 17, 2012
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2012-1284-01 - The spice-gtk packages provide a GIMP Toolkit widget for SPICE clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. It was discovered that the spice-gtk setuid helper application, spice-client-glib-usb-acl-helper, did not clear the environment variables read by the libraries it uses. A local attacker could possibly use this flaw to escalate their privileges by setting specific environment variables before running the helper application.

tags | advisory, local, protocol
systems | linux, redhat
advisories | CVE-2012-4425
MD5 | 984184f3d420eba2bb4291070a5ff4c5
WordPress Rich Widget File Upload
Posted Aug 22, 2012
Authored by Crim3R

WordPress Rich Widget third party plugin suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, file upload
MD5 | 9edb7e016a4e0dd4a4528f9dd22fd30f
Secunia Security Advisory 49805
Posted Jul 6, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Chris Kellum has discovered two vulnerabilities in the MoodThingy Mood Rating Widget plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | aeaaee2b53b46994a8b3bbbad49d9f1d
Secunia Security Advisory 49798
Posted Jul 5, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Stefan Schurtz has discovered some vulnerabilities in the Quick Post Widget for WordPress, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.

tags | advisory, vulnerability, xss, csrf
MD5 | e69773c308e168bffa8e247da54efdfa
WordPress MoodThingy Widget 0.9.7 SQL Injection
Posted Jul 4, 2012
Authored by Chris Kellum

WordPress MoodThingy Widget version 0.8.7 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 794a5d24bfd7933fb619cfb6348403ae
Secunia Security Advisory 49419
Posted Jun 8, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the FCChat Widget plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | a644615758c98376318834cc71bd72ef
WordPress FCChat Widget 2.x Shell Upload
Posted Jun 6, 2012
Authored by Sammy FORGIT

WordPress FCChat Widget plugin versions 2.2.12.2 through 2.2.13.1 suffer from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 36987a6330276ed2db5b98faa2ba6480
Secunia Security Advisory 49135
Posted May 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the Dynamic Widgets plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | eb1ffa17dc106db93184a46a83e8d1fb
WordPress Dynamic Widgets 1.5.1 Cross Site Scripting
Posted May 15, 2012
Authored by Heine Pedersen, Torben Jensen

WordPress Dynamic Widgets plugin version 1.5.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | d7b32007fc456b7dd022c5b9f786285f
WordPress Advanced Text Widget Cross Site Scripting
Posted Nov 22, 2011
Authored by Am!r | Site irist.ir

The WordPress Advanced Text Widget plugin suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 4d86258f92170688fd5ae6046d4ea9c7
Packet Storm Mac OS X Widget
Posted Oct 18, 2011
Authored by Saitek

Packet Storm Widget is a Mac OS X widget that allows users to see all latest news from packetstormsecurity.org. A user can choose between different kind of news to see: All of the Latest Content, Latest News, Latest Files, Latest 0 Days, Latest Vulnerabilities and Latest Exploits. This allows a user to always keep up to date on their favorite security topics. Please note that this was *not* created by Packet Storm Security and questions should be directed to the author. This should run on Leopard, Snow Leopard, Lion and Tiger.

tags | vulnerability
systems | apple, osx
MD5 | 9e9a4400ad94b557bb3ded125342f1b1
WordPress Mini Mail Dashboard Widget 1.36 Remote File Inclusion
Posted Sep 19, 2011
Authored by Ben Schmidt

WordPress Mini Mail Dashboard Widget plugin version 1.36 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
MD5 | 42f84d2ae224633ff4aa5f7ac7d26707
Secunia Security Advisory 46015
Posted Sep 15, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the IGIT Posts Slider Widget plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 83fc91bfcc9ad88ba29470cec3d70a1a
Secunia Security Advisory 45953
Posted Sep 14, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the Mini Mail Dashboard Widget plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 2443eb474a15b70734561ab6e7fde275
WordPress KINR Author List Widget 2.0.0 SQL Injection
Posted Sep 7, 2011
Authored by Miroslav Stampar

WordPress KNR Author List Widget plugin versions 2.0.0 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b608aee60620308a0fd07432546a4176
WordPress KNR Author List Widget 2.0.0 SQL Injection
Posted Sep 6, 2011
Authored by Miroslav Stampar

WordPress KNR Author List Widget plugin versions 2.0.0 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b230768d35f9b201b1e4cad42da7aafb
Secunia Security Advisory 45661
Posted Aug 23, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - L0rd CrusAd3r has reported two vulnerabilities in CodeWidgets.com Pop-Over Login Form (ASP), which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection, asp
MD5 | 34e1691c3bf8815c79e07b840a0916ef
Code Widgets Multiple Question - Multiple Choice Online Questionaire SQL Injection
Posted Aug 17, 2011
Authored by L0rd CrusAd3r

Code Widgets Multiple Question - Multiple Choice Online Questionaire suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | d083922affbcc260b7b904966ad6d3c3
Page 1 of 4
Back1234Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    1 Files
  • 9
    Aug 9th
    2 Files
  • 10
    Aug 10th
    27 Files
  • 11
    Aug 11th
    11 Files
  • 12
    Aug 12th
    11 Files
  • 13
    Aug 13th
    17 Files
  • 14
    Aug 14th
    7 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close