Webexcels Ecommerce CMS 2.x SQL Injection / Cross Site Scripting
Webexcels Ecommerce CMS version 2.x suffers from cross site scripting and remote SQL injection vulnerabilities.
View ArticleApple Security Advisory 2020-03-25-1
Apple Security Advisory 2020-03-25-1 - iCloud for Windows 10.9.3 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.
View ArticleApple Security Advisory 2020-03-25-2
Apple Security Advisory 2020-03-25-2 - iCloud for Windows 7.18 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.
View ArticleFreeCommander XE 2020 Pathname Buffer Overflow
FreeCommander XE 2020 Build 810a 32-bit suffers from a pathname buffer overflow vulnerability.
View ArticlerConfig 3.9.4 searchField Remote Code Execution
rConfig version 3.9.4 searchField unauthenticated remote root code execution exploit.
View ArticlecodeBeamer 9.5 Cross Site Scripting
codeBeamer versions 9.5 and below suffer from multiple persistent cross site scripting vulnerabilities.
View ArticleDLINK DWL-2600 Authenticated Remote Command Injection
This Metasploit module exploits some DLINK Access Points that are vulnerable to an authenticated OS command injection. Default credentials for the web interface are admin/admin.
View ArticleIBM Cognos TM1 / IBM Planning Analytics Server Configuration Overwrite / Code...
IBM Cognos TM1 Server / Planning Analytics Server (TM1) suffers from a configuration overwrite vulnerability that can be leveraged to achieve code execution as SYSTEM via TM1 scripting. Extensive...
View ArticleMicro Focus Vibe 4.0.6 HTML Injection
Micro Focus Vibe version 4.0.6 suffers from an html injection vulnerability.
View ArticleMicro Focus Vibe 4.0.6 Cross Site Scripting
Micro Focus Vibe version 4.0.6 suffers from a cross site scripting vulnerability.
View ArticleDebian Security Advisory 4648-1
Debian Linux Security Advisory 4648-1 - Russ Allbery discovered a buffer overflow in the PAM module for MIT Kerberos, which could result in denial of service or potentially the execution of arbitrary...
View ArticleDebian Security Advisory 4647-1
Debian Linux Security Advisory 4647-1 - It was reported that the BlueZ's HID and HOGP profile implementations don't specifically require bonding between the device and the host. Malicious devices can...
View ArticleDebian Security Advisory 4646-1
Debian Linux Security Advisory 4646-1 - Andre Bargull discovered an integer overflow in the International Components for Unicode (ICU) library which could result in denial of service and potentially...
View ArticleDebian Security Advisory 4645-1
Debian Linux Security Advisory 4645-1 - Several vulnerabilities have been discovered in the chromium web browser.
View ArticleDebian Security Advisory 4644-1
Debian Linux Security Advisory 4644-1 - A denial of service vulnerability (by triggering high CPU consumption) was found in Tor, a connection-based low-latency anonymous communication system.
View ArticleDebian Security Advisory 4643-1
Debian Linux Security Advisory 4643-1 - It was reported that python-bleach, a whitelist-based HTML-sanitizing library, is prone to a mutation XSS vulnerability in bleach.clean when strip=False and...
View ArticleDebian Security Advisory 4642-1
Debian Linux Security Advisory 4642-1 - Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code.
View ArticleDebian Security Advisory 4641-1
Debian Linux Security Advisory 4641-1 - Vulnerabilities have been discovered in the webkit2gtk web engine.
View ArticleDebian Security Advisory 4640-1
Debian Linux Security Advisory 4640-1 - handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or the execution of arbitrary code if...
View ArticleDebian Security Advisory 4639-1
Debian Linux Security Advisory 4639-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.
View ArticleDebian Security Advisory 4638-1
Debian Linux Security Advisory 4638-1 - Several vulnerabilities have been discovered in the chromium web browser.
View ArticleDebian Security Advisory 4637-1
Debian Linux Security Advisory 4637-1 - Kobus van Schoor discovered that network-manager-ssh, a plugin to provide VPN integration for SSH in NetworkManager, is prone to a privilege escalation...
View ArticleHyperion Runtime Encrypter 2.3.1
Hyperion is a runtime encrypter for 32-bit and 64-bit portable executables. It is a reference implementation and bases on the paper "Hyperion: Implementation of a PE-Crypter".
View Article