Quantcast
Browsing latest articles
Browse All 15 View Live

Red Hat Security Advisory 2020-1308-01

:0
:0
April 2, 2020, 7:50 pm

Red Hat Security Advisory 2020-1308-01 - The org.ovirt.engine-root is a core component of oVirt.

View Article
Search

Ubuntu Security Notice USN-4316-1

:0
:0
April 2, 2020, 7:51 pm

Ubuntu Security Notice 4316-1 - It was discovered that GD Graphics Library incorrectly handled cloning an image. An attacker could possibly use this issue to cause GD Graphics Library to crash,...

View Article

Ubuntu Security Notice USN-4316-2

:0
:0
April 2, 2020, 7:51 pm

Ubuntu Security Notice 4316-2 - USN-4316-1 fixed a vulnerability in GD Graphics Library. This update provides the corresponding update for Ubuntu 14.04 ESM. It was discovered that GD Graphics Library...

View Article

Gentoo Linux Security Advisory 202004-06

:0
:0
April 2, 2020, 7:51 pm

Gentoo Linux Security Advisory 202004-6 - A regression in GnuTLS breaks the security guarantees of the DTLS protocol. Versions less than 3.6.13 are affected.

View Article

SQLMAP - Automatic SQL Injection Tool 1.4.4

:0
:0
April 2, 2020, 7:53 pm

sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL...

View Article

Apache Solr 8.3.0 Velocity Template Remote Code Execution

:0
:0
April 2, 2020, 7:55 pm

This Metasploit module exploits a vulnerability in Apache Solr versions 8.3.0 and below which allows remote code execution via a custom Velocity template. Currently, this module only supports Solr...

View Article

VMware Fusion USB Arbitrator Setuid Privilege Escalation

:0
:0
April 2, 2020, 7:57 pm

This Metasploit module exploits an improper use of setuid binaries within VMware Fusion versions 10.1.3 through 11.5.3. The Open VMware USB Arbitrator Service can be launched outside of its standard...

View Article

DotNetNuke Cookie Deserialization Remote Code Execution

:0
:0
April 2, 2020, 7:59 pm

This Metasploit module exploits a deserialization vulnerability in DotNetNuke (DNN) versions 5.0.0 through 9.3.0-RC. Vulnerable versions store profile information for users in the DNNPersonalization...

View Article
Search

13enforme CMS SQL Injection / Cross Site Scripting

:0
:0
April 3, 2020, 6:33 am

13enforme CMS version 1 suffers from cross site scripting and remote SQL injection vulnerabilities.

View Article

Pandora FMS 7.0NG Remote Code Execution

:0
:0
April 3, 2020, 7:17 am

Pandora FMS version 7.0NG suffers from a net_tools.php remote code execution vulnerability.

View Article

From Zero Credentials To Full Domain Compromise

:0
:0
April 3, 2020, 7:19 am

Whitepaper called From Zero Credentials to Full Domain Compromise. This paper covers techniques penetration testers can use in order to accomplish an initial foothold on target networks and achieve...

View Article

Seabreeze Consulting Cross Site Scripting

:0
:0
April 3, 2020, 11:02 am

Seabreeze Consulting version 1 suffers from a cross site scripting vulnerability.

View Article

Mirus Landing Page Cross Site Scripting

:0
:0
April 3, 2020, 12:22 pm

Mirus Landing Page version 1 suffers from a cross site scripting vulnerability.

View Article

LimeSurvey 4.1.11 Path Traversal

:0
:0
April 3, 2020, 12:22 pm

LimeSurvey version 4.1.11 suffers from a File Manager path traversal vulnerability.

View Article

Memu Play 7.1.3 Insecure Folder Permissions

:0
:0
April 3, 2020, 12:32 pm

Memu Play version 7.1.3 suffers from an insecure folder permissions vulnerability.

View Article
Search
Browsing latest articles
Browse All 15 View Live
Search