[webapps] – Dream CMS 2.3.0 – CSRF Add Extension And File Upload PHP Code Execution
Posted by deepcore under Security (No Respond)
Archive for October, 2015
[papers] – New Methods in Automated XSS Detection
Posted by deepcore under Security (No Respond)
[papers] – Writing Cisco IOS Rootkits
Posted by deepcore under Security (No Respond)
[local] – AdobeWorkgroupHelper 2.8.3.3 – Stack Based Buffer Overflow
Posted by deepcore under Security (No Respond)
F5 BigIP 10.2.4 Build 595.0 HF3 Path Traversal
Posted by deepcore under exploit (No Respond)
F5 BigIP version 10.2.4 Build 595.0 Hotfix HF3 suffers from a path traversal vulnerability.
AdobeWorkgroupHelper.exe 2.8.3.3 Buffer Overflow
Posted by deepcore under exploit (No Respond)
If AdobeWorkgroupHelper.exe is called with an overly long command line argument it is vulnerable to a stack based buffer overflow exploit. Version 2.8.3.3 is affected.
Password Safe And Repository Enterprise 7.4.4 Build 2247 Crypto Issues
Posted by deepcore under exploit (No Respond)
Password Safe and Repository Enterprise version 7.4.4 Build 2247 suffers from insufficiently protecting credentials by using an unsalted MD5 hash for protection.
Password Safe And Repository Enterprise 7.4.4 Build 2247 SQL Injection
Posted by deepcore under exploit (No Respond)
Password Safe and Repository Enterprise version 7.4.4 Build 2247 suffers from remote SQL injection and authentication bypass vulnerabilities.
GetSimple CMS 3.3.7 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
GetSimple CMS version 3.3.7 suffers from a cross site scripting vulnerability.
ZHONE Remote Code Execution
Posted by deepcore under exploit (No Respond)
ZHONE ZNID GPON 2426A versions prior to S3.0.501 suffer from buffer overflow vulnerabilities.
