A signedness vulnerability exists in libgd version 2.1.1 which may result in a heap overflow when processing compressed gd2 data.
>> CATEGORY: exploit
Symantec Brightmail versions 10.6.0-7 and below save the AD password in a place where it can be retrieved.
Exponent CMS version 2.3.5 suffers from a file upload vulnerability that allows for cross site scripting.
Exponent CMS version 2.3.5 suffers from multiple cross site scripting vulnerabilities.
This Metasploit module exploits an arbitrary file upload vulnerability found in Advantech WebAccess 8.0. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Advantech WebAccess. Authentication…
Oliver versions 1.3.0 and 1.3.1 suffer from reflective cross site scripting vulnerabilities.
The attached testcases crashes Windows 7 64-bit while attempting to write to an unmapped memory region. On 32-bit Windows 7 it triggers a null pointer read.
pgpdump version 0.29 suffers from an endless loop parsing issue that can lead to a denial of service.
G-Data security products suffer from a DLL hijacking vulnerability.
TH692 Outdoor P2P HD waterproof IP camera version 16.1.16.1.1.4 has hard-coded static credentials.