Openconstructor CMS version 3.12.0 suffers from multiple remote SQL injection vulnerabilities.
26cadea862cc38352ba9cfbe0ce85d7f3ea87133ba22611ec4e5869d4cb65e20Openconstructor CMS version 3.12.0 suffers from a stored cross site scripting vulnerability in data/hybrid/i_hybrid.php.
1d3af1a1271150ebcda8aa883d72304c2cacba4c37e14d10e91b2e04946376d2Openconstructor CMS version 3.12.0 suffers from multiple stored cross site scripting vulnerabilities.
b50755807352657cfc3efc80fd3a7e67d0b89af5fd938e4cd1fd38874a54fdcdThis is a multithreaded scanner that scans many ip addresses on a specified port simultaneously. It is very useful for finding insecure systems when used with such ports as 23 (Telnet) or 8080, which is the web interface for many routers. The author of this program takes no responsibility for the actions of its users.
8b00dfe8071bfc1a6b2d42de3eb31f6439e21d035b5ca397aa790740648b7fa1Openconstructor CMS version 3.12.0 suffers from multiple reflective cross site scripting vulnerabilities.
6e1bf50fc4486b0a22d6269841e3060d3ee9aa76f2cb0f80e2074b440a730e82WordPress Easy Comment Uploads third party module suffers from a remote shell upload vulnerability as the mime-type check seems to be bypass if the referer is set to wp-admin.
9efe43d2e8ae321eaef6bc9719ae5553fea4ac505a6f3138e113e43605e81d3fPower Bulletin Board versions prior to 2.1.4 authentication bypass and add administrator exploit.
029b52340f5c1e7a0fdaa00422646752976486d49f4a8818ec05d4afbc957dd2Mandriva Linux Security Advisory 2012-124 - Multiple heap-based buffer overflow flaws were found in the XML manifest encryption tag parsing code of openoffice.org. An attacker could create a specially-crafted file in the Open Document Format for Office Applications format which when opened could cause arbitrary code execution. The updated packages have been patched to correct this issue.
edc8b7b8881c532d8f8356f8d5b99ea70350faa5a1cf0f3b1fa7e7452ab11967McAfee Labs suffers from a cross site scripting vulnerability.
f2652657a1dfb5547756b53bd17e003b1259e261ac26c0b43ced816901aaf28cDebian Linux Security Advisory 2519-2 - It was discovered that the recent update for isc-dhcp, did not contain the patched code included in the source package. Due to quirk in the build system those patches were deapplied during the build process.
56cde2d842365388e86b4e3822e43e10f8a15d275662e2a0613a84e1fe731f1cMandriva Linux Security Advisory 2012-123 - Multiple heap-based buffer overflow flaws were found in the XML manifest encryption tag parsing code of LibreOffice. An attacker could create a specially-crafted file in the Open Document Format for Office Applications format which when opened could cause arbitrary code execution. libreoffice for Mandriva Linux 2011 has been upgraded to the 3.5.5 version which is not vulnerable to this issue.
74e32dd9f3fd8c69c0ed7ea725fef06274f6e407d2787625ef8145944f3c6ec2Turtle CMS version 1 remote SQL injection exploit written in PHP.
49b6a64ed42b657c60b8d7f861c16bf1852e7cf83dd2ad6db777e7ca04f156a9The RaspberryPi Occidentalis version 0.1 image spawns sshd by default without prompting users to change their credentials, leaving their systems accessible via root/root default credentials.
656c7ec055e2f82105589240af2b020366360c6deae390094ae0d32f88f6c389
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed