BugTraq Mode:
(Page 14 of 1726)  < Prev  9 10 11 12 13 14 15 16 17 18 19  Next >
[security bulletin] HPESBHF03736 rev.1 - HPE Aruba and HPE ProVision network switches using Diffie Hellman Group1 Sha1 Exchange Algorithm, Remote Disclosure of Information 2017-05-04
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf
03736en_us

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: hpesbhf03736en_us

Version: 1

HP

[ more ]  [ reply ]
[security bulletin] HPESBGN03740 rev.1 - HPE Network Automation, Multiple Remote Vulnerabilities 2017-05-04
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbgn
03740en_us

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: hpesbgn03740en_us

Version: 1

HP

[ more ]  [ reply ]
WordPress Core <= 4.7.4 Potential Unauthorized Password Reset (0day) [CVE-2017-8295] 2017-05-03
Dawid Golunski (dawid legalhackers com)
WordPress Core <= 4.7.4 Potential Unauthorized Password Reset (0day)
[CVE-2017-8295]

https://exploitbox.io/vuln/WordPress-Exploit-4-7-Unauth-Password-Reset-0
day-CVE-2017-8295.html

Regards,
Dawid Golunski
https://legalhackers.com
https://ExploitBox.io
t: @dawid_golunski

[ more ]  [ reply ]
ESA-2017-036: EMC Data Domain Privilege Escalation Vulnerability 2017-05-03
EMC Product Security Response Center (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

ESA-2017-036: EMC Data Domain Privilege Escalation Vulnerability

EMC Identifier: ESA-2017-036

CVE Identifier: CVE-2017-4983

Severity Rating: CVSS v3 Base Score: 6.7 (AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)

Affected products:

? EMC

[ more ]  [ reply ]
Zenario CMS v7.6 - (Delete) Persistent Cross Site Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Zenario v7.6 - (Delete) Persistent Cross Site Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2042

Release Date:
=============
2017-03-20

Vulnerability Laboratory ID (VL-ID):
==========================

[ more ]  [ reply ]
Zenario v7.6 - Persistent Cross Site Scripting Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Zenario v7.6 - Persistent Cross Site Scripting Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2044

https://github.com/TribalSystems/Zenario/commit/cd60f1c8a179ebb779fe0acc
051b93f477129b1a

Release Date:

[ more ]  [ reply ]
Arachni v1.5-0.5.11 - Persistent Cross Site Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Arachni v1.5-0.5.11 - Persistent Cross Site Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2046

Release Date:
=============
2017-03-29

Vulnerability Laboratory ID (VL-ID):
============================

[ more ]  [ reply ]
Super File Explorer 1.0.1 - Arbitrary File Upload Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Super File Explorer 1.0.1 - Arbitrary File Upload Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2034

Release Date:
=============
2017-02-23

Vulnerability Laboratory ID (VL-ID):
======================

[ more ]  [ reply ]
Joomla com_tag v1.7.6 - (tag) SQL Injection Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Joomla com_tag v1.7.6 - (tag) SQL Injection Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2061

IEDB: http://iedb.ir/exploits-7454.html

Release Date:
=============
2017-05-02

Vulnerability Laboratory

[ more ]  [ reply ]
Hola VPN v1.34 - Privilege Escalation Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Hola VPN v1.34 - Privilege Escalation Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2062

Release Date:
=============
2017-05-03

Vulnerability Laboratory ID (VL-ID):
==================================

[ more ]  [ reply ]
Mura CMS Cross-Site Scripting (XSS) Vulnerability 2017-05-03
Leon Zhao 7 gmail com
Credits
===============
Zhao Liang, Huawei Weiran Labs

Vendor:
===============
Blue River Interactive Group

Product:
========================
Mura CMS

Mura CMS is built with one focused purpose in mind - to make it easier and faster for people to build and maintain even the most ambitious websi

[ more ]  [ reply ]
[SECURITY] [DSA 3843-1] tomcat8 security update 2017-05-03
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3843-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
May 03, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 3842-1] tomcat7 security update 2017-05-03
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3842-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
May 03, 2017

[ more ]  [ reply ]
MODX Revolution 2.0.1-pl - 2.5.6-pl blind SQLi 2017-05-02
Anti Räis (antirais gmail com)
MODX Revolution 2.0.1-pl - 2.5.6-pl blind SQLi
##############################################

Information
===========

Name: MODX Revolution 2.0.1 - 2.5.6 (based on git commit)
Software: MODX CMS
Homepage: https://modx.com
Vulnerability: blind SQL injection
Prerequisites: attacke

[ more ]  [ reply ]
[security bulletin] HPESBHF03741 rev.1 - HPE Network products including Comware 7, IMC, and VCX running OpenSSL, Local Unauthorized Disclosure of Information, Remote Denial of Service (DoS), Unauthorized Disclosure of Information 2017-05-02
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf
03741en_us

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: hpesbhf03741en_us

Version: 1

HP

[ more ]  [ reply ]
IML 2017 Conference, ACM digital library proceedings, Venue: Liverpool John Moores University, United Kingdom 2017-04-29
IML 2017 Conference (cfp iml-conference site)
Call for Papers

International Conference on Internet of Things and Machine Learning (IML 2017)

Venue: Liverpool John Moores University, United Kingdom

Proceedings: ACM Digital Library/ ISBN: 978-1-4503-5243-7

Extended papers will be invited to our journals (Indexed by Thomson Reuters)

https://b

[ more ]  [ reply ]
SyntaxHighlight MediaWiki extension allows injection of arbitrary Pygments options 2017-04-29
Securify B.V. (lists securify nl)
------------------------------------------------------------------------

SyntaxHighlight MediaWiki extension allows injection of arbitrary
Pygments options
------------------------------------------------------------------------

Yorick Koster, February 2017

-----------------------------------------

[ more ]  [ reply ]
Multiple local privilege escalation vulnerabilities in HideMyAss Pro VPN client v2.x for OS X 2017-04-29
Securify B.V. (lists securify nl)
------------------------------------------------------------------------

Multiple local privilege escalation vulnerabilities in HideMyAss Pro VPN
client v2.x for OS X
------------------------------------------------------------------------

Han Sahin, April 2017

-------------------------------------

[ more ]  [ reply ]
[security bulletin] HPESBHF03738 rev.1 - HPE Intelligent Management Center (iMC) PLAT, Remote Code Execution 2017-04-28
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf
03738en_us

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: hpesbhf03738en_us

Version: 1

HP

[ more ]  [ reply ]
[SECURITY] [DSA 3838-1] ghostscript security update 2017-04-28
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3838-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
April 28, 2017

[ more ]  [ reply ]
Apple iOS 10.2 & 10.3 - Control Panel Denial of Service Vulnerability 2017-04-28
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Apple iOS 10.3 - Control Panel Denial of Service Vulnerability

References:
===========
https://www.vulnerability-lab.com/get_content.php?id=2059

Video: https://www.youtube.com/watch?v=MSscCLATxPQ

Release Date:
=============
2017-04-27

Vulnerability Laboratory

[ more ]  [ reply ]
Live Helper Chat - Cross-Site Scripting 2017-04-28
Advisories (advisories compass-security com)
#############################################################
#
# COMPASS SECURITY ADVISORY
# https://www.compass-security.com/en/research/advisories/
#############################################################
#
# CSNC ID: CSNC-2017-004
# Product: Live Helper Chat [1]
# Vendor: Live Helper Chat

[ more ]  [ reply ]
[SECURITY] [DSA 3836-1] weechat security update 2017-04-27
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3836-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
April 27, 2017

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-17:04.ipfilter 2017-04-27
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-17:04.ipfilter Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
CVE-2017-3162: Apache Hadoop DataNode web UI vulnerability 2017-04-26
Chris Douglas (cdouglas apache org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

CVE-2017-3162: Apache Hadoop DataNode web UI vulnerability

Severity: Important

Vendor: The Apache Software Foundation

Versions affected: Hadoop 2.6.x and earlier

Description:
HDFS clients interact with a servlet on the DataNode to browse the
HDFS

[ more ]  [ reply ]
April 2017 - Confluence - Security Advisory 2017-04-26
David Black (dblack atlassian com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

CVE ID:

* CVE-2017-7415.

Product: Confluence.

Affected Confluence product versions:

6.0.0 <= version < 6.0.7

Fixed Confluence product versions:

* for 6.0.x, Confluence 6.0.7 has been released with a fix for this issue.

Summary:
This advisory

[ more ]  [ reply ]
[SECURITY] [DSA 3834-1] mysql-5.5 security update 2017-04-25
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3834-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
April 25, 2017

[ more ]  [ reply ]
[slackware-security] mozilla-firefox (SSA:2017-114-01) 2017-04-24
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] mozilla-firefox (SSA:2017-114-01)

New mozilla-firefox packages are available for Slackware 14.2 and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/p

[ more ]  [ reply ]
[SECURITY] [DSA 3833-1] libav security update 2017-04-24
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3833-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
April 24, 2017

[ more ]  [ reply ]
KL-001-2017-009 : Solarwinds LEM Database Listener with Hardcoded Credentials 2017-04-24
KoreLogic Disclosures (disclosures korelogic com)
KL-001-2017-009 : Solarwinds LEM Database Listener with Hardcoded Credentials

Title: Solarwinds LEM Database Listener with Hardcoded Credentials
Advisory ID: KL-001-2017-009
Publication Date: 2017.04.24
Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-009.txt

1. Vulnera

[ more ]  [ reply ]
(Page 14 of 1726)  < Prev  9 10 11 12 13 14 15 16 17 18 19  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus