BugTraq Mode:
(Page 11 of 1724)  < Prev  6 7 8 9 10 11 12 13 14 15 16  Next >
CVE-2016-6799: Internal system information leak 2017-05-09
Simon MacDonald (macdonst apache org)
CVE-2016-6799: Internal system information leak

Severity: High

Vendor: The Apache Software Foundation

Versions Affected: Cordova Android (5.2.2 and below)

Description: The application calls methods of the Log class. Messages
passed to these methods (Log.v(), Log.d(), Log.i(), Log.w(), and
Log.e(

[ more ]  [ reply ]
SEC Consult SA-20170509-0 :: Multiple vulnerabilities in I, Librarian PDF manager 2017-05-09
SEC Consult Vulnerability Lab (research sec-consult com)
SEC Consult Vulnerability Lab Security Advisory < 20170509-0 >
=======================================================================
title: Multiple vulnerabilities
product: I, Librarian PDF manager
vulnerable version: <=4.6 & 4.7
fixed version: 4.8
CVE nu

[ more ]  [ reply ]
[SECURITY] [DSA 3846-1] libytnef security update 2017-05-09
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3846-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
May 09, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 3845-1] libtirpc security update 2017-05-08
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3845-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
May 08, 2017

[ more ]  [ reply ]
ESA-2017-035: EMC Mainframe Enablers ResourcePak Base privilege management vulnerability 2017-05-08
EMC Product Security Response Center (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

ESA-2017-035: EMC Mainframe Enablers ResourcePak Base privilege management vulnerability

EMC Identifier: ESA-2017-035

CVE Identifier: CVE-2017-4982

Severity Rating: CVSS v3 Base Score: 7.0 (AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H)

Affected pro

[ more ]  [ reply ]
CA20170504-01: Security Notice for CA Client Automation OS Installation Management 2017-05-05
Kotas, Kevin J (Kevin Kotas ca com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

CA20170504-01: Security Notice for CA Client Automation OS
Installation Management

Issued: May 4, 2017
Last Updated: May 4, 2017

CA Technologies is alerting customers to a potential risk with CA
Client Automation OS Installation Management. A vulner

[ more ]  [ reply ]
[security bulletin] HPESBHF03736 rev.1 - HPE Aruba and HPE ProVision network switches using Diffie Hellman Group1 Sha1 Exchange Algorithm, Remote Disclosure of Information 2017-05-04
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf
03736en_us

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: hpesbhf03736en_us

Version: 1

HP

[ more ]  [ reply ]
[security bulletin] HPESBGN03740 rev.1 - HPE Network Automation, Multiple Remote Vulnerabilities 2017-05-04
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbgn
03740en_us

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: hpesbgn03740en_us

Version: 1

HP

[ more ]  [ reply ]
WordPress Core <= 4.7.4 Potential Unauthorized Password Reset (0day) [CVE-2017-8295] 2017-05-03
Dawid Golunski (dawid legalhackers com)
WordPress Core <= 4.7.4 Potential Unauthorized Password Reset (0day)
[CVE-2017-8295]

https://exploitbox.io/vuln/WordPress-Exploit-4-7-Unauth-Password-Reset-0
day-CVE-2017-8295.html

Regards,
Dawid Golunski
https://legalhackers.com
https://ExploitBox.io
t: @dawid_golunski

[ more ]  [ reply ]
ESA-2017-036: EMC Data Domain Privilege Escalation Vulnerability 2017-05-03
EMC Product Security Response Center (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

ESA-2017-036: EMC Data Domain Privilege Escalation Vulnerability

EMC Identifier: ESA-2017-036

CVE Identifier: CVE-2017-4983

Severity Rating: CVSS v3 Base Score: 6.7 (AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)

Affected products:

? EMC

[ more ]  [ reply ]
Zenario CMS v7.6 - (Delete) Persistent Cross Site Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Zenario v7.6 - (Delete) Persistent Cross Site Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2042

Release Date:
=============
2017-03-20

Vulnerability Laboratory ID (VL-ID):
==========================

[ more ]  [ reply ]
Zenario v7.6 - Persistent Cross Site Scripting Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Zenario v7.6 - Persistent Cross Site Scripting Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2044

https://github.com/TribalSystems/Zenario/commit/cd60f1c8a179ebb779fe0acc
051b93f477129b1a

Release Date:

[ more ]  [ reply ]
Arachni v1.5-0.5.11 - Persistent Cross Site Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Arachni v1.5-0.5.11 - Persistent Cross Site Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2046

Release Date:
=============
2017-03-29

Vulnerability Laboratory ID (VL-ID):
============================

[ more ]  [ reply ]
Super File Explorer 1.0.1 - Arbitrary File Upload Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Super File Explorer 1.0.1 - Arbitrary File Upload Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2034

Release Date:
=============
2017-02-23

Vulnerability Laboratory ID (VL-ID):
======================

[ more ]  [ reply ]
Joomla com_tag v1.7.6 - (tag) SQL Injection Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Joomla com_tag v1.7.6 - (tag) SQL Injection Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2061

IEDB: http://iedb.ir/exploits-7454.html

Release Date:
=============
2017-05-02

Vulnerability Laboratory

[ more ]  [ reply ]
Hola VPN v1.34 - Privilege Escalation Vulnerability 2017-05-03
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Hola VPN v1.34 - Privilege Escalation Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2062

Release Date:
=============
2017-05-03

Vulnerability Laboratory ID (VL-ID):
==================================

[ more ]  [ reply ]
Mura CMS Cross-Site Scripting (XSS) Vulnerability 2017-05-03
Leon Zhao 7 gmail com
Credits
===============
Zhao Liang, Huawei Weiran Labs

Vendor:
===============
Blue River Interactive Group

Product:
========================
Mura CMS

Mura CMS is built with one focused purpose in mind - to make it easier and faster for people to build and maintain even the most ambitious websi

[ more ]  [ reply ]
[SECURITY] [DSA 3843-1] tomcat8 security update 2017-05-03
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3843-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
May 03, 2017

[ more ]  [ reply ]
[SECURITY] [DSA 3842-1] tomcat7 security update 2017-05-03
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3842-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
May 03, 2017

[ more ]  [ reply ]
MODX Revolution 2.0.1-pl - 2.5.6-pl blind SQLi 2017-05-02
Anti Räis (antirais gmail com)
MODX Revolution 2.0.1-pl - 2.5.6-pl blind SQLi
##############################################

Information
===========

Name: MODX Revolution 2.0.1 - 2.5.6 (based on git commit)
Software: MODX CMS
Homepage: https://modx.com
Vulnerability: blind SQL injection
Prerequisites: attacke

[ more ]  [ reply ]
[security bulletin] HPESBHF03741 rev.1 - HPE Network products including Comware 7, IMC, and VCX running OpenSSL, Local Unauthorized Disclosure of Information, Remote Denial of Service (DoS), Unauthorized Disclosure of Information 2017-05-02
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf
03741en_us

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: hpesbhf03741en_us

Version: 1

HP

[ more ]  [ reply ]
IML 2017 Conference, ACM digital library proceedings, Venue: Liverpool John Moores University, United Kingdom 2017-04-29
IML 2017 Conference (cfp iml-conference site)
Call for Papers

International Conference on Internet of Things and Machine Learning (IML 2017)

Venue: Liverpool John Moores University, United Kingdom

Proceedings: ACM Digital Library/ ISBN: 978-1-4503-5243-7

Extended papers will be invited to our journals (Indexed by Thomson Reuters)

https://b

[ more ]  [ reply ]
SyntaxHighlight MediaWiki extension allows injection of arbitrary Pygments options 2017-04-29
Securify B.V. (lists securify nl)
------------------------------------------------------------------------

SyntaxHighlight MediaWiki extension allows injection of arbitrary
Pygments options
------------------------------------------------------------------------

Yorick Koster, February 2017

-----------------------------------------

[ more ]  [ reply ]
Multiple local privilege escalation vulnerabilities in HideMyAss Pro VPN client v2.x for OS X 2017-04-29
Securify B.V. (lists securify nl)
------------------------------------------------------------------------

Multiple local privilege escalation vulnerabilities in HideMyAss Pro VPN
client v2.x for OS X
------------------------------------------------------------------------

Han Sahin, April 2017

-------------------------------------

[ more ]  [ reply ]
[security bulletin] HPESBHF03738 rev.1 - HPE Intelligent Management Center (iMC) PLAT, Remote Code Execution 2017-04-28
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf
03738en_us

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: hpesbhf03738en_us

Version: 1

HP

[ more ]  [ reply ]
[SECURITY] [DSA 3838-1] ghostscript security update 2017-04-28
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3838-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
April 28, 2017

[ more ]  [ reply ]
Apple iOS 10.2 & 10.3 - Control Panel Denial of Service Vulnerability 2017-04-28
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Apple iOS 10.3 - Control Panel Denial of Service Vulnerability

References:
===========
https://www.vulnerability-lab.com/get_content.php?id=2059

Video: https://www.youtube.com/watch?v=MSscCLATxPQ

Release Date:
=============
2017-04-27

Vulnerability Laboratory

[ more ]  [ reply ]
Live Helper Chat - Cross-Site Scripting 2017-04-28
Advisories (advisories compass-security com)
#############################################################
#
# COMPASS SECURITY ADVISORY
# https://www.compass-security.com/en/research/advisories/
#############################################################
#
# CSNC ID: CSNC-2017-004
# Product: Live Helper Chat [1]
# Vendor: Live Helper Chat

[ more ]  [ reply ]
[SECURITY] [DSA 3836-1] weechat security update 2017-04-27
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3836-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
April 27, 2017

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-17:04.ipfilter 2017-04-27
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

========================================================================
=====
FreeBSD-SA-17:04.ipfilter Security Advisory
The FreeBSD Project

Topic:

[ more ]  [ reply ]
(Page 11 of 1724)  < Prev  6 7 8 9 10 11 12 13 14 15 16  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus