[Forgot Password]
Login  Register Subscribe

24003

 
 

131486

 
 

106342

 
 

909

 
 

84584

 
 

134

 
 
Paid content will be excluded from the download.

Filter
Matches : 12782 Download | Alert*

The host is installed with OpenSSH version 5.6 or lower and is prone to security bypass vulnerability. A flaw is present in J-PAKE protocol which fails to validate the knowledge of shared secret. Successful exploitation could allow an attacker to authenticate without proper credentials by sending malformed requests.

The host is installed with Ruby on Rails 2.3.x before 2.3.13 and is prone to CRLF injection vulnerability. A flaw is present in the application which fails to sufficiently validate the values provided. Successful exploitation allows remote attackers to inject arbitrary HTTP headers into a response.

The host is installed with Ruby on Rails before 2.3.13 or 3.0.x before 3.0.10 or 3.1.x before 3.1.0.rc5 and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the application which fails to properly handle escaping function. Successful exploitation allows remote attackers to bypass the escaping code via a malformed unicode string.

The host is installed with Ruby on Rails before 2.3.13 or 3.0.x before 3.0.10 or 3.1.x before 3.1.0.rc5 and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the application which fails to properly handle strip_tags helper. Successful exploitation allows remote attackers to inject arbitrary web script or HTML into the response.

The host is installed with Ruby on Rails before 2.3.13 or 3.0.x before 3.0.10 or 3.1.x before 3.1.0.rc5 and is prone to multiple SQL injection vulnerabilities. The flaws are present in the application which fail to properly handle a crafted column name. Successful exploitation allows remote attackers to inject arbitrary SQL into a query.

The host is installed with Ruby on Rails 3.0.x before 3.0.10 or 3.1.x before 3.1.0.rc6 and is prone to filter skipping vulnerability. A flaw is present in the application which fails to properly handle glob characters. Successful exploitation allows an attacker to craft a URL and cause Rails to render an arbitrary view.

The host is installed with Google Chrome before 14.0.835.163 and is prone to double free vulnerability. A flaw is present in the application which fails in XPath handling. Successful exploitation allows remote attackers to cause denial of service or possibly have unspecified other impact.

The host is installed with Google Chrome before 14.0.835.163 and is prone to denial of service vulnerability. A flaw is present in the application, where a race condition exists within the certificate cache. Successful exploitation allows remote attackers to causes denial of service or possibly have unspecified other impact.

The host is installed with Google Chrome before 14.0.835.163 and is prone to unspecified vulnerability. A flaw is present in the application, which does not make use of Infobar interaction before use of the Windows Media Player plug-in. Successful exploitation allows remote attackers to have an unspecified impact.

The host is installed with Google Chrome before 14.0.835.163 and is prone to unspecified vulnerability. A flaw is present in the application, which does not properly consider the MIME type during the loading of a plug-in. Successful exploitation has unspecified impact and remote attack vectors.


Pages:      Start    4    5    6    7    8    9    10    11    12    13    14    15    16    17    ..   1278

© 2013 SecPod Technologies