[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247862

 
 

909

 
 

194603

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 14840 Download | Alert*

The host is installed with Adobe ColdFusion 11 before Update 7 or 10 before Update 18 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle an input validation issue. Successful exploitation allows remote attackers to inject arbitrary web script or HTML.

The host is installed with Adobe ColdFusion 11 before Update 7 or 10 before Update 18 and is prone to a server-side request forgery vulnerability. A flaw is present in the application, which fails to handle a crafted XML document. Successful exploitation allows remote attackers to send HTTP traffic to intranet servers.

The host is installed with Apache Subversion 1.4.0 before 1.8.17 or 1.9.0 before 1.9.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle an issue in mod_dontdothat module. Successful exploitation could allow remote attackers to cause the targeted process to consume an excessive amount of CPU resources or memory.

The host is installed with Apache Subversion 1.0.x before 1.8.19 or 1.9.x before 1.9.7 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a maliciously constructed SVN URL. Successful exploitation could allow remote attackers to cause SVN to run an arbitrary shell command.

The host is installed with Calibre version 3.18 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted .pickle file. Successful exploitation could allow remote attackers to execute arbitrary code via a crafted .pickle file.

The host is installed with Calibre version before 2.75 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle a crafted epub file with javaScript. Successful exploitation could allow remote attackers to to read arbitrary files.

An information disclosure vulnerability exists in the way Microsoft SharePoint handles session objects. A locally authenticated attacker who successfully exploited the vulnerability could hijack the session of another user. To exploit this vulnerability, the attacker could run a specially crafted application. The security update corrects how SharePoint handles session objects to prevent user sessi ...

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server. The attacker who successfully exploited the vulnerability could then perform cross-site scrip ...

The host is installed with Oracle Java SE and is prone to unspecified vulnerability. A flaw is present in application, which fails to properly handle vectors related to security. Successful exploitation allow local users to affect confidentiality.

The host is installed with PHP and is prone to use-after-free vulnerability. A flaw is present in the Zend engine in PHP before 5.2.15 and 5.3.x before 5.3.4 where objects that are unreferenced by __set, __get, __isset, and __unset methods are freed early, which leads to heap memory corruption. Successful exploitation will allow attackers to cause a denial of service condition.


Pages:      Start    1081    1082    1083    1084    1085    1086    1087    1088    1089    1090    1091    1092    1093    1094    ..   1483

© SecPod Technologies