Document Title:
===
PhotoSync 1.1.3 Android - Command Inject Vulnerability
References (Source):
http://www.vulnerability-lab.com/get_content.php?id=1410
Release Date:
=
2015-01-21
Vulnerability Laboratory ID (VL-ID):
===
Document Title:
===
Program-O v2.4.6 - Multiple Web Vulnerabilities
References (Source):
http://www.vulnerability-lab.com/get_content.php?id=1414
Release Date:
=
2015-01-21
Vulnerability Laboratory ID (VL-ID):
1
CVE-2015-1180-xss-eventsentry
Information
Advisory by Octogence.
Name: Reflected XSS Vulnerability in EventSentry Web Reports Interface
Affected Software : EventSentry
Affected Versions: 3.1.0 and possibly below
Vendor Homepage : http://eventsentry.com/
Vulnerability Type : Cross
CVE-2015-1179-xss-mango-automation-scada
Information
-
Advisory by Octogence.
Name: Reflected XSS Vulnerability in Mango Automation SCADA/HMI software
Affected Software : Mango Automation
Affected Versions: 2.4.0 and possibly below
Vendor Homepage : http://infiniteautomation.com/
CVE-2015-1178-xss-x-cart-ecommerce
Information
Advisory by Octogence.
Name: Reflected XSS Vulnerability in X-CART e-Commerce software
Affected Software : X-Cart
Affected Versions: 5.1.8 and possibly below
Vendor Homepage : https://www.x-cart.com
Vulnerability Type : Cross-site Sc
CVE-2015-1177-xss-exponent
Information
Advisory by Octogence.
Name: Reflected XSS Vulnerability in Exponent CMS
Affected Software : Exponent
Affected Versions: 2.3.2 and possibly below
Vendor Homepage : http://www.exponentcms.org/
Vulnerability Type : Cross-site Scripting
Severit
SEC Consult Vulnerability Lab Security Advisory < 20150122-0 >
===
title: Multiple critical vulnerabilities
products: Symantec Data Center Security: Server Advanced (SDCS:SA)
Sy
CVE-2015-1176-xss-osticket
Information
Advisory by Octogence.
Name: Reflected XSS Vulnerability in osTicket Ticket system
Affected Software : osTicket
Affected Versions: 1.9.4 and possibly below
Vendor Homepage : http://osticket.com/
Vulnerability Type : Cross-site Scripting
Seve
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[slackware-security] samba (SSA:2015-020-01)
New samba packages are available for Slackware 14.1 and -current to
fix a security issue.
Here are the details from the Slackware 14.1 ChangeLog:
+--+
patches/packages/samba-4.1.
Document Title:
===
Remote Desktop v0.9.4 Android - Multiple Vulnerabilities
References (Source):
http://www.vulnerability-lab.com/get_content.php?id=1413
Release Date:
=
2015-01-20
Vulnerability Laboratory ID (VL-ID):
=
Document Title:
===
iExplorer 3.6.3 - DLL Hijacking Exploit itunesmobiledevice.dll
References (Source):
http://www.vulnerability-lab.com/get_content.php?id=1415
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9600
CVE-ID:
===
CVE-2014-9600
Release
Advisory: AVM FRITZ!Box: Firmware Signature Bypass
The signature check of FRITZ!Box firmware images is flawed. Malicious
code can be injected into firmware images without breaking the RSA
signature. The code will be executed either if a manipulated firmware
image is uploaded by the victim or if th
Document Title:
===
PhotoSync v1.1.3 Android - Command Inject Vulnerability
References (Source):
http://www.vulnerability-lab.com/get_content.php?id=1410
Release Date:
=
2015-01-21
Vulnerability Laboratory ID (VL-ID):
==
#2015-001 JasPer input sanitization errors
Description:
The JasPer project is an open source implementation for the JPEG-2000 codec.
The library is affected by an off-by-one error in a buffer boundary check in
jpc_dec_process_sot(), leading to a heap based buffer overflow, as well as
multiple u
14 matches
Mail list logo