-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
UPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c04692275
Version: 1
HPSBHF03340 rev.1 - HP ThinPro Linux and HP Smart Zero Core running HP Easy
Setup Wizard, Local Unauthorized Access, Elevation of Privilege
NOTICE: The information in this
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
CVE-2015-1835: Remote exploit of secondary configuration variables in
Apache Cordova on Android
Severity: High
Vendor:The Apache Software Foundation
Versions Affected:
Cordova Android up to 4.0.1 (3.7.2
# Exploit Title: DbNinja Flash XSS Exploit
# Google Dork: intitle: Flash XSS
# Date: May 27, 2015
# Exploit Author: John Page (hyp3rlinx)
# Website: hyp3rlinx.altervista.org
# Vendor Homepage: www.dbninja.com
# Software Link: www.dbninja.com
# Version: 3.2.6
# Tested on: Windows 7
# Category:
# Exploit Title: DbNinja Flash XSS Exploit
# Google Dork: intitle: Flash XSS
# Date: May 27, 2015
# Exploit Author: John Page (hyp3rlinx)
# Website: hyp3rlinx.altervista.org
# Vendor Homepage: www.dbninja.com
# Software Link: www.dbninja.com
# Version: 3.2.6
# Tested on: Windows 7
# Category:
Overwiew
SEARCH-LAB performed an independent security assessment on four
different D-Link devices. The assessment has identified altogether 53
unique vulnerabilities in the latest firmware (dated 30-07-2014).
Several vulnerabilities can be abused by a remote attacker to execute
arbitrary
A local dll injection vulnerability has been discovered in the official
Audacity 2.0.5.
Since the program is not specified with a fully qualified path name the program
uses a fixed path to look for specific files or libraries. This path includes
directories that may not be trusted or under user
