On Fri, Sep 12, 2014 at 08:25:42AM +0300, Pedrov Jovovic wrote:
Hello This is my first post .
Here are the details :
Website : http://www.comguard.net/- (Security Expoerts)
I already sent them 2 emails and i didn't get a reply. The Security bug is
really simple , i was able to get to
I was helping out a family member with their computer when it came up
that they already had remote help software (SingleClickConnect or
SCC), when I asked what this was, the family member said it was
installed by Dell Support when trying to fix their issue. This was in
2008. I removed it, and
Wordfence v5.2.3 suffers from multiple vulnerabilities.
Stored XSS in IPTraf.php resulting from failing to sanitize
$_SERVER['REQUEST_URI']
Stored XSS in cached pages resulting from failing to sanitize
$_SERVER['HTTP_HOST'] -- Yep, you can put javascript in the host header
Insufficient Logging
Hi
First of this is my first post I do not claim to be a security expert
and do not possess a great expansive skill sets for such inquiry
however I do get curious at times and endevour in a hit and miss kind
of way.
Having said that I often find myself getting curious from time to time
and
#!/usr/bin/env python
# -*- coding: utf-8 -*-
#
#
#ALCASAR = 2.8.1 Remote Root Code Execution Vulnerability
#
#Author: eF
#Date : 2014-09-12
#URL : http://www.alcasar.net/
#
#This is not a responsible disclosure coz' I have no sense of ethics and I
don't give a f*ck.
#
