OpenEMR is affected by a remote SQL injection vulnerability in version 4.1.0.
499e7cffde6975e3864b6da60cce4b1ff3052ba5e3e01da1faef1c52a23d9d35RedTeam Pentesting discovered a cross site scripting vulnerability in Bugzilla's chart generator during a penetration test. If attackers can persuade users to click on a prepared link or redirected them to such a link from an attacker-controlled website, they are able to run arbitrary JavaScript code in the context of the Bugzilla installation's domain. Versions affected include 2.17.1 to 3.4.12, 3.5.1 to 3.6.6, 3.7.1 to 4.0.2 and 4.1.1 to 4.1.3.
ca81bb38b09a55cb4defe19fe6466a61b7037842c123590640a2365869115e44Mavili Guestbook version 200711 suffers from bypass, cross site scripting and remote SQL injection vulnerabilities.
7a96c95fdfcde2cd584dd9411b3e01e71dd7226c0bdd39df56803b16c1ceece5Tiny Guest Book suffers from a cross site scripting vulnerability.
34b19eed67d063f4387987f573a85ad115fb70a95e0b4e306eab73947a2b0135OpenKM Document Management System version 5.1.7 suffers from a remote command execution vulnerability.
5a741622cc330f7ea7f229f2721e3a92506b815e729eed767a01758f0aee6cc3OpenKM Document Management System version 5.1.7 suffers from an authenticated privilege escalation vulnerability.
49cb4a1122d833c8f895823e05d71dfc8abe13d33615f668ecd9d5d856d3dbc0BigACE CMS version 2.7.5 suffers from a cross site scripting vulnerability.
364e3394c30b0a380a2b01fd289208b2355f63864d0efe688ee92bbb06d1b880Debian Linux Security Advisory 2378-1 - Several vulnerabilities have been discovered in ffmpeg, a multimedia player, server and encoder. Multiple input validations in the decoders for QDM2, VP5, VP6, VMD and SVQ1 files could lead to the execution of arbitrary code.
4293a0b63aeac884c297ae281a0e8def145d3c10d2e81ad0866d0e608bd2f3c1MyStore Tienda Virtual version 2.0 suffers from a remote SQL injection vulnerability.
949ed40da77608c540d9db566aa82e5ad4314c7d5ea667c7b855a897a831a89aPZIDS (Peta Zetas IDS) is a tool to test if your IDS is detecting threats properly. Written in Python.
782a38ad56fd8b478a46cd9fec2b164e0e758d8def1fc0aeb7f24a95cc747b14This Metasploit module exploits Stream Down version 6.8.0 using a SEH based buffer overflow that is triggered when processing the server response packet. During the overflow a structured exception handler is overwritten.
6bbe536d2eec48c278183c8a6d5335f1b5a29fdc9af13d4570983598df20d9f2The Apigee Facebook API suffers from a cross site scripting vulnerability.
a7a94d21b2aed2b2fee9db930789367ad50e64c9fc09291d03193c6d8d06ba9aThe WordPress Comment Rating plugin suffers from cross site scripting and remote SQL injection vulnerabilities.
e15b510886040d312e2ee9a5b8c0e0d7ddd69a9314eca5a3a360aee7aadad935MyStore Tienda Virtual suffers from a remote SQL injection vulnerability.
09b2314ebc737d06bdb61c9ad31c23f7b65c4fe044ea8d749e7a3fa83974af01Technitium MAC Address Changer allows you to change Media Access Control (MAC) Address of your Network Interface Card (NIC) irrespective to your NIC manufacturer or its driver. It has a very simple user interface and provides ample information regarding each NIC in the machine.
c52fde9a3517d2d95b182f5a532a23fa0f13f2c771598819114293b01e59681dWhitepaper called Linux Kernel Hooking, Data Manipulations and Making Root Exploits. Written in Turkish.
1a5539ddd930fc4dd551c4e0af67794c3d2813565f6acd29073cd082e1056454Secunia Security Advisory - Debian has issued an update for ipmitool. This fixes a security issue, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
476a362cef6fdbee7669e0acf64ac36fb031f0eb22dc1af9f3554e9c82bbcc2aSecunia Security Advisory - Two vulnerabilities have been discovered in Rapidleech, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
f69dff6719d5ae96081525f9de818a9eedb5b94fc4649cb702cea0a17562c9d6Secunia Security Advisory - A vulnerability has been discovered in the TheCartPress plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
c243fb80f366619c54184f1cd1f03c485d70b9455eec022d3d55e7529ab1a08c
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed