Dasan Networks GPON ONT WiFi Router H64X Series suffers from a privilege escalation vulnerability.
77c3e76e1b2715bfa3f6e6f46442a7d80501cb82f492ae6e10822b2c464e5804Vodafone Italia's webmail system suffers from a cross site scripting vulnerability that can be leveraged via an incoming email.
73bb1928c9a0788d7c25a40471f33fa8d63be2abed6dbec656c3c0643eb1aa01Apache OpenMeetings version 1.0.0 suffers from a denial of service vulnerability.
3aae98e6bf155757ab232e563a55638fd1a73dd88ec8210e426dc12163b6fdbcWhitepaper called Hidden Network: Detecting Hidden Networks created with USB Devices.
531441acb57722437bbe94c8f071badc20f04dfa33b34ce9c8812ca8f7b97accApache OpenMeetings version 1.0.0 handles user passwords in an insecure manner.
60e6d3ec3efb88c77b2ea7435546183db3b87cdf8ba86b197bd1c15707ddb3a7Apache httpd version 2.4.26 suffers from a read-after-free vulnerability in mod_http2.c.
5788d2bb13675315c4d85719f45460fa96c989f620a7e188f93cc79661354490Apache Open Meetings version 3.2.0 suffers from a cross site scripting vulnerability.
6dc5b8c878736706ddaf3f7fb4778d305e9c05aa6e7469a8eb53fa8b005f1b45Dasan Networks GPON ONT WiFi Router H64X Series suffers from a cross site request forgery vulnerability.
888bec27cedcd3bccba124b1839b5ff363df148add2268e27c1b8b6cd55da46cAll Apache versions through 2.2.33 and 2.4.26 suffer from an uninitialized memory reflection vulnerability in mod_auth_digest.
92719f7ec400c3d1e5ecae67472b60a11b11baa975d0c4396f6d491b24397cccDasan Networks GPON ONT WiFi Router H64X Series does not properly perform authentication and authorization, allowing it to be bypassed through cookie manipulation. Setting the Cookie 'Grant' with value 1 (user) or 2 (admin) will bypass security controls in place enabling the attacker to take full control of the device management interface.
c3cd6665c308dda2cda1ed68cf0ca4c303b2082244008416fbc1d832bb0787f1The thirteenth edition of the Ekoparty Security Conference has announced its Call For Papers. It will take place September 25th through the 29th, 2017 in Buenos Aires, Argentina.
a6d27339bf548946d0903c90e09e5797e73a9d37c36d21237d3fe46e4f0df202Sitecore CMS version 8.2 suffers from cross site scripting and file disclosure vulnerabilities.
745ca93afd64f6a67937abb2b76921c146c8517548a8b85d941d4e9385ae832dPyCharm 2-0 / 2017 suffers from a command-line buffer overflow vulnerability.
2e7002255ec35d2edf52b454d5e45882df5d1f17ed608219757d14789cf55e66RSA Authentication Manager versions 8.2 SP1 and below suffer from a stored cross site scripting vulnerability.
c31fde5fadca0381720b8ef7d955adfdba08221f05e84439d1f2f7ad01e81ef2Apache OpenMeetings version 3.1.0 has an issue where uploaded XML documents were not correctly validated.
0c40e026169192c4b71818a5573b88f036713a82c8d066a6f1c4209bbd9f92d7Multiple RSA Identity Governance and Lifecycle products suffer from remote file upload and cross site scripting vulnerabilities. Affected products include RSA Identity Governance and Lifecycle versions 7.0.1, 7.0.2, all patch levels, RSA Via Lifecycle and Governance version 7.0, all patch levels, and RSA Identity Management and Governance (RSA IMG) versions 6.9.1, all patch levels.
0f5caa47804fc3e1dd9e10da53b7e9e83f7a1100ba47b413651bbc81681d7173
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed