[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256610

 
 

909

 
 

199263

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 15029 Download | Alert*

The host is installed with PHP and is prone to SQL injection vulnerability. A flaw is present in the set_magic_quotes_runtime function in PHP 5.3.2 and 5.3.3. When the MySQLi extension is used, there is no proper interaction with the use of mysqli_fetch_assoc function. Successful exploitation could allow an attacker to execute arbitrary SQL queries and gain unauthorized access.

The host is installed with OpenSSL and is prone to OCSP stapling vulnerability. A flaw is present in the application, which fails to correctly parse malformed ClientHello handshake messages. Successful exploitation could allow remote attackers to obtain contents of parsed OCSP (Online Certificate Status Protocol) extensions and cause denial of service by triggering invalid memory accesses.

The host is installed with Adobe Coldfusion and is prone to session fixation vulnerability. A flaw is present in the application 8.0 through 9.0.1 caused by an unspecified error which will persuade a victim to visit a specially-crafted link and log into the application. Successful exploitation allow remote attackers to hijack web sessions via unspecified vectors.

The host is installed with Adobe Coldfusion and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the application 8.0 through 9.0.1 where it fails to properly validate user-supplied input. Successful exploitation allows remote attackers to inject arbitrary web script or HTML via the cfform tag.

The host is installed with Adobe Coldfusion and is prone to unspecified vulnerability. A flaw is present in the application 8.0 through 9.0.1 caused by an error in the ColdFusion administrator console. Successful exploitation allows attackers to obtain sensitive information via unknown vectors.

The host is installed with Adobe Coldfusion and is prone to multiple CRLF injection vulnerabilities. The flaws are present in the application 8.0 through 9.0.1 caused by improper validation of user-supplied input which will persuade a victim to click on a specially-crafted URL link containing CRLF character sequences. Successful exploitation allows remote attackers to inject arbitrary HTTP headers ...

The host is installed with Adobe Coldfusion and is prone to multiple cross-site scripting (XSS) vulnerabilities. The flaws are in the application 8.0 through 9.0.1 which is caused by improper validation of user-supplied input by multiple scripts. Successful exploitation allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

The host is installed with OpenSSH and is prone to denial of service vulnerability. A flaw is present in sftp-glob.c and sftp.c, which fail to validate the pathnames passed to its functions. Successful exploitation could allow remote attackers to cause a denial of service.

The host is installed with PHP and is prone to stack based buffer overflow vulnerability. A flaw is present in the GD extension in PHP before 5.2.15 and 5.3.x before 5.3.4 where the application crashes if anti-aliasing steps are invalid. Successful exploitation will cause a denial of service condition.

The host is installed with Google Picasa and is prone to untrusted search path vulnerability. A flaw is present in the application, which fails to securely load executables while using the Locate on Disk feature. Successful exploitation could allow remote attackers to execute arbitrary code with the privilege of the running application.


Pages:      Start    1030    1031    1032    1033    1034    1035    1036    1037    1038    1039    1040    1041    1042    1043    ..   1502

© SecPod Technologies