Sort by: Updated/Published

Full List of Bugtraq

Risk Topic Details
2015-04-18
Med.
PHP 5.6.6 move_uploaded_file() NULL byte filename truncation
 CVE Remote habte
High
Oracle Outside-In DOCX File Parsing Memory Corruption
 Local Francis Provencher
Low
Oracle Hyperion Smart View for Office Buffer Overflow
 CVE Local sajith
Low
Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference
 CWE Local Nicholas Lemonias
High
PHP 5.6.7 apache2handler remote code execution vulnerability
 CVE Remote Marc
Med.
ADB backup archive path traversal file overwrite
 CVE Remote Imre Rad
High
Android backup agent arbitrary code execution
 CVE Remote Imre Rad
2015-04-17
Low
Opoint Media Intelligence Open Redirect
 CWE Remote Wang Jing
High
Lychee 2.7.1 remote code execution
 Remote Filippo Cavallarin
Med.
Nodes Studio CMS SQL Injection, XSS and FPD vulnerabilities
 Remote MustLive
Med.
Wordpress Ajax Store Locator <= 1.2 SQL Injection Vulnerability
 CWE Remote Claudio Viviani
2015-04-16
Med.
gnutls 3.3.13 double-free in parsing CRL distribution points
 CVE Remote Robert Święcki
Med.
Microsoft Windows 8.1/7/others HTTP.sys Request Parsing DoS (MS15-034)
 Remote laurent gaffie
Low
Comsenz SupeSite CMS 7.0 Cross Site Scripting
 CWE Remote Wang Jing
Low
WordPress WP Statistics 9.1.2 Cross Site Scripting
 CWE Remote Kaustubh G. Padwad
High
SQLite Multiple Vulns.
 Local Michal Zalewski
High
Huawei SEQ Analyst - XML External Entity Injection (XXE)
 Remote Ugur Cihan Koc
Low
Huawei SEQ Analyst - Multiple Reflected Cross Site Scripting (XSS)
 CWE Remote Ugur Cihan Koc
2015-04-15
High
Microsoft Windows 8.1/7 others HTTP.sys Remote Code Execution
 CVE Remote rhcp011235
Low
ProFTPd 1.3.5 Remote File Copy
 CVE Remote TJ
High
Samsung iPOLiS 1.12.2 ReadConfigValue Remote Code Execution
 Remote Praveen Darshanam
High
Panda Antivirus Pro 2015 15.1.0 Authentication Bypass
 CWE Local Matthias Deeg
High
Panda Internet Security 2015 15.0.1 Authentication Bypass
 CWE Local Matthias Deeg
High
Panda Gold Protection 2015 15.1.0 Authentication Bypass
 CWE Local Matthias Deeg
High
Panda Global Protection 2015 15.1.0 Authentication Bypass
 CWE Remote Matthias Deeg
Med.
Hancom Office Hwp 2014 Integer Overflow
 CWE Remote Daniel Regalado
Low
log2space 6.2 Cross Site Scripting
 CWE Remote provensec
2015-04-14
High
Samba < 3.6.2 x86 Buffer Overflow PoC
 CVE Remote sleepya
High
Apport/Abrt Local Root Exploit
 CVE Local Tavis Ormandy
Med.
Fedora abrt Race Condition Exploit
 CVE Local Tavis Ormandy
High
OBECLMS (fckeditor) Arbitrary File Upload Vulnerability
 Remote Ashiyane Digital Secur...
High
NETVIDADE CMS (FCKEDITOR) Arbitrary File Upload Vulnerability
 Remote Ashiyane Digital Secur...
Med.
WordPress MiwoFTP Plugin 1.0.5 CSRF Arbitrary File Creation Exploit (RCE)
 CWE Remote Gjoko 'LiquidWorm' Krs...
Med.
WordPress MiwoFTP Plugin 1.0.5 Multiple CSRF XSS Vulnerabilities
 CWE Remote Gjoko 'LiquidWorm' Krs...
Low
WordPress MiwoFTP Plugin 1.0.5 CSRF Arbitrary File Deletion Exploit
 Remote Gjoko 'LiquidWorm' Krs...
Low
Linux Kernel splice() System Call Local DoS
 CVE Local Emeric Nasi
2015-04-13
Med.
GNU Mailman 2.1.19 remote execute arbitrary files
 CVE Remote Mark Sapiro
Low
MediaWiki 1.19.23 Stored XSS in SVG via embedded SVG
 CVE CWE Remote csteipp
Low
Safari Cross-Domain Hijacking
 Remote Jouko Pynnönen of Kli...
Med.
Internet Download Manager 6.xx DLL Hijacking
 Local TUNISIAN CYBER
Med.
net-snmp snmp_pdu_parse() function incompletely initializaition vulnerability
 Remote 罗大龙
2015-04-12
Low
Brother MFC-J4410DW Cross Site Scripting
 CVE CWE Remote Dave
High
AdaptCMS 3.0.3 Remote Command Execution
 CVE CWE Remote Gjoko 'LiquidWorm' Krs...
Low
AdaptCMS 3.0.3 HTTP Referer Header Field Open Redirect Vulnerability
 CVE CWE Remote Gjoko 'LiquidWorm' Krs...
Med.
Humhub 0.10.0-rc.1 Cross Site Scripting / SQL Injection
 CVE CWE Remote Jos Wetzels, Emiel Flo...
Low
AdaptCMS 3.0.3 Cross Site Scripting
 CVE CWE Remote Gjoko 'LiquidWorm' Krs...
Low
F5 BIG-IP Application Security Manager (ASM) XSS
 CVE CWE Remote Peter Lapp
Low
Fortimail 5.2.1 Cross Site Scripting
 CVE CWE Remote William Costa
Med.
libtasn1 Stack Write Overflow
 CVE Local Hanno B
Low
D-Link DCS-2103 Brute Force / Cross Site Scripting
 CVE CWE Remote MustLive
Med.
vBulletin Moderator Control Panel 4.2.2 CSRF
 CVE CWE Remote Tomescu Daniel
Low
Apache Flex asdoc Cross Site Scripting
 CVE CWE Remote Radjnies Bhansingh
Med.
libmspack frame_end overflow which could cause infinite loop
 CVE Local Jakub Wilk
Med.
Libtiff 4.0.3 Integer Overflow
 CVE CWE Remote Project Zero Labs
High
WordPress WP Symposium 14.11 Shell Upload
 CVE CWE Remote Claudio
Low
WTK Network 1.6.5 Sql injection Vulnerability
 CWE Remote Ali ahmady
Med.
OrangeHRM Blind SQL Injection & XSS Vulnerabilities
 CWE Remote Rehan Ahmed
2015-04-11
High
Adobe Flash Player casi32 Integer Overflow
 CVE CWE Remote Juan Vazquez
Low
ocPortal 9.0.16 Cross Site Scripting
 CVE CWE Remote Dennis Veninga
High
Exif Pilot 4.7.2 Buffer Overflow
 CVE CWE Local Osanda M. Jayathissa


Copyright 2015, cxsecurity.com