Facebook Graph OpenSearch Phone Number Metadata Crosswalk Mapping
Facebook Graph OpenSearch Phone Number metadata crosswalk mapping proof of concept exploit.
View ArticleIssueTrak 7.0 SQL Injection
IssueTrak version 7.0 suffers from a remote SQL injection vulnerability.
View ArticleSitemakin SLAC 1.0 SQL Injection
Sitemakin SLAC version 1.0 suffers from a remote SQL injection vulnerability.
View ArticleMyBB ChangUonDyU 1.0.2 Cross Site Scripting
MyBB ChangUonDyU plugin version 1.0.2 suffers from a cross site scripting vulnerability.
View ArticleFacebook Clone Script 1.0.5 Cross Site Request Forgery
Facebook Clone Script version 1.0.5 suffers from a cross site request forgery vulnerability.
View ArticleSharePoint Site User Enumeration
SharePoint's site suffers from a user enumeration vulnerability.
View ArticleTagLib Audio Meta-Data Library 1.11.1 Information Disclosure
The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib version 1.11.1 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted audio file.
View ArticlePivotal Spring Java Framework 5.0.x Remote Code Execution
Pivotal Spring Java Framework versions 5.0.x and below suffer from a remote code execution vulnerability.
View ArticlefoilChat Sign Up Email PIN Confirmation Bypass
The foilChat backend fails to prevent brute force attempts of the PIN code. An attacker can attempt all 10000 different PIN codes until the correct one is found, and then use the correct PIN to...
View ArticleFacebook Clone Script 1.0.5 SQL Injection
Facebook Clone Script version 1.0.5 suffers from a remote SQL injection vulnerability.
View ArticleVMware Security Advisory 2018-0014
VMware Security Advisory 2018-0014 - VMware Horizon Client update addresses a privilege escalation vulnerability.
View ArticleVgate iCar2 WiFi OBD2 Dongle Inadequate Access Protections
Vgate iCar2 WiFi OBD2 dongles suffer from having unprotected wifi access and unencrypted data transfer mechanisms alongside unauthenticated access to on-board diagnostics.
View ArticleGNU Barcode 0.99 Buffer Overflow
GNU Barcode version 0.99 suffers from a buffer overflow vulnerability.
View ArticleIBM QRadar SIEM Code Execution / Authentication Bypass
IBM QRadar SIEM versions prior to 7.3.1 Patch 3 or 7.2.8 Patch 28 suffer from authentication bypass, code execution, and privilege escalation vulnerabilities.
View ArticleUbuntu Security Notice USN-3661-1
Ubuntu Security Notice 3661-1 - It was discovered that Batik incorrectly handled certain XML. An attacker could possibly use this to expose sensitive information.
View ArticleUbuntu Security Notice USN-3662-1
Ubuntu Security Notice 3662-1 - It was discovered that the NVIDIA graphics drivers contained flaws in the kernel mode layer. A local attacker could use these issues to cause a denial of service or...
View Article