Entries Tagged with ‘redirection vulnerability’
Please view the original advisory/exploit here. The Porn Tube Search Script from the vendor Mechbunny suffers from Cross-Site Scripting and Redirection vulnerabilities.
(Continue reading…)-
Register here Blog about Xen, IT-Security, Linux and other stuff by Valentin Höbel.
Valentin Höbel
valentin@xenuser.org
xenuser@Twitter 
Files ≈ Packet Storm- ownCloud 4.0.x / 4.5.x Remote Code Execution
- SonicWall Dashboard Cross Site Scripting
- Apache Struts 2 ClassLoader Manipulation / DoS
- Slackware Security Advisory - sudo Updates
- Ubuntu Security Notice USN-2131-1
- Ubuntu Security Notice USN-2130-1
- Ubuntu Security Notice USN-2129-1
- Ubuntu Security Notice USN-2132-1
- Red Hat Security Advisory 2014-0261-01
- Ubuntu Security Notice USN-2128-1
- WordPress Premium Gallery Manager Shell Upload
- SolidWorks Workgroup PDM 2014 pdmwService.exe Arbitrary File Write
- HP Data Protector Backup Client Service Remote Code Execution
- Cisco Security Advisory 20140305-rpd
- EMC Documentum TaskSpace 6.7SP1 / 6.7SP2 Privilege Escalation / File Retrieval
- OpenDocMan 1.2.7 SQL Injection / Access Control
- Drupal NewsFlash 6.x / 7.x Cross Site Scripting
- Cisco Security Advisory 20140305-wlc
- Cisco RV110W / RV215W / CVR100W Login Bypass
- Drupal Masquerade 6.x / 7.x Access Bypass
- Exploit-DB updates
- [webapps] - Ilch CMS 2.0 - Persistent XSS Vulnerability
- [webapps] - OpenDocMan 1.2.7 - Multiple Vulnerabilities
- [local] - ALLPlayer M3U Buffer Overflow
- [local] - Calavera UpLoader 3.5 - SEH Buffer Overflow
- [webapps] - SpagoBI 4.0 - Persistent HTML Script Insertion
- [webapps] - couponPHP CMS 1.0 - Multiple Stored XSS and SQL Injection Vulnerabilities
- [webapps] - SpagoBI 4.0 - Arbitrary XSS File Upload
- [webapps] - SpagoBI 4.0 - Persistent XSS Vulnerability
- [local] - ALLPlayer 5.8.1 - (.m3u file) Buffer Overflow (SEH)
- [webapps] - Oracle Demantra 12.2.1 - Database Credentials Disclosure
- blog.xen.org
- Xen Project participates in GSoC 2014 and OPW Round 8
- Xen Project automatic testing on community infrastructure
- Announcing Xen 4.3.2 and 4.2.4 Releases
- Ballooning, rebooting, and the feature you’ve never heard of
- Xen Project @ FOSDEM’14: an Event Report
- Linux 3.14 and PVH
- Improved Xen support in FreeBSD
- libvirt support for Xen’s new libxenlight toolstack
- First Xen Project 4.4 Test Day on Monday, January 20
- Xen Related Talks @ FOSDEM 2014