Entries Tagged with ‘redirection vulnerability’
Please view the original advisory/exploit here. The Porn Tube Search Script from the vendor Mechbunny suffers from Cross-Site Scripting and Redirection vulnerabilities.
(Continue reading…)-
Register here Blog about Xen, IT-Security, Linux and other stuff by Valentin Höbel.
Valentin Höbel
valentin@xenuser.org
xenuser@Twitter 
Files ≈ Packet Storm- Adobe Flash Player Regular Expression Heap Overflow
- Ruby Gem sfpagent 0.4.14 Command Injection
- ROOTCON 8 Call For Papers
- CU3ER 1.24 Cross Site Scripting / Content Spoofing
- Sercomm TCP/32674 Backdoor Reactivation
- Linux group_info Denial Of Service
- Linux x86 Reverse Engineering
- vBulletin 5.1 Cross Site Scripting
- D-Link DAP-1320 Directory Traversal / Cross Site Scripting
- F-Secure Messaging Security Gateway 7.5.0.892 Cross Site Scripting
- AIEngine 0.6
- Nagios Remote Plugin Executor 2.15 Remote Command Execution
- HP Security Bulletin HPSBMU02995 3
- HP Security Bulletin HPSBMU02998 2
- HP Security Bulletin HPSBGN03010
- HP Security Bulletin HPSBMU02935 2
- HP Security Bulletin HPSBMU02987
- HP Security Bulletin HPSBMU02988
- HP Security Bulletin HPSBMU02982
- HP Security Bulletin HPSBGN03008
- Exploit-DB updates
- [webapps] - PTCeffect 4.6 - LFI & SQL Injection Vulnerabilities
- [webapps] - CMSimple 4.4, 4.4.2 - Remote File Inclusion
- [remote] - Sercomm TCP/32674 Backdoor Reactivation
- [dos] - Linux group_info refcounter - Overflow Memory Corruption
- [remote] - NRPE <= 2.15 - Remote Command Execution
- [remote] - SAP Router - Timing Attack Password Disclosure
- [dos] - Jzip SEH Unicode Buffer Overflow (Denial of Service)
- [remote] - MS14-012 Microsoft Internet Explorer CMarkup Use-After-Free
- [webapps] - Xerox DocuShare - SQL Injection
- [remote] - Unitrends Enterprise Backup 7.3.0 - Unauthenticated Root RCE
- blog.xen.org
- Call For Participation is Open for the Xen Project User Summit in New York City
- IVI system sandboxing: The next frontier for in-vehicle upgrades
- Virtualization on ARM with Xen
- Rackspace hosts Xen Project Hackathon, May 29-30 in London
- Xen Project Team Hits the Road
- XenGT – a Full Graphics Virtualization Solution on Intel ® Processor Graphics
- Xen 4.4 Released
- Xen Project Developer Summit Call for Participation is Open
- Xen Project participates in GSoC 2014 and OPW Round 8
- Xen Project automatic testing on community infrastructure