jetlib.sec » Tags » plus

Feeds

266967 items (205 unread) in 27 feeds

• 0day.today (was: 1337day, Inj3ct0r, 1337db) (204 unread)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines (1 unread)
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

116 items tagged "plus"

Related tags: disclosure [+], cross [+], code execution [+], buffer overflow [+], sql [+], file [+], download [+], divx [+], accelerator [+], search version [+], photo search [+], photo [+], hijacking [+], forgery [+], web player [+], scripts [+], kft [+], interpont [+], eventy [+], day [+], cms [+], classified ads [+], classified [+], vulnerability [+], xss [+], webmail [+], web [+], usernames passwords [+], third party [+], service vulnerability [+], scriptrr [+], quick notes [+], quick [+], proof of concept [+], phpbb2 [+], phpbb [+], pc tools [+], notes [+], movie [+], light [+], integrated asset management [+], inclusion [+], firewall [+], express [+], eqdkp [+], edit [+], edimestre [+], drupal [+], denial of service [+], dap [+], cross site scripting [+], com [+], calisto [+], burn [+], buffer overflow vulnerability [+], arbitrary files [+], arbitrary data [+], arbitrary code [+], administrative users [+], Tools [+], vulnerabilities [+], txt [+], security vulnerabilities [+], security [+], protection [+], poc [+], player versions [+], new security architecture [+], exploits [+], css [+], admanager [+], wordpress [+], wii [+], webapps [+], stack buffer [+], stabilization system [+], server authentication [+], server [+], safer use [+], quadcopter [+], player plugin [+], player [+], php [+], photo album [+], motion [+], management server [+], hacks [+], even keel [+], edimaster [+], bugtraq [+], arduino [+], arbitrary code execution [+], advanced [+], register [+], manageengine [+], servicedesk [+], phpmychat [+], redux [+], sql injection [+]

• December 30, 2012
• 3:11

  WordPress Photo Plus / Photo Search XSS / CSRF

   » ‎ Packet Storm Security Exploits
  WordPress Photo Plus / Photo Search version 4.8.11 suffers from cross site request forgery and cross site scripting vulnerabilities.

  Tags:  photo wordpress plus search-version photo-search forgery  

• 3:11

  WordPress Photo Plus / Photo Search XSS / CSRF

   » ‎ Packet Storm Security Exploits
  WordPress Photo Plus / Photo Search version 4.8.11 suffers from cross site request forgery and cross site scripting vulnerabilities.

  Tags:  photo wordpress plus search-version photo-search forgery  

• 3:11

  WordPress Photo Plus / Photo Search XSS / CSRF

   » ‎ Packet Storm Security Recent Files
  WordPress Photo Plus / Photo Search version 4.8.11 suffers from cross site request forgery and cross site scripting vulnerabilities.

  Tags:  photo wordpress plus search-version photo-search forgery  

• 3:11

  WordPress Photo Plus / Photo Search XSS / CSRF

   » ‎ Packet Storm Security Misc. Files
  WordPress Photo Plus / Photo Search version 4.8.11 suffers from cross site request forgery and cross site scripting vulnerabilities.

  Tags:  photo wordpress plus search-version photo-search forgery  

• 3:11

  WordPress Photo Plus / Photo Search XSS / CSRF

   » ‎ Packet Storm Security Misc. Files
  WordPress Photo Plus / Photo Search version 4.8.11 suffers from cross site request forgery and cross site scripting vulnerabilities.

  Tags:  photo wordpress plus search-version photo-search forgery  

• November 30, 2012
• 7:12

  Drupal Webmail Plus 6.x SQL Injection

   » ‎ Packet Storm Security Advisories
  Drupal Webmail Plus third party module version 6.x suffers from a remote SQL injection vulnerability.

  Tags:  drupal plus webmail vulnerability third-party  

• 7:12

  Drupal Webmail Plus 6.x SQL Injection

   » ‎ Packet Storm Security Recent Files
  Drupal Webmail Plus third party module version 6.x suffers from a remote SQL injection vulnerability.

  Tags:  drupal plus webmail vulnerability third-party  

• 7:12

  Drupal Webmail Plus 6.x SQL Injection

   » ‎ Packet Storm Security Misc. Files
  Drupal Webmail Plus third party module version 6.x suffers from a remote SQL injection vulnerability.

  Tags:  drupal plus webmail vulnerability third-party  

• November 29, 2012
• 0:00

  Vuln: WordPress CSS Plus Plugin Multiple Unspecified Security Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  WordPress CSS Plus Plugin Multiple Unspecified Security Vulnerabilities

  Tags:  wordpress css plus security-vulnerabilities  

• November 13, 2012
• 15:18

  Eventy CMS 1.8 Plus Cross Site Scripting / SQL Injection

   » ‎ Packet Storm Security Exploits
  Eventy CMS version 1.8 Plus suffers from cross site scripting and remote SQL injection vulnerabilities.

  Tags:  eventy plus cms  

• 15:18

  Eventy CMS 1.8 Plus Cross Site Scripting / SQL Injection

   » ‎ Packet Storm Security Recent Files
  Eventy CMS version 1.8 Plus suffers from cross site scripting and remote SQL injection vulnerabilities.

  Tags:  eventy plus cms  

• 15:18

  Eventy CMS 1.8 Plus Cross Site Scripting / SQL Injection

   » ‎ Packet Storm Security Misc. Files
  Eventy CMS version 1.8 Plus suffers from cross site scripting and remote SQL injection vulnerabilities.

  Tags:  eventy plus cms  

• 8:00

  Bugtraq: Eventy CMS v1.8 Plus - Multiple Web Vulnerablities

   » ‎ SecurityFocus Vulnerabilities
  Eventy CMS v1.8 Plus - Multiple Web Vulnerablities

  Tags:  eventy plus cms bugtraq  

• October 04, 2012
• 16:53

  phpMyChat Plus 1.94 RC1 LFI / XSS / RFI / SQL Injection

   » ‎ Packet Storm Security Exploits
  phpMyChat Plus version 1.94 RC1 suffers from cross site scripting, local file inclusion, remote file inclusion, and remote SQL injection vulnerabilities.

  Tags:  file phpmychat plus xss inclusion  

• 16:53

  phpMyChat Plus 1.94 RC1 LFI / XSS / RFI / SQL Injection

   » ‎ Packet Storm Security Recent Files
  phpMyChat Plus version 1.94 RC1 suffers from cross site scripting, local file inclusion, remote file inclusion, and remote SQL injection vulnerabilities.

  Tags:  file phpmychat plus xss inclusion  

• 16:53

  phpMyChat Plus 1.94 RC1 LFI / XSS / RFI / SQL Injection

   » ‎ Packet Storm Security Misc. Files
  phpMyChat Plus version 1.94 RC1 suffers from cross site scripting, local file inclusion, remote file inclusion, and remote SQL injection vulnerabilities.

  Tags:  file phpmychat plus xss inclusion  

• 0:00

  Vuln: WordPress CSS Plus Plugin Multiple Unspecified Security Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  WordPress CSS Plus Plugin Multiple Unspecified Security Vulnerabilities

  Tags:  wordpress css plus security-vulnerabilities  

• August 27, 2012
• 20:43

  Express Burn Plus 4.58 Buffer Overflow

   » ‎ Packet Storm Security Exploits
  Express Burn Plus version 4.58 suffers from a vulnerability that is caused due to a boundary error in the processing of a project file, which can be exploited to cause a unicode buffer overflow when a user opens e.g. a specially crafted .EBP file. Successful exploitation could allow execution of arbitrary code on the affected machine.

  Tags:  burn express plus buffer-overflow arbitrary-code vulnerability  

• 20:43

  Express Burn Plus 4.58 Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  Express Burn Plus version 4.58 suffers from a vulnerability that is caused due to a boundary error in the processing of a project file, which can be exploited to cause a unicode buffer overflow when a user opens e.g. a specially crafted .EBP file. Successful exploitation could allow execution of arbitrary code on the affected machine.

  Tags:  burn express plus buffer-overflow arbitrary-code vulnerability  

• 20:43

  Express Burn Plus 4.58 Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  Express Burn Plus version 4.58 suffers from a vulnerability that is caused due to a boundary error in the processing of a project file, which can be exploited to cause a unicode buffer overflow when a user opens e.g. a specially crafted .EBP file. Successful exploitation could allow execution of arbitrary code on the affected machine.

  Tags:  burn express plus buffer-overflow arbitrary-code vulnerability  

• August 14, 2012
• 14:00

  [dos / poc] - DivX Plus Player plugin 2.2.0.52 Buffer Overflow PoC

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [dos / poc] - DivX Plus Player plugin 2.2.0.52 Buffer Overflow PoC

  Tags:  poc divx plus buffer-overflow player-plugin  

• June 29, 2012
• 8:07

  PC Tools Firewall Plus 7.0.0.123 Denial Of Service

   » ‎ Packet Storm Security Exploits
  PC Tools Firewall Plus version 7.0.0.123 suffers from a denial of service vulnerability.

  Tags:  Tools plus firewall service-vulnerability denial-of-service pc-tools  

• 8:07

  PC Tools Firewall Plus 7.0.0.123 Denial Of Service

   » ‎ Packet Storm Security Recent Files
  PC Tools Firewall Plus version 7.0.0.123 suffers from a denial of service vulnerability.

  Tags:  Tools plus firewall service-vulnerability denial-of-service pc-tools  

• 8:07

  PC Tools Firewall Plus 7.0.0.123 Denial Of Service

   » ‎ Packet Storm Security Misc. Files
  PC Tools Firewall Plus version 7.0.0.123 suffers from a denial of service vulnerability.

  Tags:  Tools plus firewall service-vulnerability denial-of-service pc-tools  

• June 26, 2012
• 17:43

  Edimestre Plus 2.0 SQL Injection

   » ‎ Packet Storm Security Exploits
  Edimestre Plus version 2.0 suffers from a remote SQL injection vulnerability.

  Tags:  edimestre sql plus vulnerability  

• 17:43

  Edimestre Plus 2.0 SQL Injection

   » ‎ Packet Storm Security Recent Files
  Edimestre Plus version 2.0 suffers from a remote SQL injection vulnerability.

  Tags:  edimestre sql plus vulnerability  

• 17:43

  Edimestre Plus 2.0 SQL Injection

   » ‎ Packet Storm Security Misc. Files
  Edimestre Plus version 2.0 suffers from a remote SQL injection vulnerability.

  Tags:  edimestre sql plus vulnerability  

• June 24, 2012
• 14:00

  [webapps / 0day] - Edimaster Plus 2.0 - Sql injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - Edimaster Plus 2.0 - Sql injection Vulnerability

  Tags:  edimaster day plus vulnerability  

• June 22, 2012
• 17:01

  InterPont Plus Kft SQL Injection

   » ‎ Packet Storm Security Exploits
  InterPont Plus Kft suffers from a remote SQL injection vulnerability.

  Tags:  kft plus interpont sql-injection vulnerability  

• 17:01

  InterPont Plus Kft SQL Injection

   » ‎ Packet Storm Security Recent Files
  InterPont Plus Kft suffers from a remote SQL injection vulnerability.

  Tags:  kft plus interpont sql-injection vulnerability  

• 17:01

  InterPont Plus Kft SQL Injection

   » ‎ Packet Storm Security Misc. Files
  InterPont Plus Kft suffers from a remote SQL injection vulnerability.

  Tags:  kft plus interpont sql-injection vulnerability  

• 14:00

  [webapps / 0day] - InterPont Plus Kft - SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - InterPont Plus Kft - SQL Injection Vulnerability

  Tags:  day plus interpont sql-injection webapps kft  

• March 29, 2012
• 17:11

  WordPress Register Plus Redux Cross Site Scripting

   » ‎ Packet Storm Security Advisories
  Register Plus Redux version 3.7.2 for WordPress appears to suffer from additional cross site scripting vulnerabilities.

  Tags:  register wordpress plus redux  

• 17:11

  WordPress Register Plus Redux Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  Register Plus Redux version 3.7.2 for WordPress appears to suffer from additional cross site scripting vulnerabilities.

  Tags:  register wordpress plus redux  

• 17:11

  WordPress Register Plus Redux Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  Register Plus Redux version 3.7.2 for WordPress appears to suffer from additional cross site scripting vulnerabilities.

  Tags:  register wordpress plus redux  

• February 26, 2012
• 9:58

  Plus.scriptrr.com Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  Plus.scriptrr.com suffers from a cross site scripting vulnerability.

  Tags:  com plus scriptrr cross-site-scripting vulnerability  

• 9:58

  Plus.scriptrr.com Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  Plus.scriptrr.com suffers from a cross site scripting vulnerability.

  Tags:  com plus scriptrr cross-site-scripting vulnerability  

• 9:58

  Plus.scriptrr.com Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  Plus.scriptrr.com suffers from a cross site scripting vulnerability.

  Tags:  com plus scriptrr cross-site-scripting vulnerability  

• February 12, 2012
• 8:29

  Wi-Fi Security With Wi-Fi Protection Plus

   » ‎ Packet Storm Security Recent Files
  Whitepaper called Wi-Fi Security with Wi-Fi Protection Plus. Wi-Fi P+ is a new security architecture proposed by the authors.

  Tags:  protection plus security new-security-architecture  

• 8:29

  Wi-Fi Security With Wi-Fi Protection Plus

   » ‎ Packet Storm Security Misc. Files
  Whitepaper called Wi-Fi Security with Wi-Fi Protection Plus. Wi-Fi P+ is a new security architecture proposed by the authors.

  Tags:  protection plus security new-security-architecture  

• February 07, 2012
• 15:56

  ManageEngine ADManager Plus 5.2 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  ManageEngine ADManager Plus version 5.2 suffers from multiple cross site scripting vulnerabilities.

  Tags:  admanager manageengine plus  

• 15:56

  ManageEngine ADManager Plus 5.2 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  ManageEngine ADManager Plus version 5.2 suffers from multiple cross site scripting vulnerabilities.

  Tags:  admanager manageengine plus  

• January 26, 2012
• 13:21

  Register Plus 3.5.1 Cross Site Scripting / Code Execution

   » ‎ Packet Storm Security Exploits
  Register Plus versions 3.5.1 and below for WordPress suffer from code execution, cross site scripting and path disclosure vulnerabilities.

  Tags:  cross register plus code-execution disclosure  

• 13:21

  Register Plus 3.5.1 Cross Site Scripting / Code Execution

   » ‎ Packet Storm Security Recent Files
  Register Plus versions 3.5.1 and below for WordPress suffer from code execution, cross site scripting and path disclosure vulnerabilities.

  Tags:  cross register plus code-execution disclosure  

• 13:21

  Register Plus 3.5.1 Cross Site Scripting / Code Execution

   » ‎ Packet Storm Security Misc. Files
  Register Plus versions 3.5.1 and below for WordPress suffer from code execution, cross site scripting and path disclosure vulnerabilities.

  Tags:  cross register plus code-execution disclosure  

• December 29, 2011
• 15:34

  Register Plus Redux 3.7.3.1 XSS / SQL Injection / Code Execution

   » ‎ Packet Storm Security Exploits
  Register Plus Redux versions 3.7.3.1 and below suffer from cross site scripting, remote SQL injection and code execution vulnerabilities.

  Tags:  register plus redux code-execution  

• 15:34

  Register Plus Redux 3.7.3.1 XSS / SQL Injection / Code Execution

   » ‎ Packet Storm Security Recent Files
  Register Plus Redux versions 3.7.3.1 and below suffer from cross site scripting, remote SQL injection and code execution vulnerabilities.

  Tags:  register plus redux code-execution  

• 15:34

  Register Plus Redux 3.7.3.1 XSS / SQL Injection / Code Execution

   » ‎ Packet Storm Security Misc. Files
  Register Plus Redux versions 3.7.3.1 and below suffer from cross site scripting, remote SQL injection and code execution vulnerabilities.

  Tags:  register plus redux code-execution  

• October 14, 2011
• 19:02

  WordPress Photo Album Plus 4.1.1 SQL Injection

   » ‎ Packet Storm Security Misc. Files
  WordPress Photo Album Plus versions 4.1.1 and below suffer from a remote SQL injection vulnerability.

  Tags:  wordpress sql plus photo-album vulnerability  

• October 05, 2011
• 8:10

  DivX Plus Web Player 2.1.2.265 Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  DivX Plus Web Player versions 2.1.2.265 and below file:// buffer overflow proof of concept exploit.

  Tags:  divx web plus buffer-overflow web-player player-versions  

• 8:10

  DivX Plus Web Player 2.1.2.265 Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  DivX Plus Web Player versions 2.1.2.265 and below file:// buffer overflow proof of concept exploit.

  Tags:  divx web plus buffer-overflow web-player player-versions  

• 0:00

  Vuln: DivX Plus Web Player 'file://' URL Stack Buffer Overflow Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  DivX Plus Web Player 'file://' URL Stack Buffer Overflow Vulnerability

  Tags:  divx web plus buffer-overflow-vulnerability stack-buffer web-player  

• October 04, 2011
• 21:00

  [dos / poc] - DivX Plus Web Player "file://" Buffer Overflow Vulnerability PoC

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [dos / poc] - DivX Plus Web Player "file://" Buffer Overflow Vulnerability PoC

  Tags:  poc divx plus buffer-overflow-vulnerability web-player  

• September 14, 2011
• 15:55

  ManageEngine ServiceDesk Plus Code Execution / Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  ManageEngine ServiceDesk Plus is a complete web based and ITIL ready service desk software with integrated asset management developed by ManageEngine, the Enterprise IT Management Software division of Zoho Corporation. The authentication process of ServiceDesk Plus obfuscates user passwords using a trivial and symmetrical algorithm in Javascript code with no secret. Given that user passwords are locally stored in user cookies and having the Javascript code to encrypt and decrypt passwords in a .js file, the authentication process of ServiceDesk Plus can be bypassed allowing an attacker to get usernames+passwords of registered users. Additionally, a cross site scripting vulnerability related to search functions was found.

  Tags:  servicedesk manageengine plus integrated-asset-management usernames-passwords code-execution  

• 15:55

  ManageEngine ServiceDesk Plus Code Execution / Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  ManageEngine ServiceDesk Plus is a complete web based and ITIL ready service desk software with integrated asset management developed by ManageEngine, the Enterprise IT Management Software division of Zoho Corporation. The authentication process of ServiceDesk Plus obfuscates user passwords using a trivial and symmetrical algorithm in Javascript code with no secret. Given that user passwords are locally stored in user cookies and having the Javascript code to encrypt and decrypt passwords in a .js file, the authentication process of ServiceDesk Plus can be bypassed allowing an attacker to get usernames+passwords of registered users. Additionally, a cross site scripting vulnerability related to search functions was found.

  Tags:  servicedesk manageengine plus integrated-asset-management usernames-passwords code-execution  

• 15:55

  ManageEngine ServiceDesk Plus Code Execution / Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  ManageEngine ServiceDesk Plus is a complete web based and ITIL ready service desk software with integrated asset management developed by ManageEngine, the Enterprise IT Management Software division of Zoho Corporation. The authentication process of ServiceDesk Plus obfuscates user passwords using a trivial and symmetrical algorithm in Javascript code with no secret. Given that user passwords are locally stored in user cookies and having the Javascript code to encrypt and decrypt passwords in a .js file, the authentication process of ServiceDesk Plus can be bypassed allowing an attacker to get usernames+passwords of registered users. Additionally, a cross site scripting vulnerability related to search functions was found.

  Tags:  servicedesk manageengine plus integrated-asset-management usernames-passwords code-execution  

• 9:01

  Quadcopter stabilization system using Wii Motion Plus

   » ‎ Hack a Day
  If you’re contemplating a quadcopter build here’s a way to add stabilization hardware without breaking the bank. The BaronPilot project uses an Arduino and a Wii Motion Plus module to ensure an even keel for your flying projects. The hardware inside of the Motion Plus includes two gyroscopes, which the BaronPilot monitors for changes in [...]

  Tags:  quadcopter motion plus even-keel wii stabilization-system arduino hacks  

• August 23, 2011
• 7:31

  ManageEngine ServiceDesk Plus 8.0 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  ManageEngine ServiceDesk Plus version 8.0 suffers from multiple cross site scripting vulnerabilities.

  Tags:  servicedesk manageengine plus  

• 7:31

  ManageEngine ServiceDesk Plus 8.0 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  ManageEngine ServiceDesk Plus version 8.0 suffers from multiple cross site scripting vulnerabilities.

  Tags:  servicedesk manageengine plus  

• 7:31

  ManageEngine ServiceDesk Plus 8.0 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  ManageEngine ServiceDesk Plus version 8.0 suffers from multiple cross site scripting vulnerabilities.

  Tags:  servicedesk manageengine plus  

• August 11, 2011
• 22:08

  Calisto Light / Light Plus / Full SQL Injection

   » ‎ Packet Storm Security Exploits
  Calisto Light, Light Plus, and Full suffers from administrative bypass and remote SQL injection vulnerabilities.

  Tags:  light calisto plus sql-injection  

• 22:08

  Calisto Light / Light Plus / Full SQL Injection

   » ‎ Packet Storm Security Recent Files
  Calisto Light, Light Plus, and Full suffers from administrative bypass and remote SQL injection vulnerabilities.

  Tags:  light calisto plus sql-injection  

• 22:08

  Calisto Light / Light Plus / Full SQL Injection

   » ‎ Packet Storm Security Misc. Files
  Calisto Light, Light Plus, and Full suffers from administrative bypass and remote SQL injection vulnerabilities.

  Tags:  light calisto plus sql-injection  

• August 07, 2011
• 9:51

  Register Plus Redux For WordPress 3.7.3 Cross Site Scripting

   » ‎ Packet Storm Security Advisories
  Register Plus Redux versions 3.7.3 and below for WordPress suffer from persistent cross site scripting vulnerabilities.

  Tags:  register plus redux wordpress  

• 9:51

  Register Plus Redux For WordPress 3.7.3 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  Register Plus Redux versions 3.7.3 and below for WordPress suffer from persistent cross site scripting vulnerabilities.

  Tags:  register plus redux wordpress  

• 9:51

  Register Plus Redux For WordPress 3.7.3 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  Register Plus Redux versions 3.7.3 and below for WordPress suffer from persistent cross site scripting vulnerabilities.

  Tags:  register plus redux wordpress  

• July 29, 2011
• 0:00

  Vuln: ManageEngine ServiceDesk Plus Multiple HTML Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  ManageEngine ServiceDesk Plus Multiple HTML Injection Vulnerabilities

  Tags:  servicedesk manageengine plus  

• July 28, 2011
• 19:15

  ManageEngine ServiceDesk Plus 8.0 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  ManageEngine ServiceDesk Plus version 8.0 build 8013 suffers from multiple cross site scripting vulnerabilities.

  Tags:  servicedesk manageengine plus  

• 19:15

  ManageEngine ServiceDesk Plus 8.0 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  ManageEngine ServiceDesk Plus version 8.0 build 8013 suffers from multiple cross site scripting vulnerabilities.

  Tags:  servicedesk manageengine plus  

• 19:15

  ManageEngine ServiceDesk Plus 8.0 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  ManageEngine ServiceDesk Plus version 8.0 build 8013 suffers from multiple cross site scripting vulnerabilities.

  Tags:  servicedesk manageengine plus  

• July 26, 2011
• 0:00

  Vuln: ManageEngine ServiceDesk Plus Security Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ManageEngine ServiceDesk Plus Security Bypass Vulnerability

  Tags:  servicedesk manageengine plus vulnerability  

• July 25, 2011
• 13:05

  ManageEngine ServiceDesk Plus 8.0 Improper User Privileges

   » ‎ Packet Storm Security Exploits
  ManageEngine ServiceDesk Plus version 8.0 allows a user with limited privileges access to certain functionality that should only be available to administrative users. Proof of concept included.

  Tags:  servicedesk manageengine plus administrative-users proof-of-concept  

• 13:05

  ManageEngine ServiceDesk Plus 8.0 Improper User Privileges

   » ‎ Packet Storm Security Recent Files
  ManageEngine ServiceDesk Plus version 8.0 allows a user with limited privileges access to certain functionality that should only be available to administrative users. Proof of concept included.

  Tags:  servicedesk manageengine plus administrative-users proof-of-concept  

• 13:05

  ManageEngine ServiceDesk Plus 8.0 Improper User Privileges

   » ‎ Packet Storm Security Misc. Files
  ManageEngine ServiceDesk Plus version 8.0 allows a user with limited privileges access to certain functionality that should only be available to administrative users. Proof of concept included.

  Tags:  servicedesk manageengine plus administrative-users proof-of-concept  

• July 24, 2011
• 0:00

  Vuln: Download Accelerator Plus '.m3u' File Buffer Overflow Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Download Accelerator Plus '.m3u' File Buffer Overflow Vulnerability

  Tags:  download accelerator plus buffer-overflow-vulnerability  

• July 23, 2011
• 21:35

  Download Accelerator Plus 9.7 Buffer Overflow

   » ‎ Packet Storm Security Exploits
  Download Accelerator Plus (DAP) version 9.7 .m3u file buffer overflow exploit.

  Tags:  download accelerator plus buffer-overflow dap  

• 21:35

  Download Accelerator Plus 9.7 Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  Download Accelerator Plus (DAP) version 9.7 .m3u file buffer overflow exploit.

  Tags:  download accelerator plus buffer-overflow dap  

• 21:35

  Download Accelerator Plus 9.7 Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  Download Accelerator Plus (DAP) version 9.7 .m3u file buffer overflow exploit.

  Tags:  download accelerator plus buffer-overflow dap  

• June 18, 2011
• 2:43

  EQDKP Plus 0.6.4.5 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  EQDKP Plus versions 0.6.4.5 and below suffer from a cross site scripting vulnerability.

  Tags:  cross eqdkp plus vulnerability  

• 2:43

  EQDKP Plus 0.6.4.5 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  EQDKP Plus versions 0.6.4.5 and below suffer from a cross site scripting vulnerability.

  Tags:  cross eqdkp plus vulnerability  

• 2:43

  EQDKP Plus 0.6.4.5 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  EQDKP Plus versions 0.6.4.5 and below suffer from a cross site scripting vulnerability.

  Tags:  cross eqdkp plus vulnerability  

• May 28, 2011
• 20:29

  PostgreSQL Plus Advanced Server DBA Management Server Authentication Bypass Vulnerability

   » ‎ SecuriTeam
  This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Postgres Plus Advanced Server DBA Management Server.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  server plus advanced server-authentication safer-use management-server  

• May 16, 2011
• 7:29

  phpMyChat Plus 1.93 Local File Inclusion

   » ‎ Packet Storm Security Exploits
  A local file inclusion vulnerability in phpMyChat Plus version 1.93 can be exploited to include arbitrary files.

  Tags:  file phpmychat plus arbitrary-files vulnerability  

• 7:29

  phpMyChat Plus 1.93 Local File Inclusion

   » ‎ Packet Storm Security Recent Files
  A local file inclusion vulnerability in phpMyChat Plus version 1.93 can be exploited to include arbitrary files.

  Tags:  file phpmychat plus arbitrary-files vulnerability  

• 7:29

  phpMyChat Plus 1.93 Local File Inclusion

   » ‎ Packet Storm Security Misc. Files
  A local file inclusion vulnerability in phpMyChat Plus version 1.93 can be exploited to include arbitrary files.

  Tags:  file phpmychat plus arbitrary-files vulnerability  

• April 25, 2011
• 21:00

  [webapps / 0day] - phpMyChat Plus 1.93 Multiple Vulnerabilities

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - phpMyChat Plus 1.93 Multiple Vulnerabilities

  Tags:  day phpmychat plus vulnerabilities  

• 14:00

  [webapps / 0day] - phpMyChat Plus 1.93 Multiple Vulnerabilities

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - phpMyChat Plus 1.93 Multiple Vulnerabilities

  Tags:  day phpmychat plus vulnerabilities  

• 11:01

  phpMyChat Plus 1.93 SQL Injection

   » ‎ Packet Storm Security Exploits
  A remote SQL injection vulnerability in phpMyChat Plus version 1.93 can be exploited to extract arbitrary data.

  Tags:  phpmychat sql plus arbitrary-data vulnerability  

• 11:01

  phpMyChat Plus 1.93 SQL Injection

   » ‎ Packet Storm Security Recent Files
  A remote SQL injection vulnerability in phpMyChat Plus version 1.93 can be exploited to extract arbitrary data.

  Tags:  phpmychat sql plus arbitrary-data vulnerability  

• 11:01

  phpMyChat Plus 1.93 SQL Injection

   » ‎ Packet Storm Security Misc. Files
  A remote SQL injection vulnerability in phpMyChat Plus version 1.93 can be exploited to extract arbitrary data.

  Tags:  phpmychat sql plus arbitrary-data vulnerability  

• 10:59

  phpMyChat Plus 1.93 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  A reflected cross site scripting vulnerability in phpMyChat Plus version 1.93 can be exploited to execute arbitrary JavaScript.

  Tags:  cross phpmychat plus vulnerability  

• 10:59

  phpMyChat Plus 1.93 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  A reflected cross site scripting vulnerability in phpMyChat Plus version 1.93 can be exploited to execute arbitrary JavaScript.

  Tags:  cross phpmychat plus vulnerability  

• 10:59

  phpMyChat Plus 1.93 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  A reflected cross site scripting vulnerability in phpMyChat Plus version 1.93 can be exploited to execute arbitrary JavaScript.

  Tags:  cross phpmychat plus vulnerability  

• April 06, 2011
• 0:00

  Vuln: Classified Ads PLUS Scripts 'cid' Parameter SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Classified Ads PLUS Scripts 'cid' Parameter SQL Injection Vulnerability

  Tags:  scripts plus classified sql-injection vulnerability classified-ads  

• April 05, 2011
• 14:03

  Classified Ads PLUS Scripts SQL Injection

   » ‎ Packet Storm Security Exploits
  Classified Ads PLUS Scripts suffers from a remote SQL injection vulnerability.

  Tags:  scripts plus classified vulnerability classified-ads  

• 14:03

  Classified Ads PLUS Scripts SQL Injection

   » ‎ Packet Storm Security Recent Files
  Classified Ads PLUS Scripts suffers from a remote SQL injection vulnerability.

  Tags:  scripts plus classified vulnerability classified-ads  

• 14:03

  Classified Ads PLUS Scripts SQL Injection

   » ‎ Packet Storm Security Misc. Files
  Classified Ads PLUS Scripts suffers from a remote SQL injection vulnerability.

  Tags:  scripts plus classified vulnerability classified-ads  

• March 26, 2011
• 10:54

  MAGIX Movie Edit Pro 16 Plus 9,0,0,55 DLL Hijack

   » ‎ Packet Storm Security Exploits
  MAGIX Movie Edit Pro 16 Plus version 9,0,0,55 DLL hijacking exploit.

  Tags:  movie edit plus hijacking  

• 10:54

  MAGIX Movie Edit Pro 16 Plus 9,0,0,55 DLL Hijack

   » ‎ Packet Storm Security Recent Files
  MAGIX Movie Edit Pro 16 Plus version 9,0,0,55 DLL hijacking exploit.

  Tags:  movie edit plus hijacking  

• 10:54

  MAGIX Movie Edit Pro 16 Plus 9,0,0,55 DLL Hijack

   » ‎ Packet Storm Security Misc. Files
  MAGIX Movie Edit Pro 16 Plus version 9,0,0,55 DLL hijacking exploit.

  Tags:  movie edit plus hijacking  

• January 05, 2011
• 0:00

  Vuln: DivX Plus Player DLL Loading Arbitrary Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  DivX Plus Player DLL Loading Arbitrary Code Execution Vulnerability

  Tags:  divx player plus arbitrary-code-execution vulnerability  

• January 04, 2011
• 19:03

  Quick Notes Plus 5.0.0.47 DLL Hijacking

   » ‎ Packet Storm Security Exploits
  Quick Notes Plus version 5.0.0.47 suffers from a DLL hijacking vulnerability.

  Tags:  quick plus notes vulnerability quick-notes  

• 19:03

  Quick Notes Plus 5.0.0.47 DLL Hijacking

   » ‎ Packet Storm Security Recent Files
  Quick Notes Plus version 5.0.0.47 suffers from a DLL hijacking vulnerability.

  Tags:  quick plus notes vulnerability quick-notes  

• 19:03

  Quick Notes Plus 5.0.0.47 DLL Hijacking

   » ‎ Packet Storm Security Misc. Files
  Quick Notes Plus version 5.0.0.47 suffers from a DLL hijacking vulnerability.

  Tags:  quick plus notes vulnerability quick-notes  

• December 03, 2010
• 9:30

  Register Plus Redux 3.6.1 Cross Site Scripting / Path Disclosure

   » ‎ Packet Storm Security Exploits
  Register Plus Redux version 3.6.1 for WordPress suffers from cross site scripting, insufficient anti-automation and path disclosure vulnerabilities.

  Tags:  register plus redux disclosure wordpress  

• 9:30

  Register Plus Redux 3.6.1 Cross Site Scripting / Path Disclosure

   » ‎ Packet Storm Security Recent Files
  Register Plus Redux version 3.6.1 for WordPress suffers from cross site scripting, insufficient anti-automation and path disclosure vulnerabilities.

  Tags:  register plus redux disclosure wordpress  

• 9:30

  Register Plus Redux 3.6.1 Cross Site Scripting / Path Disclosure

   » ‎ Packet Storm Security Misc. Files
  Register Plus Redux version 3.6.1 for WordPress suffers from cross site scripting, insufficient anti-automation and path disclosure vulnerabilities.

  Tags:  register plus redux disclosure wordpress  

• November 26, 2010
• 0:00

  Vuln: WordPress Register Plus 'wp-login.php' Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  WordPress Register Plus 'wp-login.php' Multiple Cross Site Scripting Vulnerabilities

  Tags:  register wordpress plus  

• November 25, 2010
• 13:06

  Register Plus For WordPress Cross Site Scripting / Path Disclosure

   » ‎ Packet Storm Security Exploits
  Register Plus for WordPress suffers from cross site scripting and path disclosure vulnerabilities.

  Tags:  register wordpress plus disclosure  

• 13:06

  Register Plus For WordPress Cross Site Scripting / Path Disclosure

   » ‎ Packet Storm Security Recent Files
  Register Plus for WordPress suffers from cross site scripting and path disclosure vulnerabilities.

  Tags:  register wordpress plus disclosure  

• 13:06

  Register Plus For WordPress Cross Site Scripting / Path Disclosure

   » ‎ Packet Storm Security Misc. Files
  Register Plus for WordPress suffers from cross site scripting and path disclosure vulnerabilities.

  Tags:  register wordpress plus disclosure  

• October 03, 2010
• 14:00

  [local exploits] - Download Accelerator Plus 8.7.0.5 DLL Hijacking Exploit

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [local exploits] - Download Accelerator Plus 8.7.0.5 DLL Hijacking Exploit

  Tags:  download accelerator plus hijacking exploits  

• October 02, 2010
• 14:00

  [local exploits] - Download Accelerator Plus 9.3.0.5 DLL Hijacking Exploit

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [local exploits] - Download Accelerator Plus 9.3.0.5 DLL Hijacking Exploit

  Tags:  download accelerator plus hijacking exploits  

• March 17, 2010
• 21:00

  phpBB2 Plus 1.53 (kb.php?mode) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  phpBB2 Plus 1.53 (kb.php?mode) SQL Injection Vulnerability

  Tags:  php phpbb plus phpbb2 vulnerability  

• 17:00

  phpbb2plus-sql.txt

   » ‎ Packet Storm Security Recent Files
  phpBB2 Plus version 1.53 suffers from a remote SQL injection vulnerability.

  Tags:  txt phpbb plus sql-injection phpbb2 vulnerability  

• 17:00

  phpbb2plus-sql.txt

   » ‎ Packet Storm Security Exploits
  phpBB2 Plus version 1.53 suffers from a remote SQL injection vulnerability.

  Tags:  txt phpbb plus sql-injection phpbb2 vulnerability