Full Disclosure
Posted by Vulnerability Lab on Apr 13
Document Title:
===============
Webline CMS (2016Q2) – SQL Injection Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1823
Release Date:
=============
2016-04-13
Vulnerability Laboratory ID (VL-ID):
====================================
1823
Common Vulnerability Scoring System:
====================================
7.4
Product & Service Introduction:
===============================…
Posted by Security Explorations on Apr 12
Hello All,
We discovered that yet another fix for a security vulnerability in IBM
Java (Issue 70 [1] assigned CVE-2013-5456) we reported to the company
in 2013 hasn’t been fixed properly.
Again, the actual root cause of the issue hasn’t been addressed at all.
There were no security checks introduced anywhere in the code. The patch
primarily addressed the scenario illustrated by a Proof of Concept code.
It didn’t take into account…
Posted by Securify B.V. on Apr 12
————————————————————————
.NET Framework 4.6 allows side loading of Windows API Set DLL
————————————————————————
Yorick Koster, February 2016
————————————————————————
Abstract
————————————————————————
A DLL side loading vulnerability was found in the .NET…
Posted by Vulnerability Lab on Apr 12
Document Title:
===============
Wordpress Robo Gallery v2.0.14 – Code Execution Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1822
Release Date:
=============
2016-04-12
Vulnerability Laboratory ID (VL-ID):
====================================
1822
Common Vulnerability Scoring System:
====================================
8.9
Product & Service Introduction:…
Posted by Árpád Magosányi on Apr 09
Hi,
This is not a security vulnerability in itself, “just” a trend
undermining the trust architecture of the whole internet 🙂
I think it is very important, and wonder why I don’t see any discussion
of it. If this is not the right forum to discuss it, please direct me to
the right place.
The problem is:
Browser developers are dropping support for X509 key generation.
Yes, <keygen> have its problems. But window.crypto -…
Posted by Rio Sherri on Apr 08
#!/usr/bin/python -w
# Title : Express Zip <= 2.40 Path Traversal
# Date : 07/04/2016
# Author : R-73eN
# Tested on : Windows Xp / Windows 7 Ultimate
# Software Link : http://www.nchsoftware.com/zip/
# Download Link: http://www.nchsoftware.com/zip/zipplus.exe
# Vulnerable Versions : Express Zip <= 2.40
# Express Zip doesn’t validates ” .. ” which makes possible
# to do a path traversal attack which can be converted easily to…
Posted by Simon Waters (Surevine) on Apr 08
CivicRM extends common CMS platforms (WordPress, Drupal) with a module to manage Civic campaigns, tracking donors,
amounts, and campaign CRM type activity.
I tested the WordPress integration of CivicRM 4.7b3 which was found to have blind SQL Injections that allow
authenticated users to download arbitrary database content.
The first was in the columns[0][data] parameter when querying a contact relationship in the AJAX query….
Posted by xiong piaox on Apr 08
Advisory: DotCMS xss vulnerability
Author: Piaox From Pingan Product Safety Group
Email: xiongyaofu351 () pingan com cn
Affected Version: dotCMS 3.5 Beta(the latest version)
Vulnerability Description
lucene_search.jsp
26 String query = request.getParameter(“query”);
27 if(!UtilMethods.isSet(query)){
28 query = “”;
29 }
164 <div><strong><%= LanguageUtil.get(pageContext,…
Posted by xiong piaox on Apr 08
Advisory: DotCMS Directory traversal vulnerability
Author: Piaox From Pingan Product Safety Group
Email: xiongyaofu351 () pingan com cn
Affected Version: dotCMS 3.5 Beta(the latest version)
==========================
Vulnerability Description
Recetly, I found a Directory traversal vulnerability in ‘DotCMS’
program, DotCMS is widely used in many companies.
Vulnerable file is:…
Posted by Vulnerability Lab on Apr 08
Document Title:
===============
WP Multiple Meta Box v1.0 – SQL Injection Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1818
Release Date:
=============
2016-04-08
Vulnerability Laboratory ID (VL-ID):
====================================
1818
Common Vulnerability Scoring System:
====================================
5.8
Product & Service Introduction:…