Tag Archives: attack

CVE-2014-9469 vBulletin XSS (Cross-Site Scripting) Web Security Vulnerabilities

  CVE-2014-9469 vBulletin XSS (Cross-Site Scripting) Web Security Vulnerabilities   Exploit Title: vBulletin XSS (Cross-Site Scripting) Web Security Vulnerabilities Product: vBulletin Forum Vendor:vBulletin Vulnerable Versions: 5.1.3 5.0.5 4.2.2 3.8.7 3.6.7 3.6.0 3.5.4 Tested Version:5.1.3 4.2.2 Advisory Publication: February 12, 2015 … Continue reading

Posted in CVE, Database Technology, Web Technology, XSS | Tagged , , , , , , , , , , , , , , , , , , , , | Leave a comment

CVE-2015-2349 – SuperWebMailer 5.50.0.01160 XSS (Cross-site Scripting) Web Security Vulnerabilities

CVE-2015-2349 – SuperWebMailer 5.50.0.01160 XSS (Cross-site Scripting) Web Security Vulnerabilities Exploit Title: CVE-2015-2349 – SuperWebMailer /defaultnewsletter.php” HTMLForm Parameter XSS Web Security Vulnerabilities Product: SuperWebMailer Vendor: SuperWebMailer Vulnerable Versions: 5.*.0.* 4.*.0.* Tested Version: 5.*.0.* 4.*.0.* Advisory Publication: March 11, 2015 Latest … Continue reading

Posted in Computer & Web Technology, IT Technology, Web Application Technology | Tagged , , , , , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment

CVE-2014-9468 InstantASP InstantForum.NET Multiple XSS (Cross-Site Scripting) Web Security Vulnerabilities

CVE-2014-9468 InstantASP InstantForum.NET Multiple XSS (Cross-Site Scripting) Web Security Vulnerabilities Exploit Title: InstantASP InstantForum.NET Multiple XSS (Cross-Site Scripting) Web Security Vulnerabilities Product: InstantForum.NET Vendor: InstantASP Vulnerable Versions: v4.1.3   v4.1.1   v4.1.2   v4.0.0   v4.1.0   v3.4.0 Tested Version: … Continue reading

Posted in IT Technology, Web Application Technology | Tagged , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment

CVE-2014-8490 TennisConnect COMPONENTS System XSS (Cross-Site Scripting) Security Vulnerability

Exploit Title: TennisConnect “TennisConnect COMPONENTS System” /index.cfm pid Parameter XSS Product: TennisConnect COMPONENTS System Vendor: TennisConnect Vulnerable Versions: 9.927 Tested Version: 9.927 Advisory Publication: Nov 18, 2014 Latest Update: Nov 18, 2014 Vulnerability Type: Cross-Site Scripting [CWE-79] CVE Reference: CVE-2014-8490 … Continue reading

Posted in Computer & Web Technology | Tagged , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment

CVE-2014-7290 Atlas Systems Aeon XSS (Cross-Site Scripting) Security Vulnerability

CVE-2014-7290 Atlas Systems Aeon XSS (Cross-Site Scripting) Security Vulnerability Exploit Title: Atlas Systems Aeon XSS Vulnerability Product: Aeon Vendor: Atlas Systems Vulnerable Versions: 3.6 3.5 Tested Version: 3.6 Advisory Publication: Nov 12, 2014 Latest Update: Nov 12, 2014 Vulnerability Type: … Continue reading

Posted in Computer & Web Technology | Tagged , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment

Vigilantes testing security of IT systems

Vigilantes testing security of IT systems A growing group of individuals are taking it upon themselves to test the security of information systems in organisations and report security flaws. SINGAPORE: Call them cybersecurity vigilantes if you will, or “white hats” — … Continue reading

Posted in Computer & Web Technology | Tagged , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment

SmartCMS Multiple SQL Injection Security Vulnerability

Originally posted on IT Computer & Web Information Technology:
CVE-2014-9558 SmartCMS Multiple SQL Injection Security Vulnerability ? Exploit Title: Smartwebsites SmartCMS v.2 Multiple SQL Injection Security Vulnerabilities Product: SmartCMS v.2 Vendor: Smartwebsites Vulnerable Versions: v.2 Tested Version: v.2 Advisory Publication:…

Posted in Computer & Web Technology, Computer Technology | Tagged , , , , , , , , , , , , , , , , , , , , , , | Leave a comment