Security News

Vuln: QEMU 'stellaris_enet_receive()' Function Remote Buffer Overflow Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
QEMU 'stellaris_enet_receive()' Function Remote Buffer Overflow Vulnerability

Vuln: Xen CVE-2016-3159 Information Disclosure Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
Xen CVE-2016-3159 Information Disclosure Vulnerability

Vuln: Xen CVE-2016-3960 NULL pointer Dereference Remote Denial of Service Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
Xen CVE-2016-3960 NULL pointer Dereference Remote Denial of Service Vulnerability

Vuln: MoinMoin Multiple HTML Injection Vulnerabilities

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
MoinMoin Multiple HTML Injection Vulnerabilities

Vuln: Cisco AsyncOS CVE-2016-1480 Remote Security Bypass Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
Cisco AsyncOS CVE-2016-1480 Remote Security Bypass Vulnerability

Vuln: Adobe Flash Player CVE-2016-7855 Use After Free Remote Code Execution Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
Adobe Flash Player CVE-2016-7855 Use After Free Remote Code Execution Vulnerability

Vuln: LibTIFF CVE-2016-5652 Heap Buffer Overflow Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
LibTIFF CVE-2016-5652 Heap Buffer Overflow Vulnerability

Vuln: libTIFF CVE-2016-8331 Type Confusion Remote Code Execution Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
libTIFF CVE-2016-8331 Type Confusion Remote Code Execution Vulnerability

Vuln: LibTIFF 'libtiff/tif_pixarlog.c' Heap Buffer Overflow Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
LibTIFF 'libtiff/tif_pixarlog.c' Heap Buffer Overflow Vulnerability

Vuln: QEMU CVE-2016-4441 Remote Code Execution Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
QEMU CVE-2016-4441 Remote Code Execution Vulnerability

Vuln: Multiple Cisco Products CVE-2016-6439 Denial of Service Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
Multiple Cisco Products CVE-2016-6439 Denial of Service Vulnerability

Vuln: QEMU CVE-2016-8578 Null Pointer Dereference Denial of Service Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
QEMU CVE-2016-8578 Null Pointer Dereference Denial of Service Vulnerability

Vuln: QEMU 'get_cmd()' Function Denial of Service Vulnerability

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
QEMU 'get_cmd()' Function Denial of Service Vulnerability

Vuln: QEMU 'hw/scsi/esp.c' Multiple Remote Code Execution Vulnerabilities

Security Focus Vulnerabilities - 24 November, 2016 - 00:00
QEMU 'hw/scsi/esp.c' Multiple Remote Code Execution Vulnerabilities

Bugtraq: [SYSS-2016-106] EASY HOME Alarmanlagen-Set - Missing Protection against Replay Attacks

Security Focus Vulnerabilities - 23 November, 2016 - 23:50
[SYSS-2016-106] EASY HOME Alarmanlagen-Set - Missing Protection against Replay Attacks

Bugtraq: [CORE-2016-0007] - TP-LINK TDDP Multiple Vulnerabilities

Security Focus Vulnerabilities - 23 November, 2016 - 23:50
[CORE-2016-0007] - TP-LINK TDDP Multiple Vulnerabilities

Stored Cross-Site Scripting in Gallery - Image Gallery WordPress Plugin

Full Disclosure - 23 November, 2016 - 13:39

Posted by Summer of Pwnage on Nov 23

------------------------------------------------------------------------
Stored Cross-Site Scripting in Gallery - Image Gallery WordPress Plugin
------------------------------------------------------------------------
Sipke Mellema, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A persistent Cross-Site Scripting vulnerability was...
Syndicate content