» Promote a Blog | Blog Directory | Advertising | Analytics | Blog | FAQ |

Explore » Blog Directory of Selected Blogs
 Connect » Authentic Blogger Community
 Discover » Featured Blogs and Topics

Content distribution for www.mondounix.com

Blog Rating:
Promote Up Promote Down (click to visit & rate)
  
Blog Thumbnail

Bookmark and Share

Translate
Main Topics
* based on blog tags
Featured Blogs
add your blog...
BlogUpp Fans

WordPress Spider Catalog Multiple Vulnerabilities

content discovered on Wednesday, May 22, 2013 in exploit, sicurezza, webapps, wordpress security, 0day, cross site scripting, full path disclosure, function, linux, multiple, php, reflected xss, remote, security, spider catalog, sql injection, sql i, stored xss, unix, vulnerabilities, vulnerability, wordpress, xss

Author: Janek Vind waraxe Date: 22. May 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-105.html Description of vulnerable software: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Spider Catalog is the best WordPress catalog plugin. It is a convenient tool for organizing the products represented on your website into catalogs. Each product on the catalog is assigned with a relevant category, [...]

WordPress Flagallery-Skins SQL Injection

content discovered on Wednesday, May 22, 2013 in exploit, sicurezza, webapps, wordpress security, 0day, flagallery skins, linux, php, remote, security, sql injection, sql i, unix, vulnerabilities, vulnerability, wordpress, wp content

############## # Exploit Title : Wordpress Flagallery-skins plugin SQL Injection # # Exploit Author : Ashiyane Digital Security Team # # Home : www.ashiyane.org # # Security Risk : Medium # # Dork : inurl:/wp-content/plugins/flagallery-skins/compact_music_player/gallery.php?playlist= # # Tested on: Linux # ############## #Location:site/wp-content/plugins/flagallery-skins/compact_music_player/gallery.php?playlist=[SQL] # # #DEm0: # http://www.argomentitessili.com/wp-content/plugins/flagallery-skins/compac...

Moxiecode Image Manager 3.1.5 Shell Upload

content discovered on Tuesday, May 21, 2013 in exploit, sicurezza, webapps, 0day, image manager, linux, moxicode, php, poc, proof of concept, remote, security, shell upload, unix, vulnerabilities, vulnerability

I want to warn you about vulnerabilities in Moxiecode Image Manager (MCImageManager). This is commercial plugin for TinyMCE. It concerns as MCImageManager, as all web applications which have MCImageManager in their bundle. These are Arbitrary File Uploading vulnerabilities, which lead to Code Execution on IIS and Apache web servers. ------------------------- Affected products: ------------------------- [...]

MPlayer 1.1.1 for Linux

content discovered on Tuesday, May 21, 2013 in hi tech news, howto, linux, software, unix, asf, audio, avi, denoise, dvd, filters, image, motion, mp4, mplayer, video, wma, wmv

MPlayer for Linux is a movie player which runs on many systems (see the documentation). It plays most MPEG/VOB, AVI, Ogg/OGM, VIVO, ASF/WMA/WMV, QT/MOV/MP4, RealMedia, Matroska, NUT, NuppelVideo, FLI, YUV4MPEG, FILM, RoQ, PVA files, supported by many native, XAnim, and Win32 DLL codecs. You can watch VideoCD, SVCD, DVD, 3ivx, DivX 3/4/5, WMV and even [...]

Drupal 6.x/7.x Google Authenticator login Acces...

content discovered on Saturday, May 18, 2013 in drupal, exploit, sicurezza, webapps, 0day, bypass, cms, google authenticator, linux, login access bypass, php, remote, security, unix, vulnerabilities, vulnerability

Advisory ID: DRUPAL-SA-CONTRIB-2013-047 Project: Google Authenticator login (third-party module) Version: 6.x, 7.x Date: 2013-May-15 Security risk: Moderately critical Exploitable from: Remote Vulnerability: Access bypass Description This module will allow you to add Time-based One-time Password Algorithm (also called Two Step Authentication or Multi-Factor Authentication) support to user logins. It works with [...]

FreeBSD : risolvere errore “has a missing depen...

content discovered on Friday, May 17, 2013 in freebsd, howto, software, unix, lang, missing dependency, perl, pkg, pkg check, pkg set, ports

Se dopo degli aggiornamenti o installazione di vari software riscontrate un errore simile : # pkg check -da devel/gamin has a missing dependency: lang/perl5.12 devel/gio-fam-backend has a missing dependency: lang/perl5.12 irc/irssi has a missing dependency: lang/perl5.12 irc/irssi-scripts has a missing dependency: lang/perl5.12 mail/maildrop has a missing dependency: lang/perl5.12 misc/mc has a missing dependency: lang/perl5.12 mail/p5-Mail-SpamAssassin [...]

Joomla x-shop

content discovered on Friday, May 17, 2013 in exploit, joomla, sicurezza, webapps, 0day, component, file inclusion, linux, local, php, remote, security, unix, vulnerabilities, vulnerability, x shop

Title : Joomla x-shop = 1.7 Remote File Include Vulnerability -------------------------------------------------------------------------------- #Author: Crackers_Child #cont@ct: crackers_child@sibersavascilar.com -------------------------------------------------------------------------------- Google Dorks : allinurl:/com_x-shop/ ------------------------- ------------------------------------------------------- Download : http://mamboxchange.com/frs/?group_id=187amp;release_id=1047 -----------------...

Exponent CMS 2.2.0 Beta 3 LFI / SQL Injection

content discovered on Thursday, May 16, 2013 in exploit, sicurezza, webapps, 0day, cms, exponent, exponent cms, lfi, local file inclusion, php, remote, security, sql injection, sql i, unix, vulnerabilities, vulnerability

Advisory ID: HTB23154 Product: Exponent CMS Vendor: Online Innovative Creations Vulnerable Version(s): 2.2.0 beta 3 and probably prior Tested Version: 2.2.0 beta 3 Vendor Notification: April 24, 2013 Vendor Patch: May 3, 2013 Public Disclosure: May 15, 2013 Vulnerability Type: SQL Injection [CWE-89], PHP File Inclusion [CWE-98] CVE References: CVE-2013-3294, CVE-2013-3295 Risk Level: High CVSSv2 [...]

Google I/O 2013: le novita per gli sviluppatori

content discovered on Wednesday, May 15, 2013 in hi tech news, software, google, hi tech, linux, news, notizia, notizie, sviluppatori, unix, youtube

Il Google I/O 2013 si apre con Vic Gundotra sul palco, che dà il benvenuto a chi è intervenuto al Moscone Center di San Francisco e ai milioni di utenti che seguono l’evento in diretta streaming su YouTube. Dopo i ringraziamenti di rito per gli sviluppatori si entra nel vivo della conferenza, con l’ingresso di [...]

Drupal AWTNF 6.x / 7.x Access Bypass

content discovered on Wednesday, May 15, 2013 in drupal, exploit, sicurezza, webapps, 0day, access bypass, awtnf, bypass, linux, php, remote, security, unix, vulnerabilities, vulnerability

View online: http://drupal.org/node/1972976 * Advisory ID: DRUPAL-SA-CONTRIB-2013-045 * Project: Autocomplete Widgets for Text and Number Fields [1] (third-party module) * Version: 6.x, 7.x * Date: 2013-April-17 * Security risk: Moderately critical [2] * Exploitable from: Remote * Vulnerability: Access bypass -------- DESCRIPTION --------------------------------------------------------- Autocomplete Widgets module adds autocomplete widgets for Text and [...]

 

What do you think?

COPYRIGHT NOTICE: BlogUpp does not claim ownership of any content distributed via this blog directory and its content distribution channels.
The author of the blog mentioned at the top is assumed to be the content owner. BlogUpp is a blog promotion and content distribution service. Learn more

Terms of Service | Privacy Policy | Copyright © 2013, BlogUpp