Marc ARNAERT
to main page send mail
 
Based on Open Source »

To do it yourself »

Just follow the ebooks »
About Arnaert Marc Arnaert Open FTP Prefered Links Security Feeds Arnaert Marc Publications Arnaert Marc Games Arnaert genealogy

Arnaert.com

CVE-2020-9407 (online_weather)

IBL Online Weather before 4.3.5a allows attackers to obtain sensitive information by reading the IWEBSERVICE_JSONRPC_COOKIE cookie.

CVE-2020-9406 (online_weather)

IBL Online Weather before 4.3.5a allows unauthenticated eval injection via the queryBCP method of the Auxiliary Service.

CVE-2020-9405 (online_weather)

IBL Online Weather before 4.3.5a allows unauthenticated reflected XSS via the redirect page.

[webapps] PhpIX 2012 Professional - 'id' SQL Injection

PhpIX 2012 Professional - 'id' SQL Injection

[remote] OpenSMTPD 6.6.3 - Arbitrary File Read

OpenSMTPD 6.6.3 - Arbitrary File Read

[remote] OpenSMTPD < 6.6.3p1 - Local Privilege Escalation + Remote Code Execution

OpenSMTPD

[dos] Core FTP LE 2.2 - Denial of Service (PoC)

Core FTP LE 2.2 - Denial of Service (PoC)

CVE-2020-9394 (pricing_table_by_supsystic)

An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. It allows CSRF.

CVE-2020-9393 (pricing_table_by_supsystic)

An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. It allows XSS.

CVE-2016-11020 (kunena)

Kunena before 5.0.4 does not restrict avatar file extensions to gif, jpeg, jpg, and png. This can lead to XSS.
An aggregation of cybersecurity feeds

Feeds :
ICS, CERT, Exploit-DB, Greenbone, SoldierX
Terms of Use | Privacy Statement (c) Marc Arnaert. All rights reserved