A buffer overflow vulnerability exists in the MP4 AMF parsing of Adobe Flash Player. An attacker can exploit this vulnerability by convincing a user to visit a malicious website hosting a specially crafted SWF file. The vulnerability can be triggered by visiting a malicious website hosting a specially crafted SWF file.
The following crash was observed in Microsoft Office 2010 running under Windows 7 x86 with Application Verifier enabled. This crash is non-deterministic and will not reproduce in all instances but the crash demonstrated a high degree of reliability.
The crash was observed in Microsoft Office 2010 running under Windows 7 x86 with Application Verifier enabled. This crash appeared to be non-deterministic depending on memory layout and will not reproduce in all instances but the crash demonstrated a high degree of reliability.
This module exploits a remote command execution vulnerability in the Sonicwall SRA Appliance Version <= v8.1.0.2-14sv. The vulnerability exist in a section of the machine's adminstrative infertface for performing configurations related to on-connect scripts to be launched for users's connecting.
This module exploits a remote command execution vulnerability in the Sonicwall SRA Appliance Version <= v8.1.0.2-14sv. The vulnerability exist in a section of the machine's adminstrative infertface for performing configurations related to on-connect scripts to be launched for users's connecting.
This module exploits a remote command execution vulnerability in the Sophos Web Appliace Version <= v4.2.1.3. The vulnerability exist in a section of the machine's adminstrative infertface for performing diagnostic network test with wget and unsanitized unser supplied information.
This module exploits two 2 seperate remote command injecection vulnerabilities in the Sophos Web Appliace Version <= v4.2.1.3 the web administration interface. By sending a specially crafted request it's possible to inject system commands
A SQL injection vulnerability exists in Joomla! Component AppointmentBookingPro v4.0.1 and v4.0.2. An attacker can exploit this vulnerability by sending a specially crafted SQL query to the vulnerable application. This can allow the attacker to gain access to sensitive information stored in the database.
A SQL injection vulnerability exists in Joomla! Component J-BusinessDirectory v4.6.8. An attacker can send malicious SQL queries to the application by manipulating the 'companyId' and 'categoryId' parameters in the 'index.php' file. This can allow the attacker to access or modify the application's data.
A SQL injection vulnerability exists in Joomla! Component Magic Deals Web v1.2.0. An attacker can exploit this vulnerability to inject malicious SQL queries into the application and gain access to sensitive data. The vulnerability is due to insufficient sanitization of user-supplied input in the 'filterbycats', 'fullordering', 'search_in' and 'q' parameters. An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to the vulnerable application. Successful exploitation of this vulnerability can result in unauthorized access to sensitive data.
Services By CQR