Read about source code vulnerability scanner, The latest news, videos, and discussion topics about source code vulnerability scanner from alibabacloud.com
GitList remote code execution vulnerability in CVE-2014-4511)
Release date:Updated on:
Affected Systems:GitList GitListDescription:--------------------------------------------------------------------------------Bugtraq id: 68253CVE (CAN) ID: CVE-2014-4511GitList is an open-source software written in PHP and a git library browser.A remote
HybridAuth 'Install. php' Remote Code Execution Vulnerability
Release date:Updated on:
Affected Systems:HybridAuth Description:--------------------------------------------------------------------------------Bugtraq id: 69043HybridAuth is an open-source Web-based authentication and authorization solution that supports multiple social networks at the same time.Hy
Release date:
Last Updated:
Hazard level:
Vulnerability Type: code injection
Threat Type: RemoteVulnerability introduction:
Mozilla Firefox is a free, open-source browser applicable to Windows, Linux, and MacOS X platforms.
Ogg reader in browser engines from Mozilla Firefox 4.x to 5 has a vulnerability. Remote at
Zenoss Core version check Remote Code Execution Vulnerability
Release date:Updated on:
Affected Systems:Zenoss Core Description:CVE (CAN) ID: CVE-2014-6261
Zenoss Core is an open-source IT monitoring solution.
In versions earlier than Zenoss Core 5 Beta 3, the Check For Updates function was not correctly executed. A security
Release date:Updated on:
Affected Systems:Apple Safari 5.1WebKit Open Source Project WebKit 2Description:--------------------------------------------------------------------------------Bugtraq id: 49350
WebKit is an open-source Web browser engine and is currently used by browsers such as Safari and Chrome.
WebKit has a remote code execution
) * " Summarize when PHP encounters an error, it gives the location of the error script, the number of rows, and the reason, and many people say it's not a big deal. But the consequences of revealing the actual path are disastrous, and for some intruders, this information is very important, and in fact there are a lot of servers that are having this problem. Some network management simply set the PHP configuration file display_errors to Off to solve, but I think this method is too neg
) setgid (0) bind (/bin/sh) on port 31337Connect the meaningless string before shellcode, connect the target address to be returned after shellcode, and finally construct the string used for Buffer Overflow.3.2 establish a local socket connection and send dataLine 76: Create a new connection-oriented protocol family with the descriptor SOCK as PF_UNIX socket. PF_UNIX protocol family for communication between processes on the same machine. It uses a local file (usually. sock, proftpd. sock) inste
IBoot source code leakage of key iOS components and iosiboot source code Leakage
Yesterday (February 7), an anonymous developer uploaded the source code of the iOS Core Component on GitHub, which may facilitate hackers and securi
Release date: 2011-12-20Updated on: 2011-12-21
Affected Systems:Mozilla Firefox 3.6.xMozilla Thunderbird 3.1.xUnaffected system:Mozilla Firefox 3.6.25Mozilla Thunderbird 3.1.17Description:--------------------------------------------------------------------------------Bugtraq id: 51139Cve id: CVE-2011-3666
Firefox is a very popular open-source WEB browser. Thunderbird is a mail client that supports IMAP, POP protocol, and HTML format. SeaMonkey is an
MiniBB "code" SQL Injection Vulnerability
Release date:Updated on:
Affected Systems:MiniBB Description:CVE (CAN) ID: CVE-2014-9254
MiniBB is an independent and open-source online forum constructor.
In versions earlier than MiniBB 3.1, when "action" is set to "unsubscribe", the "code" parameter value of bb_func_unsub.ph
PhpYun's talent system is an open-source talent system launched by php's industry-renowned portal php100. Due to its position in the industry, php100 is quickly selected by webmasters, but it is a new thing after all, its code has serious security problems in terms of security.1. wide byte Injection
Vulnerability description
The following
PHP 'efree () 'function Remote Code Execution Vulnerability
Release date: 2014-10-02Updated on:
Affected Systems:PHPDescription:Bugtraq id: 70259CVE (CAN) ID: CVE-2014-3622
PHP is a widely used scripting language. It is especially suitable for Web development and can be embedded into HTML.
PHP 5.6 and other versions have the remote code execution
Release date:Updated on:
Affected Systems:Google Chrome Unaffected system:Google Chrome 11.0.696.71Description:--------------------------------------------------------------------------------Bugtraq id: 47963Cve id: CVE-2011-1807
Google Chrome is an open-source web browser developed by Google.
Google Chrome has the Blob processing cross-border remote code execution v
Release date:Updated on:
Affected Systems:Mozilla FirefoxDescription:--------------------------------------------------------------------------------Bugtraq id: 66209
Firefox is a very popular open-source WEB browser.
Mozilla Firefox has a remote code execution vulnerability. Attackers can exploit this vulnerability
Release date:Updated on:
Affected Systems:Google Caja r5631Description:--------------------------------------------------------------------------------Bugtraq id: 63899
Google Caja is a security tool that embeds third-party HTML, CSS, and JavaScript into websites.
Google Caja r5631 and other versions have the remote code execution vulnerability. Remote attackers can exploit this
Release date:Updated on:
Affected Systems:SquashDescription:--------------------------------------------------------------------------------CVE (CAN) ID: CVE-2013-5036
Squash is an exception reporting and bug analysis tool.
Squash has a vulnerability in deobfuscation and sourcemap functions in/app/controllers/api/vswitchcontroller.rb. processing a specially crafted YAML load can trigger this vulnerability
Novell Netware is a network operating system of Novell. The NWFTPD. NLM service in Novell Netware has a security vulnerability in processing user input data, which may cause remote execution of arbitrary code.
[+] Info:~~~~~~~~~Novell Netware NWFTPD. nlm dele Remote Code Execution Vulnerability
[+] Poc:~~~~~~~~~
#! /Us
Release date: 2011-10-05Updated on: 2011-10-05
Affected Systems:Vtiger CRM Description:--------------------------------------------------------------------------------Vtiger CRM is a free, fully open-source customer relationship management software.
Vtiger CRM uses an affected version file located in/cron/class. phpmailer. php. The remote code execution vulnerability
Release date:Updated on:
Affected Systems:Tiki Wiki CMS Groupware 8.2Tiki Wiki CMS Groupware 7.0Tiki Wiki CMS Groupware 6.5 LTSTiki Wiki CMS Groupware 6.4 LTSTiki Wiki CMS Groupware 5.2Description:--------------------------------------------------------------------------------Bugtraq id: 56282
Tiki Wiki CMS Groupware is a free wiki-based open-source content management system.
A security vulnerability exi
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.