A vulnerability in the DLL loading mechanism of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack on an affected device if the VPN Posture (HostScan) Module is installed on the AnyConnect client. This vulnerability is due to a race condition in the signature verification…
A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system. This vulnerability is due to uncontrolled memory allocation. An attacker could exploit this vulnerability by copying a crafted file to a specific folder on the system. A…
SQL Injection in phpCMS 2008 sp4 via the genre parameter to yp/job.php. Devamını Oku
SQL Injection in ECShop 2.7.6 via the goods_number parameter to flow.php. . Devamını Oku
SQL Injection in ECShop 3.0 via the id parameter to admin/shophelp.php. Devamını Oku
SQL Injection in ECShop 3.0 via the aid parameter to admin/affiliate_ck.php. Devamını Oku
SQL Injection in 74cms 3.2.0 via the x parameter to plus/ajax_street.php. Devamını Oku
SQL Injection in 74cms 3.2.0 via the query parameter to plus/ajax_common.php. Devamını Oku
SQL Injection in 74cms 3.2.0 via the x parameter to ajax_officebuilding.php. Devamını Oku
SQL Injection in 74cms 3.2.0 via the key parameter to plus/ajax_street.php. Devamını Oku
SQL Injection in 74cms 3.2.0 via the id parameter to wap/wap-company-show.php. Devamını Oku
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user…