MG Strategy+ - Foundation LogoSEC

MG Strategy+

Cybersecurity Data Services

Join Now-Sign Up
Log In

SEC

Editor Paper Extracts
Editor Picks Articles
Editor Picks Maps
Editor Picks Reports
MGS+ EPCM Workgroup
MGS+ ICS Workgroup
MGS+ Operational Efficiencies Workgroup
MGS+ Partners
Uncategorized

001 MGS Alerts Advisories

90.0250000000
Modified (3)Adware/MobiDash!AndroidAdware/SMSreg!AndroidAndroid/Agent.JNC!tr ... read more
CVE-2022-31259
The route lookup process in beego through 1.12.4 and 2.x through 2.0.2 allows attackers to bypass access control. When a /p1/p2/:name route is configured, attackers can access it by appending ... read more
90.0249700000
Modified (14)Adware/Agent!AndroidAdware/Androlua!AndroidAdware/MobiDash!AndroidAdware/Mobtool!AndroidAdware/Obfus!AndroidAdware/SMSFlooder_Agent!AndroidAdware/SMSreg!AndroidAdware/Styricka!AndroidAdware/TiFamily!AndroidAdware/Triada!AndroidAdware/Waps!AndroidAndroid/Agent.CCL!tr.spyAndroid/Agent.FQN!trRiskware/Application!Android ... read more
CVE-2015-5068 | SAP Mobile Platform 3 xml external entity reference (ID 133514 / BID-75166)
A vulnerability was found in SAP Mobile Platform 3. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to XML External Entity. The identification ... read more
CVE-2015-5064 | MySQL Lite Administrator Beta-1 tabella.php num_row cross site scripting (ID 132420 / BID-75397)
A vulnerability has been found in MySQL Lite Administrator Beta-1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file tabella.php. The manipulation of the ... read more
CVE-2015-5065 | Paypal Currency Converter Basic Plugin up to 1.3 on WordPress proxy.php requrl path traversal (ID 132278 / BID-75416)
A vulnerability was found in Paypal Currency Converter Basic Plugin up to 1.3 and classified as critical. Affected by this issue is some unknown functionality of the file proxy.php. The ... read more
CVE-2015-5066 | MetalGenix GeniXCMS 0.0.3 index.php q cross site scripting (ID 132397 / BID-75398)
A vulnerability was found in MetalGenix GeniXCMS 0.0.3. It has been classified as problematic. This affects an unknown part of the file index.php. The manipulation of the argument q leads ... read more
CVE-2015-5063 | SilverStripe CMS / Framework 3.1.13 install.php admin_username/admin_password cross site scripting (ID 132223)
A vulnerability, which was classified as problematic, was found in SilverStripe CMS and Framework 3.1.13. Affected is an unknown function of the file install.php. The manipulation of the argument admin_username/admin_password ... read more
CVE-2015-5062 | SilverStripe CMS / Framework 3.1.13 dev/build returnURL redirect (ID 132223 / BID-75419)
A vulnerability, which was classified as critical, has been found in SilverStripe CMS and Framework 3.1.13. This issue affects some unknown processing of the file dev/build. The manipulation of the ... read more
90.0249600000
Modified (2)Adware/MobiDash!AndroidAndroid/Agent.JNC!tr ... read more
CVE-2015-5061 | Zoho ManageEngine AssetExplorer up to 6.1 SP 6112 VendorDef.do organizationName cross site scripting (File 132402/Man / BID-75411)
A vulnerability classified as problematic was found in Zoho ManageEngine AssetExplorer up to 6.1 SP 6112. This vulnerability affects unknown code of the file VendorDef.do. The manipulation of the argument ... read more
90.0249400000
Modified (1)Adware/MobiDash!Android ... read more
90.0249500000
Modified (2)Adware/MobiDash!AndroidAndroid/Agent.GWO!tr ... read more
CVE-2015-2169 | Zoho ManageEngine AssetExplorer 6.1 SP 6112 cross site scripting (ID 132433 / BID-75389)
A vulnerability was found in Zoho ManageEngine AssetExplorer 6.1 SP 6112. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. ... read more
90.0249300000
Modified (7)Adware/Manamon!AndroidAdware/MobiDash!AndroidAdware/MobileTracker!AndroidAndroid/Agent.JNC!trAndroid/Agent.JOM!trAndroid/Banker.BJJ!tr.spyRiskware/Application!Android ... read more
CVE-2015-4700 | Linux Kernel BPF code (USN-2679-1 / BID-75356)
A vulnerability, which was classified as problematic, was found in Linux Kernel. Affected is an unknown function of the component BPF. The manipulation leads to denial of service. This vulnerability ... read more
90.0249200000
Modified (4)Android/Agent.DEO!trAndroid/Agent.GWO!trAndroid/Agent.JNC!trAndroid/SpyMax.T!tr.spy ... read more
CVE-2015-4586 | Alcatel-Lucent CellPipe 7130 Router 1.0.0.20h.HOL password.cmd add_user cross-site request forgery (ID 132324 / BID-75384)
A vulnerability, which was classified as problematic, has been found in Alcatel-Lucent CellPipe 7130 Router 1.0.0.20h.HOL. Affected by this issue is some unknown functionality of the file password.cmd. The manipulation ... read more
CVE-2015-4590 | Arduino JSON up to 4.4 QuotedString.cpp extractFrom memory corruption (BID-75150)
A vulnerability, which was classified as critical, was found in Arduino JSON up to 4.4. This affects the function extractFrom of the file Internals/QuotedString.cpp. The manipulation with the input $software_input_value ... read more
CVE-2015-4713 | ApPHP Hotel Site 3.x.x index.php pid sql injection (ID 132369 / BID-75390)
A vulnerability has been found in ApPHP Hotel Site 3.x.x and classified as critical. This vulnerability affects unknown code of the file index.php. The manipulation of the argument pid leads ... read more
90.0249100000
Modified (3)Adware/MobiDash!AndroidAndroid/Agent.JNC!trAndroid/GriftHorse.G!tr ... read more
Security News This Week: North Korean IT Workers Are Infiltrating Tech Companies
Plus: The Conti ransomware gang shuts down, Canada bans Huawei and ZTE, and more of the week’s top security news. As Russia’s full-scale war in ... read more
CVE-2015-4201 | Cisco ASR 5000 17.2.0.59184 Gateway General Packet Radio Service Support Node input validation (CSCut68058 / BID-75323)
A vulnerability was found in Cisco ASR 5000 17.2.0.59184. It has been classified as problematic. This affects an unknown part of the component Gateway General Packet Radio Service Support Node. ... read more
CVE-2015-4198 | Cisco Web Security Appliance 8.5.0-497 Header cross site scripting (ID 39422 / BID-75326)
A vulnerability classified as problematic was found in Cisco Web Security Appliance 8.5.0-497. Affected by this vulnerability is an unknown functionality of the component Header Handler. The manipulation leads to ... read more
CVE-2015-0526 | EMC RSA Validation Manager up to 3.2 displayMode/wrapPreDisplayMode cross site scripting (ID 1032590)
A vulnerability, which was classified as problematic, was found in EMC RSA Validation Manager up to 3.2. This affects an unknown part. The manipulation of the argument displayMode/wrapPreDisplayMode leads to ... read more
90.0249000000
Newly Added (2)Android/Agent.CBC!tr.spyAndroid/Agent.CCL!tr.spyModified (5)Adware/MobiDash!AndroidAdware/MobileTx!AndroidAndroid/Agent.JNC!trAndroid/PossibleThreatRiskware/Application!Android ... read more
CVE-2015-4675 | Tiny SRP library Username memory corruption (ID 132196 / BID-75365)
A vulnerability was found in Tiny SRP library. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation of the argument Username leads to ... read more
CVE-2015-4678 | Persian Car CMS 1.0 cat_id sql injection (ID 132216 / BID-75345)
A vulnerability, which was classified as critical, has been found in Persian Car CMS 1.0. This issue affects some unknown processing. The manipulation of the argument cat_id leads to sql ... read more
CVE-2015-4679 | AirTies RT-210 Web Interface ddns.stm ddns_domainame/ddns_account cross site scripting (ID 132178 / BID-75342)
A vulnerability, which was classified as problematic, was found in AirTies RT-210. Affected is an unknown function of the file ddns.stm of the component Web Interface. The manipulation of the ... read more
CVE-2015-4676 | TickFa 1.x ticket.php tid sql injection (ID 132186 / BID-75343)
A vulnerability classified as critical has been found in TickFa 1.x. This affects an unknown part of the file ticket.php. The manipulation of the argument tid leads to sql injection. ... read more
90.0248700000
Newly Added (1)Android/Agent.AWV!trModified (17)Adware/AdsWo!AndroidAdware/Autoins!AndroidAdware/DataCollector_Utilcode!AndroidAdware/Dowgin!AndroidAdware/LeadBolt!AndroidAdware/MobiDash!AndroidAdware/MobileTx!AndroidAdware/SMSKey!AndroidAdware/Wiyun!AndroidAdware/Wooboo!AndroidAndroid/Agent.CDL!tr.spyAndroid/Agent.DEN!trAndroid/Agent.HQS!trAndroid/Agent.JFE!trAndroid/Agent.JNC!trAndroid/PossibleThreatRiskware/Application!Android ... read more
90.0248600000
Newly Added (2)Android/Agent.LZ!trAndroid/FakeWallet.CD!trModified (8)Adware/AdMogo!AndroidAdware/AdsWo!AndroidAdware/Dowgin!AndroidAdware/DrdDream!AndroidAdware/MobiDash!AndroidAndroid/Agent.BAT!tr.spyAndroid/Agent.JNC!trAndroid/Banker.AOG!tr.spy ... read more
CVE-2015-4628 | LimeSurvey up to 2.5 questiongroups.php sid sql injection (BID-75301)
A vulnerability was found in LimeSurvey up to 2.5 and classified as critical. This issue affects some unknown processing of the file application/controllers/admin/questiongroups.php. The manipulation of the argument sid leads ... read more
CVE-2015-4660 | Enhanced SQL Portal 5.0.7961 iframe.php id cross site scripting (ID 132122 / BID-74946)
A vulnerability, which was classified as problematic, was found in Enhanced SQL Portal 5.0.7961. Affected is an unknown function of the file iframe.php. The manipulation of the argument id leads ... read more
CVE-2015-4661 | Symphony CMS 2.6.2 system/authors sort cross site scripting (ID 132193 / BID-75059)
A vulnerability has been found in Symphony CMS 2.6.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file system/authors. The manipulation of the argument ... read more
CVE-2015-3422 | SearchBlox up to 8.2.0 admin/main.jsp menu2 cross site scripting (ID 132341 / BID-75263)
A vulnerability was found in SearchBlox up to 8.2.0. It has been classified as problematic. This affects an unknown part of the file admin/main.jsp. The manipulation of the argument menu2 ... read more
CVE-2015-3897 | Bonita BPM Portal up to 6.5.2 themeResource location path traversal (ID 132237 / EDB-37260)
A vulnerability was found in Bonita BPM Portal up to 6.5.2. It has been declared as problematic. This vulnerability affects unknown code of the file bonita/portal/themeResource. The manipulation of the ... read more
CVE-2015-4194 | Cisco WebEx Meeting Center Web Admin Interface User information disclosure (CSCuf28861 / BID-75296)
A vulnerability classified as problematic was found in Cisco WebEx Meeting Center. Affected by this vulnerability is an unknown functionality of the component Web Admin Interface. The manipulation leads to ... read more
90.0248500000
Modified (7)Adware/Autoins!AndroidAdware/Inmobi!AndroidAdware/MobiDash!AndroidAdware/SMSKey!AndroidAndroid/Agent.JNC!trAndroid/SmsSpy.VR!tr.spyRiskware/Application!Android ... read more
CVE-2015-2861 | Vesta Control Panel up to 0.9.8-13 cross-site request forgery (BID-75215)
A vulnerability was found in Vesta Control Panel up to 0.9.8-13 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site request ... read more
CVE-2014-9227 | Symantec Endpoint Protection up to 12.1.5 Library privileges management (SYM15-005 / BID-75202)
A vulnerability, which was classified as problematic, has been found in Symantec Endpoint Protection up to 12.1.5. This issue affects some unknown processing of the component Library Handler. The manipulation ... read more
CVE-2015-4414 | SE HTML5 Album Audio Player up to 1.1.0 on WordPress download_audio.php file path traversal (ID 132266 / BID-75093)
A vulnerability has been found in SE HTML5 Album Audio Player up to 1.1.0 and classified as problematic. This vulnerability affects unknown code of the file download_audio.php. The manipulation of ... read more
90.0248400000
Newly Added (1)Riskware/DroidSheep!AndroidModified (7)Adware/AdMogo!AndroidAdware/AdsWo!AndroidAdware/MobiDash!AndroidAdware/MobileTx!AndroidAdware/SMSKey!AndroidAdware/Wiyun!AndroidAndroid/Agent.HW!tr ... read more
CVE-2022-28990 | WASM3 0.5.0 /wabt/bin/poc.wasm buffer overflow (ID 323)
Un punto di criticita di livello critico è stato rilevato in WASM3 0.5.0. Da questa vulnerabilità è interessato una funzione sconosciuta del file /wabt/bin/poc.wasm. Per causa della manipolazione di un ... read more
CVE-2022-28990 | WASM3 0.5.0 /wabt/bin/poc.wasm Pufferüberlauf (ID 323)
Es wurde eine Schwachstelle in WASM3 0.5.0 gefunden. Sie wurde als kritisch eingestuft. Dabei betrifft es einen unbekannter Codeteil der Datei /wabt/bin/poc.wasm. Durch die Manipulation mit unbekannten Daten kann eine ... read more
CVE-2022-29170 | Grafana bis 7.5.15/8.5.2 Request Redirect (GHSA-9rrr-6fq2-4f99)
Eine Schwachstelle wurde in Grafana bis 7.5.15/8.5.2 entdeckt. Sie wurde als problematisch eingestuft. Dies betrifft einen unbekannten Teil der Komponente Request Handler. Mit der Manipulation mit unbekannten Daten kann eine ... read more
CVE-2015-3316 | CA Management Agent r12.5 Common Services Environment Variable privileges management (BID-75033 / ID 1032512)
A vulnerability classified as problematic was found in CA Management Agent r12.5. This vulnerability affects unknown code of the component Common Services. The manipulation as part of Environment Variable leads ... read more
CVE-2015-4186 | Cisco Virtualization Experience Client 6215 Servies 11.2(27.4) Diagnostics Subsystem os command injection (CSCug54412 / BID-75195)
A vulnerability was found in Cisco Virtualization Experience Client 6215 Servies 11.2(27.4). It has been classified as problematic. This affects an unknown part of the component Diagnostics Subsystem. The manipulation ... read more
CVE-2015-4190 | Cisco Prime Service Catalog 9.4.1_vortex on Cloud Portal Appliance Remote Code Execution (CSCuh19683 / BID-75271)
A vulnerability was found in Cisco Prime Service Catalog 9.4.1_vortex. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to an unknown weakness. The ... read more
CVE-2015-4183 | Cisco UCS Central Software 1.2(1a) CLI os command injection (CSCut32795 / BID-75205)
A vulnerability was found in Cisco UCS Central Software 1.2(1a) and classified as problematic. Affected by this issue is some unknown functionality of the component CLI. The manipulation leads to ... read more

MG Strategy+ Industrial Control Systems Group @2019

KAVI MGS iSTRACIN Platform v 02.25 Saturday, May 21, 2022

Disclaimer |
Terms |
Privacy
About-Services |
Blog-Reports
YouTube
Pinterest
LinkedIn
Twitter
LinkedIn
Twitter
Connect-Contact

Login

Login to integratus systems Exchange Platform Services

Forgot password?

Register Now

Hello

Your Account Type is
Your Mail Id is
Your Username is

PDF Library Search

Security Briefing Search

Foundation Logo Search

Reset Password

Reset Password

You have no permission to access this content