Feed aggregator

Bugtraq: Exploit for stealing backups on WP sites with WP-DB-Backup v2.2.4 plugin

Exploit for stealing backups on WP sites with WP-DB-Backup v2.2.4 plugin
Categories:

Bugtraq: [security bulletin] HPSBUX03087 SSRT101413 rev.2 - HP-UX CIFS Server (Samba), Remote Denial of Service (DoS), Execution of Arbitrary Code, Unauthorized Access

[security bulletin] HPSBUX03087 SSRT101413 rev.2 - HP-UX CIFS Server (Samba), Remote Denial of Service (DoS), Execution of Arbitrary Code, Unauthorized Access
Categories:

Bugtraq: [ MDVSA-2014:224 ] krb5

[ MDVSA-2014:224 ] krb5
Categories:

Bugtraq: [ MDVSA-2014:223 ] wireshark

[ MDVSA-2014:223 ] wireshark
Categories:

More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Categories:

Exploit for stealing backups on WP sites with WP-DB-Backup v2.2.4 plugin

BugTraq Latest Security Advisories - 3 hours 42 min ago

Posted by Larry W. Cashdollar on Nov 24

#!/bin/bash
#Larry W. Cashdollar, @_larry0
#Will brute force and search a Wordpress target site with WP-DB-Backup v2.2.4 plugin installed for any backups done on
#20141031 assumes the wordpress database is wordpress and the table prefix is wp_
#http://www.vapid.dhs.org/advisories/wordpress/plugins/wp-db-backup-v2.2.4/
#http://thehackerblog.com/auditing-wp-db-backup-wordpress-plugin-why-using-the-database-password-for-entropy-is-a-bad-idea/
#run...
Categories:

Bugtraq: [ MDVSA-2014:222 ] libvirt

[ MDVSA-2014:222 ] libvirt
Categories:

Vuln: Multiple Asterisk Products CVE-2014-6610 Out of Call Message Denial of Service Vulnerability

Multiple Asterisk Products CVE-2014-6610 Out of Call Message Denial of Service Vulnerability
Categories:

Vuln: Ansible CVE-2014-4657 Remote Code Execution Vulnerability

Ansible CVE-2014-4657 Remote Code Execution Vulnerability
Categories:

Vuln: Ansible CVE-2014-4678 Incomplete Fix Remote Code Execution Vulnerability

Ansible CVE-2014-4678 Incomplete Fix Remote Code Execution Vulnerability
Categories:

Vuln: Ansible CVE-2014-4966 Arbitrary Code Execution Vulnerability

Ansible CVE-2014-4966 Arbitrary Code Execution Vulnerability
Categories:

Vuln: Ansible CVE-2014-4967 Arbitrary Code Execution Vulnerability

Ansible CVE-2014-4967 Arbitrary Code Execution Vulnerability
Categories:

Vuln: QEMU 'vmstate_xhci_event' Field Memory Corruption Vulnerability

QEMU 'vmstate_xhci_event' Field Memory Corruption Vulnerability
Categories:

Vuln: QEMU CVE-2014-3689 Multiple Local Security Bypass Vulnerabilities

QEMU CVE-2014-3689 Multiple Local Security Bypass Vulnerabilities
Categories:

Vuln: QEMU L2 Table Size Validation Integer Overflow Vulnerability

QEMU L2 Table Size Validation Integer Overflow Vulnerability
Categories:

Vuln: QEMU 'hw/usb/bus.c' Heap Based Buffer Overflow Vulnerability

QEMU 'hw/usb/bus.c' Heap Based Buffer Overflow Vulnerability
Categories:

Vuln: OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability

OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability
Categories:

3.18-rc6: mainline

Linux Kernel Updates - November 23, 2014 - 6:25pm
Version:3.18-rc6 (mainline) Released:2014-11-23 Source:linux-3.18-rc6.tar.xz PGP Signature:linux-3.18-rc6.tar.sign Patch:patch-3.18-rc6.xz

2.6.32.64: longterm

Linux Kernel Updates - November 23, 2014 - 4:55am
Version:2.6.32.64 (longterm) Released:2014-11-23 Source:linux-2.6.32.64.tar.xz PGP Signature:linux-2.6.32.64.tar.sign Patch:patch-2.6.32.64.xz (Incremental) ChangeLog:ChangeLog-2.6.32.64

Bugtraq: [ MDVSA-2014:221 ] php-smarty

Security Focus Latest Security Advisories - November 21, 2014 - 3:15pm
[ MDVSA-2014:221 ] php-smarty
Categories: