Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 28095 of 28407

CVE-2016-7840

Posted by Cyberthreat Blog | Apr 28, 2017 | CVE Notifications |

Cross-site scripting vulnerability in WEB SCHEDULE allows remote attackers to inject arbitrary web script or HTML via the month parameter.

CVE-2016-7843

Posted by Cyberthreat Blog | Apr 28, 2017 | CVE Notifications |

Directory traversal vulnerability in AttacheCase for Java 0.60 and earlier, AttacheCase Lite 1.4.6 and earlier, and AttacheCase Pro 1.5.7 and earlier allows remote attackers to read arbitrary files via specially crafted ATC...

CVE-2017-2104

Posted by Cyberthreat Blog | Apr 28, 2017 | CVE Notifications |

The Business LaLa Call App for Android 1.4.7 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted...

CVE-2016-7841

Posted by Cyberthreat Blog | Apr 28, 2017 | CVE Notifications |

Cross-site scripting vulnerability in Olive Diary DX allows remote attackers to inject arbitrary web script or HTML via the page parameter.

CVE-2017-2140

Posted by Cyberthreat Blog | Apr 28, 2017 | CVE Notifications |

Tablacus Explorer 17.3.30 and earlier allows arbitrary scripts to be executed in the context of the application due to specially crafted directory.

Author: Cyberthreat Blog

CVE-2016-7840

CVE-2016-7843

CVE-2017-2104

CVE-2016-7841

CVE-2017-2140