Secunia Security Advisory - A vulnerability has been reported in the Comment Upload Module for Drupal, which can be exploited by malicious users to compromise a vulnerable system.
d8fcff45188b9b42e55ec2750146515e400df18d6f708bfb03f1c718d7e1e7f6Secunia Security Advisory - A vulnerability has been reported in the Userpoints module for Drupal, which can be exploited by malicious people to conduct cross-site request forgery attacks.
b269348a1178eb9d51a31db26b47967a2d90cc1415514e0828f2537cf3aaf8a8Secunia Security Advisory - Some vulnerabilities have been reported in the Project Issue Tracking module for Drupal, which can be exploited by malicious users to conduct script insertion attacks and compromise a vulnerable system.
232b72a7604fb2eeee1dfe1f888afcaca828890efe32617e74afe5cbb4363917Secunia Security Advisory - A vulnerability has been reported in the Secure Site module for Drupal, which can be exploited by malicious people to bypass certain security restrictions.
79d65383490588bdc3898347253e965e86f8e76cef2efe8de14dc14b833d934fSecunia Security Advisory - D4m14n has discovered a vulnerability in Bigware Shop, which can be exploited by malicious people to conduct SQL injection attacks.
7c2061d0e2568075dedef0dc2dc2f8221c4c96edf1bde54a60fd5d10ddc79aecSecunia Security Advisory - Thomas Pollet has discovered a vulnerability in SQLiteManager, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
2f5af42ea220031bd285913c108c00f4b65d7307df6b93be907828905472b692Secunia Security Advisory - Some vulnerabilities have been reported in Coppermine Photo Gallery, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to conduct SQL injection attacks or compromise a vulnerable system.
7a32574aed7586b90ee0211250108388f5667f7afc0715d25340527c41f61da0Secunia Security Advisory - HouSSaMix has discovered a vulnerability in Connectix Boards, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
205c70e1b117192be775d9f5e785ad10581ea3904eda07fe5cf41ebe61aeac13Secunia Security Advisory - A vulnerability has been reported in IBM AIX, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
fca4561000f7984f5eaf088a01de198fd9079764f6713bd6370f82cef36185ddGentoo Linux Security Advisory GLSA 200801-20 - Brad Fitzpatrick reported that the xmlCurrentChar() function does not properly handle some UTF-8 multibyte encodings. Versions less than 2.6.30-r1 are affected.
d6466747edb2f89a080dd704e0be88ffce90ac3b25a92c2870b67b772a5790d5Gentoo Linux Security Advisory GLSA 200801-19 - GOffice includes a copy of PCRE which is vulnerable to multiple buffer overflows and memory corruptions vulnerabilities (GLSA 200711-30). Versions less than 0.6.1 are affected.
e09d634c9b9543572b841b87fad5eb652db8b74951f59dd01f6b6aa1e881649aGentoo Linux Security Advisory GLSA 200801-18 - Kazehakase includes a copy of PCRE which is vulnerable to multiple buffer overflows and memory corruptions vulnerabilities (GLSA 200711-30). Versions less than 0.5.0 are affected.
28eb391b9e0ba8449765cd74df621571e3b5c64d04aff89717c40575a98ef406PeteFinnigan.com Limited advisory for Oracle January 2008 CPU - The Oracle Ultra-Search provides excessive privileges assigned to the WKSYS database schema/user account.
ecd73ca17fc3ba606b76d0b68fffcc52db6c559340b1e155d7525cf487cb8bdaCisco Security Advisory - Apache Tomcat is the servlet container for JavaServlet and JavaServer Pages Web within the Cisco Wireless Control System (WCS). A vulnerability exists in the mod_jk.so URI handler within Apache Tomcat which, if exploited, may result in a remote code execution attack.
aa89f5c6940a3072b81f1d3d550fea6f0215b4cce41ab41998c9304ca904b58aSecunia Security Advisory - Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, and corrupt a file system, or by malicious people to cause a DoS (Denial of Service).
960286ec228c8675eb251dbdc6e772aab579902d2e9619f4cbdea86805b49688Secunia Security Advisory - Gentoo has issued an update for maradns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
e203ef8d7ba807bd34e71eef74535decd1eb6354dca7208d81da0f5e85e28865Secunia Security Advisory - Gentoo has acknowledged a vulnerability in netkit-ftpd, which can be exploited by malicious users to cause a DoS (Denial of Service).
084cd5f1262a54688f9e6d1ae86e601ff00e7d2ae1ace3c6cb32e20afaec0e88Mandriva Linux Security Advisory - The mysql_change_db() function in MySQL 5.0.x before 5.0.40 did not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allowed remote authenticated users to gain privileges. The federated engine in MySQL 5.0.x, when performing a certain SHOW TABLE STATUS query, did not properly handle a response with a small number of columns, which could allow a remote MySQL server to cause a denial of service (federated handler crash and daemon crash) via a response that lacks the minimum required number of columns.
5a628b531e40a6b9d9e068fb6e1c8ad5e4b3687bd48204dcd3c882e30baab2ffSecunia Security Advisory - Some vulnerabilities have been reported in Hal Networks products, which can be exploited by malicious people to conduct cross-site scripting attacks.
75006768d9b2e14c0aeb873531214a1d32faaa3706d6e4b2fcbb8015b61eb262Secunia Security Advisory - Secunia Research has discovered a vulnerability in XnView and NConvert, which can be exploited by malicious people to compromise a user's system.
36ea1c10d7da30267a2d2e6237789972bd64ee2745b5b260cce55928bc64a389Secunia Security Advisory - Mandriva has issued an update for mysql. This fixes a security issue and a vulnerability, which can be exploited by malicious users to gain escalated privileges or cause a DoS (Denial of Service).
5423fc2df908a3c7eb08303f355b80435f7088e85134d0b21ea9062f63cc03fcSecunia Security Advisory - ShaFuck31 has reported a vulnerability in AmpJuke, which can be exploited by malicious people to conduct cross-site scripting attacks.
2fcea3f777f9c3086299178714511b0eb02edcde12c32bee0d900e43c6485a7dSecunia Security Advisory - Larry W. Cashdollar has reported two security issues in the PatchLink Update client for Unix, which can be exploited by malicious, local users to truncate arbitrary files and to gain escalated privileges.
9b31536cdb411af7ccfa7e1895b28444cd1bff9de6ed0d8bfc654afbbd0ca6faSecunia Security Advisory - Russ McRee has reported some vulnerabilities in SoftCart, which can be exploited by malicious people to conduct cross-site scripting attacks.
32adc55e96420cc5024d0b4132a89efda1bd16fe7a4f250eb3dd5c9ff0480e96Secunia Security Advisory - Alexandr Polyakov and Stas Svistunovich have reported a vulnerability in Nucleus CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
76fb95f652270730901922e9f78d99696da488691807c80fcd5bbd11b62a01e1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed