Secunia Security Advisory - D4m14n has discovered a vulnerability in Bigware Shop, which can be exploited by malicious people to conduct SQL injection attacks.
7c2061d0e2568075dedef0dc2dc2f8221c4c96edf1bde54a60fd5d10ddc79aecSecunia Security Advisory - Thomas Pollet has discovered a vulnerability in SQLiteManager, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
2f5af42ea220031bd285913c108c00f4b65d7307df6b93be907828905472b692Secunia Security Advisory - Some vulnerabilities have been reported in Coppermine Photo Gallery, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to conduct SQL injection attacks or compromise a vulnerable system.
7a32574aed7586b90ee0211250108388f5667f7afc0715d25340527c41f61da0Secunia Security Advisory - HouSSaMix has discovered a vulnerability in Connectix Boards, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
205c70e1b117192be775d9f5e785ad10581ea3904eda07fe5cf41ebe61aeac13Secunia Security Advisory - A vulnerability has been reported in IBM AIX, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
fca4561000f7984f5eaf088a01de198fd9079764f6713bd6370f82cef36185ddGentoo Linux Security Advisory GLSA 200801-20 - Brad Fitzpatrick reported that the xmlCurrentChar() function does not properly handle some UTF-8 multibyte encodings. Versions less than 2.6.30-r1 are affected.
d6466747edb2f89a080dd704e0be88ffce90ac3b25a92c2870b67b772a5790d5Gentoo Linux Security Advisory GLSA 200801-19 - GOffice includes a copy of PCRE which is vulnerable to multiple buffer overflows and memory corruptions vulnerabilities (GLSA 200711-30). Versions less than 0.6.1 are affected.
e09d634c9b9543572b841b87fad5eb652db8b74951f59dd01f6b6aa1e881649aGentoo Linux Security Advisory GLSA 200801-18 - Kazehakase includes a copy of PCRE which is vulnerable to multiple buffer overflows and memory corruptions vulnerabilities (GLSA 200711-30). Versions less than 0.5.0 are affected.
28eb391b9e0ba8449765cd74df621571e3b5c64d04aff89717c40575a98ef406BlazingTools Perfect Keylogger administrative password decrypting utility that can also set the password regardless of whether or not the prior password is known.
431ca38be121b943697f05b86cd0cc4c0d96171ba2c969b2e85c57d263dd54b9PeteFinnigan.com Limited advisory for Oracle January 2008 CPU - The Oracle Ultra-Search provides excessive privileges assigned to the WKSYS database schema/user account.
ecd73ca17fc3ba606b76d0b68fffcc52db6c559340b1e155d7525cf487cb8bdaCisco Security Advisory - Apache Tomcat is the servlet container for JavaServlet and JavaServer Pages Web within the Cisco Wireless Control System (WCS). A vulnerability exists in the mod_jk.so URI handler within Apache Tomcat which, if exploited, may result in a remote code execution attack.
aa89f5c6940a3072b81f1d3d550fea6f0215b4cce41ab41998c9304ca904b58aOpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.
17caa029d35ea373515ed9dc249efa5b6efe55feeefa3fd65cb34d2dbc3dd08fSecunia Security Advisory - Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, and corrupt a file system, or by malicious people to cause a DoS (Denial of Service).
960286ec228c8675eb251dbdc6e772aab579902d2e9619f4cbdea86805b49688Secunia Security Advisory - Gentoo has issued an update for maradns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
e203ef8d7ba807bd34e71eef74535decd1eb6354dca7208d81da0f5e85e28865Secunia Security Advisory - Gentoo has acknowledged a vulnerability in netkit-ftpd, which can be exploited by malicious users to cause a DoS (Denial of Service).
084cd5f1262a54688f9e6d1ae86e601ff00e7d2ae1ace3c6cb32e20afaec0e88tinyBB version 0.2 suffers from a remote file inclusion vulnerability.
10cf93cdfc6ecbd234fc71495d6751c739fdc8cd7afd7d402e6e1a7a8e9b6a5cCoppermine version 1.4.14 suffers from a remote shell command execution vulnerability in include/imageObjectIM.class.php.
31a81742b5b6bb6f8d30f9640e25a0378a178d04d82a26078fcb19fbb421504fThe Joomla ChronoForms component version 2.3.5 suffers from remote file inclusion vulnerabilities.
e992bba7ba3b46ae1ca32a6dd9249d84ab2bbe72cad754835974a20fe3731fc0ibProArcade versions 3.3.0 and below remote SQL injection exploit.
cae10973caddb5ee0cd0abaf1fda44a4ff4da78692809a4c6b110ba5f942a1caWebSpell version 4.01.02 suffers from cross site scripting and cross site request forgery vulnerabilities.
c642c6c5771ad82d150fb896974857a2391e4c43efa53371015f448bcc4f7857Yesil Koridor Ziyareti Defteri suffers from a SQL injection vulnerability in index.php.
943507ebf8cb13c453def0154413882c0ae1f6a0eab64d496f6b306fb65f6837Mandriva Linux Security Advisory - The mysql_change_db() function in MySQL 5.0.x before 5.0.40 did not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allowed remote authenticated users to gain privileges. The federated engine in MySQL 5.0.x, when performing a certain SHOW TABLE STATUS query, did not properly handle a response with a small number of columns, which could allow a remote MySQL server to cause a denial of service (federated handler crash and daemon crash) via a response that lacks the minimum required number of columns.
5a628b531e40a6b9d9e068fb6e1c8ad5e4b3687bd48204dcd3c882e30baab2ffThe Joomla com_estateagent component suffers from a remote SQL injection vulnerability.
4ff90886b95d01c6015416c441c523e05ca2b9a327f0b922a498b78f22943d3fThe Joomla com_jokes component suffers from a remote SQL injection vulnerability.
f5fdfeaa0bb53666793068d21cde89109adf182b1acb389b012b936299d692ccThe Joomla com_recipes component suffers from a remote SQL injection vulnerability.
ba5c43a9d8fef19aeb0e168254d75505fe63e708b919efb6ea6fe1528152ce09
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed