All versions of Job Board Software suffer from cross site scripting and remote file inclusion vulnerabilities.
e9d937160ca2c81632180a9343f722ff0b35350cbcb6b999730f34a454f01fb5A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat and Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious web address or open a malicious file.. The specific flaw exists in the parsing of embedded JavaScript code within PDF documents. When the function printSepsWithParams() is called with certain malicious parameter values an integer overflow can occur resulting in a memory corruption. This may be subsequently leveraged to execute arbitrary code under the privileges of the current user. Adobe Reader and Acrobat versions 8.1.1 and below are affected.
fa8f8ce53db76ebb374e69a174c219c6497ff85e219af7aac7dab0bdb3d432bbA vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of the Novell Netware Client. Authentication is not required to exploit this vulnerability. The specific flaw exists in nwspool.dll which is responsible for handling RPC requests through the spoolss named pipe. The EnumPrinters function exposed by this DLL contains a logical flaw allowing an attacker to bypass a patch introduced to prevent the vulnerability described in ZDI-07-045. Exploitation of this vulnerability leads to arbitrary code execution in the context of the SYSTEM user.
9eadef5756316b7c3b14ecba25151f26f79529325cbe41c1ec59c1c2b7484bc9Secunia Security Advisory - Some vulnerabilities have been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, and gain escalated privileges.
849495a4bb64b356dd0ae811fa3a7855029953c50b9c3e6fc9dc6c020e8f3649Secunia Security Advisory - A vulnerability has been reported in Joomla!, which can be exploited by malicious people to manipulate certain data.
c179e846fd2c39e16e4cc79628c58dabeee69361827a1908bd1bd72a5dbb12b0Secunia Security Advisory - SoSo H H has reported a vulnerability in ITechBids, which can be exploited by malicious people to conduct SQL injection attacks.
f36e25ed32a4b8cf83b8e61adbd90dd0c216e0064ce628611ae4bf9e5e6b083bGentoo Linux Security Advisory GLSA 200802-04 - The Gallery developement team reported and fixed critical vulnerabilities during an internal audit (CVE-2007-6685, CVE-2007-6686, CVE-2007-6687, CVE-2007-6688, CVE-2007-6689, CVE-2007-6690, CVE-2007-6691, CVE-2007-6692, CVE-2007-6693). Versions less than 2.2.4 are affected.
43dd08201e889f3e47650c06a43560d0f6a137cccdfcdf093ce0c4851f5f017fGentoo Linux Security Advisory GLSA 200802-03 - Ulf Harnhammar, Secunia Research discovered that the frame and frameset HTML tags are not properly filtered out. He also reported that certain HTTP requests are executed without being checked. Versions less than 4.1.6 are affected.
657780bafc3c14c287fde088770ac4afa98d98845d94b35a85ef7705bdfed87dThe Larson Software Technology Network Print Server versions 9.4.2 build 105 and below suffer from format string and buffer overflow vulnerabilities. Proof of concept code included.
a71e7b6450d176c2da47ed79b3b2c9237d6d2cb912f8a99926beb4b59ff3b974Exploit for Opium OPI Server versions 4.10.1028 and below along with a large amount of cyanPrintIP products that suffer from a format string vulnerability in ReportSysLogEvent as well as a server crash flaw.
621ac7979597e60bed526fe7ca0e77ea8b18edf704d7e3ffc695bd36f1e97a4dThe Opium OPI Server versions 4.10.1028 and below along with a large amount of cyanPrintIP products suffer from a format string vulnerability in ReportSysLogEvent as well as a server crash flaw.
73f875d8944de4b42d99e9155d5fd14c3284bed1f200ad31d230dea4ef1f673dSafeNet Sentinel Protection Server and SafeNet Sentinel Keys Server versions 7.4.1.0 and below suffer from a directory traversal vulnerability.
4bdb2c042c91e4e1823aed8d4ed2c06263c78bdf1aa7f7bfb7eeafd38d1f3e08Exploit for EztremeZ-IP File and Printer Server versions 5.1.2x15 and below which suffer from crash and directory traversal vulnerabilities.
50f5f2c4bb831093773a76f338dbc27cbf2f706120be32797377bf5a574e01deEztremeZ-IP File and Printer Server versions 5.1.2x15 and below suffer from crash and directory traversal vulnerabilities.
9e9ad2ff9b7ddbad58255d617edbb792527536ef94c286dd631629f37d9e4eb9aliboard Beta suffers from a remote shell upload vulnerability via the avatar functionality.
fee271e1ede536eb14b482f6f3d5619bb743a0858c8d73c4aed9e6db8ca6c6f6The Simple Machines Forum SMF Shoutbox module versions 1.14 through 1.16b suffer from a persistent cross site scripting vulnerability.
d63257527eadd61b31c9b75ad22f21f210153dde7edbac6771f0383987a8a82fMercury version 1.1.5 suffers from a cross site scripting vulnerability.
510e732e904e6d5c3f001878fd450dc9bd0a532bf41b367e5ea2b3bf2e45e26csandbox version 1.4.1 suffers from a remote file inclusion vulnerability.
cf9bb1cf5bf5ca7d6cfcc0477f4e830855e4b3b8717d8963ec78021c954fa745Secunia Security Advisory - Iron has discovered a vulnerability in Open-Realty, which can be exploited by malicious people to compromise a vulnerable system.
0e0d19781c5d6f95bd4cc93409e588986e0661ecb7b2f929b858f16fa5d83e92Secunia Security Advisory - Russ McRee has reported a vulnerability in Loris Hotel Reservation System, which can be exploited by malicious people to conduct cross-site scripting attacks.
cea6b11355aa3c91132e73ac4a566b5f7f456b004423a1b5a7b3012008b4354eSecunia Security Advisory - GoLd_M has discovered a vulnerability in SAPID CMF, which can be exploited by malicious people to compromise a vulnerable system.
3e463e19a3ad1e6d5f87c156302ba446b4a2c35844db90935ddd8214249a4fffFirefox appears to suffer from another URI spoofing vulnerability when fed a missing username.
1f0e59a8b1078b6b8301afbce9e3502f66d15bc168feeeb469f38c844edafd7cThe Joomla! Rapid Recipe component appears to suffer from a remote SQL injection vulnerability.
7f4ac017606f55c43b9783806cec00e024d15cb894d9d883fc183b26f28ce307Website Design Chat Software suffers from a cross site scripting vulnerability.
3b1327f3e451e67a8103aa4231fa083c2d6ba83a712360a82b550606f865fdceFirefox versions 2.0.0.12 and below information leak proof of concept exploit demonstrating the ability to read preferences.
9a9c331e8b1a618e7228d3c4ddaf5ad2dfabd66cba3c31315451a874aac0782c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed