Webportal CMS versions 0.7.4 and below suffer from an arbitrary file upload vulnerability.
1b7523d740f758006710eaa884a0bbe8Secunia Security Advisory - Fedora has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
f668790d82f00e40f66ff0de4828422bCore Security Technologies Advisory - A vulnerability has been found on the 'WebKit' library used by Safari inside iPhone. By inserting a special string on the 'alert()' JavaScript method, it's possible to crash Safari via an outbound memory read triggering an access violation.
d8f47c744f69cc5acd7422649f4813f8Secunia Security Advisory - Stefan Esser has reported a vulnerability in WordPress, which can be exploited by malicious people to guess automatically generated passwords.
4386460c18f339c05ba5bc31481b91edSecunia Security Advisory - TheJT has reported a security issue in IntegraMOD, which can be exploited by malicious people to disclose potentially sensitive information.
7fc848e745c5bf536763b02f392bfabfSecunia Security Advisory - r45c4l has reported a vulnerability in phpVID, which can be exploited by malicious people to conduct SQL injection attacks.
275d556b1ab6093ab85feb6c3b28297eSecunia Security Advisory - SirGod has discovered a vulnerability in D-iscussion Board, which can be exploited by malicious people to disclose sensitive information.
5a850890e110794297b671924db8c937Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in the Unreal Engine, which can potentially be exploited by malicious people to compromise a user's system.
42f32ab552661c69ad140c13ab1c8de1Secunia Security Advisory - Ubuntu has issued an update for libxml2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
e357c5df8fedf143ee1a8550854a4c91Secunia Security Advisory - Red Hat has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
219bbc40bf4eefd7a575b050b4eb585eSecunia Security Advisory - Fedora has issued an update for ipa. This fixes a vulnerability, which can be exploited by malicious people to disclose sensitive information.
72e6a10b6235341f79befba13a8f9245Secunia Security Advisory - Fedora has issued an update for tomcat6. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, or disclose sensitive information.
02516a29d4938f16f1bdeb2eddcbe22aSecunia Security Advisory - Some vulnerabilities have been reported in DotNetNuke, which can be exploited by malicious users to gain escalated privileges and by malicious people to bypass certain security restrictions and potentially compromise a vulnerable system.
b2829dfdf688073dc939034f921285a5pNews version 2.03 suffers from a remote SQL injection vulnerability in newskom.php.
e6c080d2d100bc9f78a8e45c76b43c64Avant Browser version 11.7 Build 9 integer denial of service exploit.
17074b3881a78290f32ebd49b6a97828vbLOGIX Tutorial Script version 1.0 and below suffer from a remote SQL injection vulnerability.
d35d75d05a219b2b573806adf2577915The Answers module used in Drupal suffers from a cross site scripting vulnerability.
95bf66d7228c7a35bd08e9df70b0ec1aPro2col StingRay FTS suffers from a cross site scripting vulnerability via the login username functionality.
08c034f681ddb155997ab310477742e8SkaLinks version 1.5 suffers from a remote arbitrary add editor vulnerability in register.php.
9d6179a0b01567c18a0ef904f98723bapForum version 1.30 suffers from a remote SQL injection vulnerability in showprofil.php.
de53721d99aad810dd4a3eac9de2165dSecunia Security Advisory - Red Hat has issued an update for libxml2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise an application using the library.
88e95d9e66aa85f2a38d68af97582439Short write up discussing MySQL character set truncation vulnerabilities.
b6989308e0f6a0e470acb466f29ea665Secunia Research has discovered a vulnerability in Trend Micro OfficeScan, which can be exploited by malicious people to compromise a vulnerable system. A boundary error in cgiRecvFile.exe can be exploited to cause a stack-based buffer overflow via an HTTP request with a specially crafted, overly long "ComputerName" parameter. The "TempFileName", "NewFileSize", and "Verify" parameters must also be manipulated to exploit the vulnerability. Successful exploitation allows execution of arbitrary code. Trend Micro OfficeScan 7.3 patch 4 build 1362 is affected.
ea037f969a70052012411655e72ce1b4Wordpress versions 2.6.1 and below suffer from a user_login column SQL truncation vulnerability that allows for blog compromise.
9d7b7b6a1710c7c87e1bad380658ca58PhpWebGallery version 1.3.4 remote blind SQL injection exploit.
0b9b752121ab409a199245f01af0edfe
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed