Webportal CMS versions 0.7.4 and below suffer from an arbitrary file upload vulnerability.
cd3b37db00371520e3171d5bf83c480a8b29893295fc218e548f6a5cf8547d57Secunia Security Advisory - Fedora has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
512043a2e9925636ae5dd414ca2611cc1570f31d174c2efa7346a93d2aec2552Core Security Technologies Advisory - A vulnerability has been found on the 'WebKit' library used by Safari inside iPhone. By inserting a special string on the 'alert()' JavaScript method, it's possible to crash Safari via an outbound memory read triggering an access violation.
8a0bac7a699469d747fd1add18ee852e92af84a1b7d2add6bf85bab412a08ba0Secunia Security Advisory - Stefan Esser has reported a vulnerability in WordPress, which can be exploited by malicious people to guess automatically generated passwords.
b4a21b4010ee3cb2fed622d1cc57627426f37ccb39ae76d7838fa572f22c94cdSecunia Security Advisory - TheJT has reported a security issue in IntegraMOD, which can be exploited by malicious people to disclose potentially sensitive information.
8f7a38b9c6b81fdabfbc7d4d83822ec694e2024f36630b749fd25ea38779e620Secunia Security Advisory - r45c4l has reported a vulnerability in phpVID, which can be exploited by malicious people to conduct SQL injection attacks.
b5acab3916ac61d7c5ee01e66039b6e47d812f82f93875951bb456eff70e883bSecunia Security Advisory - SirGod has discovered a vulnerability in D-iscussion Board, which can be exploited by malicious people to disclose sensitive information.
321c69085c6592a710ad73dad17b55e2f009255d4e59b992c8ba0edac29ffb89Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in the Unreal Engine, which can potentially be exploited by malicious people to compromise a user's system.
1449056011f03677439a78c54b97b3e909d09c2b6c1e444ef8d30c7abd260899Secunia Security Advisory - Ubuntu has issued an update for libxml2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
c2f002051c1a268190e9a1370dcf357bfb6db010fd7e97010f6aaafaa0afb04eSecunia Security Advisory - Red Hat has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
d0e7acb1f1d29b2afe983243253ee86c9b2a2012cf4339f7611952ffb2170f8aSecunia Security Advisory - Fedora has issued an update for ipa. This fixes a vulnerability, which can be exploited by malicious people to disclose sensitive information.
ab8bc95ec54b2582d7f2681e899f5c3436121d38bcd9a15512c1f373d8710094Secunia Security Advisory - Fedora has issued an update for tomcat6. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, or disclose sensitive information.
0381d80190888f07351bf252d34e44c77405a09ad73024c350ad909c056fab36Secunia Security Advisory - Some vulnerabilities have been reported in DotNetNuke, which can be exploited by malicious users to gain escalated privileges and by malicious people to bypass certain security restrictions and potentially compromise a vulnerable system.
90d08a47e111f8dae40489ff14ac30c0ec4eff15e9312339fab5819f91de4e9dpNews version 2.03 suffers from a remote SQL injection vulnerability in newskom.php.
295f96394eb1b76dc8bd86a8304ad03f2e3ebd0b3bf15ada35e7da1540bb0172Avant Browser version 11.7 Build 9 integer denial of service exploit.
29f0906142071a61f9dd6df0f030ba4934210a4d0e8273cf1bc754787b264cd8vbLOGIX Tutorial Script version 1.0 and below suffer from a remote SQL injection vulnerability.
9e1b34cccc34b3854cee2d3834eb5c03a9168f1cabbd684e2dc633a68455a9efThe Answers module used in Drupal suffers from a cross site scripting vulnerability.
a7df9be0f32e55ab5b6a2ba9dd652799e60d1e549d0d5e1e7e944df656adbeb8Pro2col StingRay FTS suffers from a cross site scripting vulnerability via the login username functionality.
24f6911ba28f77c3b0dd0a5756d49433a480655e4285e291ee815c73fe7b74daSkaLinks version 1.5 suffers from a remote arbitrary add editor vulnerability in register.php.
d9db62ca07681db41b0a0691728ad125062ce980db29e1ce3bb98f3e49f54349pForum version 1.30 suffers from a remote SQL injection vulnerability in showprofil.php.
9b41178b220ea98e13e178acd90c8b44524cb37916a3cf5004aaf3032d001579Secunia Security Advisory - Red Hat has issued an update for libxml2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise an application using the library.
b30413173746698d7eb702291a5ac458a59629f671d26821e06b1a4aadf518d5Short write up discussing MySQL character set truncation vulnerabilities.
1553a1e8d1d0ff34395194b38aa66753f806fd86e6b26acf190557782c16897bSecunia Research has discovered a vulnerability in Trend Micro OfficeScan, which can be exploited by malicious people to compromise a vulnerable system. A boundary error in cgiRecvFile.exe can be exploited to cause a stack-based buffer overflow via an HTTP request with a specially crafted, overly long "ComputerName" parameter. The "TempFileName", "NewFileSize", and "Verify" parameters must also be manipulated to exploit the vulnerability. Successful exploitation allows execution of arbitrary code. Trend Micro OfficeScan 7.3 patch 4 build 1362 is affected.
8d520d0c7ffd04e803c95544d22d52c683a93cdf6c864999b5b503b6c3caa181Wordpress versions 2.6.1 and below suffer from a user_login column SQL truncation vulnerability that allows for blog compromise.
3a9c6809e48a3cef546d2eef012eb9151dfd7af5563cafc7b180bc1895e894dcPhpWebGallery version 1.3.4 remote blind SQL injection exploit.
1768e342d41e8b011d8c699cdb9417e3687bb121204bf34e3de6886bf3901e43
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed