Bugzilla versions 3.1.1 through 3.2.3 and 3.3.1 through 3.3.4 suffer from an unauthorized bug change vulnerability.
876f9961a769b653d0920a4cfb4e695ca6b68735b26a84cd6a638eb4fcb5b414Month of Twitter Bugs - Twellow suffered from a reflected cross site scripting vulnerability.
4e86cd7810ff29be5c79806f01a4db208f5d7dfc0a096ee5fbc32af817627926origami is a Ruby framework designed to parse, analyze, edit, manipulate, forge, exploit PDF files. This is NOT a PDF rendering library. It aims at providing a scripting tool to generate and/or analyze malicious PDF files. As well, it can be used to create on-the-fly customized PDFs, or to inject (evil) code into already existing documents.
7405bfc439b78efdaa51fa0a0e50f65ec3a0fa667d5346b12c0813e56d269d1fLotus Sametime suffers from a user enumeration vulnerability. This is based on the time it takes to respond when authenticating credentials. IBM Lotus Instant Messaging and Web Conferencing (Sametime) version 6.5.1 is affected.
cdcae2dc33b38a562b1583b7879b5cbe70a7200ad54c82ce179f4a9c3891f31cThe Pwnie Awards ceremony will return for the third consecutive year to the BlackHat USA conference in Las Vegas. The award ceremony will take place during the BlackHat reception on Wed, July 29. The deadline for nominations is Wednesday, July 15.
d41345c93e4e6fbcbec9cc12b2810b67756a26764da817df33d9d5f20cdbf800Mandriva Linux Security Advisory 2009-149 - The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests. Fixed a potential Denial-of-Service attack against mod_deflate or other modules, by forcing the server to consume CPU time in compressing a large file after a client disconnects. This update provides fixes for these vulnerabilities.
c6bfbf6ae9b456b47c4d752222f01574101f35126c28e68a785e4b7b9f9da0e4It appears that more variables in Online Guestbook Pro version 5.1 suffer from cross site scripting issues, not just entry.
d7e4848e7bfbbce89d84411fd670af5198d9a19ee79ab9dd4933a56bac68096aStatscode suffers from a cross site scripting vulnerability.
13f4fc63d02195d13a0ce7dd1cfee487a1a5655c004cd020b19acc2279348b43EveryAuction version 1.53 suffers from a cross site scripting vulnerability.
f6653607771766ad6ab3a2a764786aed0145a929aa4aa6043d6b90a089576f9fSecunia Security Advisory - Core Security Technologies has reported a vulnerability in Awingsoft Winds3D Viewer, which can be exploited by malicious people to compromise a user's system.
1f1a412563bacf606e3944b3f3f362d5b43f5ebed2e1aa58ffd6492c208b48dcSecunia Security Advisory - A vulnerability has been reported in Adobe ColdFusion, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
179c81d68c79b61c6e7e9a3246bd23e4c3e61a9a0c79c377c257917daf6ecc55Secunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious users to bypass certain security restrictions.
8b26a25a28307e63fb0aebb4c6c1376c61faf444c342ba83543c018ad23fc541Secunia Security Advisory - Astaro has issued an update for IPsec. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
c8cc6f3de17af41f928b67824102326f93df65b9abb4153cb0b6d3d73ffb2294Secunia Security Advisory - A vulnerability has been reported in ClanSphere, which can be exploited by malicious people to conduct cross-site scripting attacks.
a86da3fc5dcf90f4eb72863e6ded8346bd8790111a1b413dc064c0d1d4670843Secunia Security Advisory - Two vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially compromise a user's system.
7a77b2a9e152dc7d6414d7d5c76ad041531f4b735586f07613e7545a7a6a70a0Secunia Security Advisory - A vulnerability has been reported in Linea21, which can be exploited by malicious people to conduct cross-site scripting attacks.
1a0f120fad0e57b2794b776502a97523632a633793d43b19c2e5a2c5ac621d1aSecunia Security Advisory - Moudi has reported a vulnerability in JNM Guestbook, which can be exploited by malicious people to conduct cross-site scripting attacks.
98d002ee8809a1ce1eccc71797ea3e6d131e4ee3d53ec1d1bf4af39512593cd2Secunia Security Advisory - 599eme Man has reported a vulnerability in Rentventory, which can be exploited by malicious people to conduct cross-site scripting attacks.
74ea74398b58fbe210f41a886406416852857763e5aecae19c23c215c6d36b5bSecunia Security Advisory - Some vulnerabilities have been reported in Alibaba Clone, which can be exploited by malicious people to conduct SQL injection attacks.
70abfc0b19db5835bae3003e4d5e183c10aa2f91e01c372111ef23cc15e5dc5aSecunia Security Advisory - A vulnerability has been reported in Online Guestbook Pro, which can be exploited by malicious people to conduct cross-site scripting attacks.
eee5119b3662c0b9e506def3b2415e177a642f290ce709ea05094ff702ae8c86Secunia Security Advisory - A vulnerability has been reported in eBay Enhanced Picture Services ActiveX control, which can be exploited by malicious people to compromise a user's system.
dea5dac49dd1cea2633c3d4a2af84bf3696662aee64a154cf580f9c66d5415cfSecunia Security Advisory - A security issue has been reported in the Acajoom GPL component for Joomla!, which can be exploited by malicious people to potentially compromise a vulnerable system.
5473633258eef5e67ec0943310d0ab97b81a53e7f77bddb23f3267f9a09f8a3cSecunia Security Advisory - Nikolaos Rangos has discovered a vulnerability in MySQL, which can be exploited by malicious users to cause a DoS (Denial of Service).
6ee8956f935553b3f82abb602a44c8380cfe2c0f7b88a3edcd593d1d1f647657Secunia Security Advisory - A security issue has been reported in the Nodequeue module for Drupal, which can be exploited by malicious users to disclose potentially sensitive information.
96d3ba712cbed38b98b76dcfaec9932535b0845cc31d8734216d490d63efe2dfSecunia Security Advisory - A vulnerability with an unknown impact has been reported in IBM AIX.
dafcb747bb4509af593288e6ba45537bf0450e3435d5db33fb20884c0a11e184
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed