Regental Medien suffers from a remote blind SQL injection vulnerability.
f377587b180934342430ad4480995318
FSphp version 0.2.1 suffers from remote file inclusion vulnerabilities.
0126ae83b540df6c721c18ecf50e1da5
Joomla Fastball component versions 1.1.0 through 1.2 suffer from a remote SQL injection vulnerability.
797ba9a389b14f055b847fad7039cec6
Tsunami IRC Bot for Mac OS X. Supports easy addition of new command, changing of options, server information, and more.
ce1cf28a5384c80a86808e31dba8f900
Debian Security Advisory 1895-1 - Several vulnerabilities have been discovered in the xmltooling packages, as used by Shibboleth. Chris Ries discovered that decoding a crafted URL leads to a crash (and potentially, arbitrary code execution). Ian Young discovered that embedded NUL characters in certificate names were not correctly handled, exposing configurations using PKIX trust validation to impersonation attacks. Incorrect processing of SAML metadata ignores key usage constraints. This minor issue also needs a correction in the opensaml2 packages, which will be provided in an upcoming stable point release (and, before that, via stable-proposed-updates).
dba30c5387674fa70ae8cc5ee9ec9f79
Sun Solaris 10 RPC dmispd remote resource consumption exploit.
0c55290aef1615ae088553d9e0b248e8
Swiss Mango CMS suffers from a remote SQL injection vulnerability.
2354fb6adca68dc589ecec6b9846d0bc
E107 suffers from a referer header cross site scripting vulnerability.
c85751f31a7de51dd7b2314129fd3cdb
MindSculpt's CMS system suffers from a remote SQL injection vulnerability.
b6289d42bd89b2d20286d66c55a2ecdc
html2ps versions 1.0 beta5 and below suffer from an arbitrary file disclosure vulnerability.
b0a6ad44d22aa21f315013155384063a
The Black Hat Briefings DC Call for Papers is now open. It will be held February 2nd through the 3rd, 2010 at the Hyatt Regency Crystal City in Washington D.C.
7dd80f84f219594b2b2489af5fc36fe3
Mandriva Linux Security Advisory 2009-245 - The g_file_copy function in glib 2.0 sets the permissions of a target file to the permissions of a symbolic link (777), which allows user-assisted local users to modify files of other users, as demonstrated by using Nautilus to modify the permissions of the user home directory. This update provides a solution to this vulnerability.
3ebbd722a56cf2f933b4e50e0b71cec2
Debian Security Advisory 1894-1 - Miroslav Lichvar discovered that newt, a windowing toolkit, is prone to a buffer overflow in the content processing code, which can lead to the execution of arbitrary code.
44dd3c474a31a7fd75b512d93fb3c351
Ubuntu Security Notice USN-837-1 - Miroslav Lichvar discovered that Newt incorrectly handled rendering in a text box. An attacker could exploit this and cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program.
f1a51ebbeec56a03a600b9082ca17282
Secunia Security Advisory - Some vulnerabilities have been reported in OSSIM, which can be exploited by malicious users to conduct SQL injection attacks, and by malicious people to disclose potentially sensitive information and conduct cross-site scripting attacks.
bd16c67f5c3b9db3368f3abd99291bd2
Secunia Security Advisory - Red hat has issued an update for cyrus-imapd. This fixes some vulnerabilities which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system.
0ef3d69b11b0b325415eafb7e92e05df
Secunia Security Advisory - Debian has issued an update for cyrus-imapd-2.2 and kolab-cyrus-imapd. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system.
92611d270f4b13e5032a0cc5f1bf649a
Secunia Security Advisory - Debian has issued an update for dovecot. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system.
b4563f374ee6a2f7db94007203195f21
Secunia Security Advisory - A vulnerability has been reported in IBM Lotus Connections, which can be exploited by malicious people to conduct cross-site scripting attacks.
d8e9feb966aacad3f9cd294124b1a262
Secunia Security Advisory - A vulnerability has been reported in the Tupinambis component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
50527b470e806f865be2fcb5a8760ac4
Secunia Security Advisory - Fedora has issued an update for xmp. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
e037b3acdede6a98babbc59a5ec944e1
Secunia Security Advisory - Giuseppe Bonfa has discovered a vulnerability in avast! Home/Professional, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.
a553bb5b52c5fd2cf9e9675a4145af45
Secunia Security Advisory - A vulnerability has been reported in the Meta tags module for Drupal, which can be exploited by malicious people to bypass certain security restrictions.
0c5865e55c1c4dd880de3aae6f28d3d8
Secunia Security Advisory - A vulnerability has been reported in the Devel module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
64881090a47ec45d31a0b0c795b42484
Secunia Security Advisory - A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to bypass certain security restrictions or gain escalated privileges.
a9d2ba280fc15e17172c09e51f8dc0ef