deV!L's Clanportal version 1.5 suffers from remote file inclusion and image replacement vulnerabilities.
6f49b5caecb172858aee6f8daaeae43bdde8bb1b079fd98f585fc4242fbfc94a
Scratcher suffers from cross site scripting and remote SQL injection vulnerabilities.
ef302aa3b59d79295188c3b1dcfb1d77c643381e76184c81acd82641bb121be0
Socialware version 2.2 suffers from cross site scripting and shell upload vulnerabilities.
f4af78524d5d6ebb4c0137a3be8237a1801aef2eebc18cf23265fb9b880f3c18
Apple Safari version 4.0.3 (Win32) CSS related remote denial of service exploit.
59f3107052784bfbc7146346198223a15114acfb239ae5b52f90f93a41ebb54d
Mandriva Linux Security Advisory 2010-086 - Multiple vulnerabilities has been found and corrected in kpdf (kdegraphics). Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read. The updated packages have been patched to correct these issues.
176ce851ea5226fd5466f63f85a1de7bc3edc6ecd276970bc8cbdb5ae0388691
Task Freak version 0.6.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
c2e4cad3acc7ebac98343078acf155f038484525fd60cc340c10109c9c504e8f
Ucenter Project version 2.0 uses an insecure crossdomain.xml set up.
4a0e61c8cb8a5797729d5f127a7d64188188e76c72cb29d715ee92bb6fbb6d9d
Chrome acronym tag denial of service exploit.
2b4afe1e8023a5f2f79d7359cdf7dbc99a736c6d256da5fe974909c893437011
TR Forum version 1.5 suffers from cross site scripting and remote SQL injection vulnerabilities.
992e92f090cb8dfd04581f8f8b7d4fe37a7b19841b0d4bf80566bfd3213efc3b
Blog Pixel Motion suffers from a backup disclosure vulnerability.
a87dde99b85e2a9bf9d351fddb0de1c276be065902db350caec8aa35caea857e
Your Article Directory suffers from a remote SQL injection vulnerability.
a38c6560a77d2e8f4d6c5e887502dc7b559e21d46f19899d02161b4a3a583088
Ubuntu Security Notice 933-1 - It was discovered that PostgreSQL did not properly sanitize its input when using substring() with a SELECT statement. A remote authenticated attacker could exploit this to cause a denial of service via application crash.
c5e6c2d965cb8d3c77f1c402acebd01a9f7dcf4e1f91bc9465d926a621ffd86c
gpEasy version 1.6.1 suffers from a cross site request forgery vulnerability.
766d28c729371a6dfb98abe22f7d1968f593690f3a3ac3efb522e4a83ff2890f
PHP Video Battle suffers from a remote SQL injection vulnerability.
feeec9a5b33ca57a1de629423517e329280d59dc4b967aa4fdcc5ed9ac671615
Modelbook suffers from a remote SQL injection vulnerability.
962fdcb917cafd16f27f55d4b260d5158b4fc7c58e1cdcda5711fd68f7eb7554
It is impossible to maintain a secure session with Twitter, for multiple reasons. Additionally, once a session has been hijacked, it is possible for the attacker to maintain control over the account (not just the session) indefinitely, unless the user changes their password. This is because the session cookie has the same lifetime as the password.
33ce90a17e72942d80262b42b39d4448a3e3b1ef746c48a5ce44c25d9b3ef5ef
Secunia Security Advisory - A vulnerability has been reported in Modelbook, which can be exploited by malicious people to conduct SQL injection attacks.
a7f8269265ea2d34636e23de0cea2f7d485b859e07cabf4c6007d80ab4ed2719
Secunia Security Advisory - A vulnerability has been reported in Video Battle Script, which can be exploited by malicious people to conduct SQL injection attacks.
315f8c36b890b40fd387e0e12118cd7cd4ced7dd790b02901ead710bea629911
Secunia Security Advisory - A security issue has been reported in the Privatemsg module for Drupal, which can be exploited by malicious users to bypass certain security restrictions.
2f12ff632adab2fbd98fa6160c6c2de6b7cc9b7fe3bd9dc8b6be18989cf767f8
Secunia Security Advisory - Red Hat has issued an update for xorg-x11-server. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
7f4ccc7bbce6eb2d7d49f00a2fd57cefdc5ac8490b045edab4dc1e7e4acc2e25
Secunia Security Advisory - A security issue has been reported in the Decisions module for Drupal, which can be exploited by malicious users to disclose potentially sensitive information.
5d49bcdd64e5fe71c0f352d333229d0a8158f4c68187541e5baa2f0ef357d6bf
Secunia Security Advisory - John Leitch has discovered a vulnerability in Tele Data Contact Management Server, which can be exploited by malicious people to conduct SQL injection attacks.
649e31d403dfc207d12dc0af240a32d1b0401110fe2db658a11f224975feba13
Secunia Security Advisory - A vulnerability has been discovered in gpEasy CMS, which can be exploited by malicious people to conduct cross-site request forgery attacks.
06468bb531dd0b141d6d24129baa2958bbc834f5b0e07dc18238ce66ce0dc752
Secunia Security Advisory - Ubuntu has issued an update for postgresql. This fixes a security issue, which can be exploited by malicious users to cause a DoS (Denial of Service).
419e20bc17306d3e04dcf60cf4a35e232c4c13835268bb17d10fc7646f1d3d7a
Secunia Security Advisory - Some vulnerabilities have been reported in iScripts SocialWare, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks.
f6010d2c078319f5f855e489fe5a55fb22870caedcc63844d20c11709c6b1001