sec-wall is a high-performance security proxy that supports SSL/TLS, WS-Security, HTTP Auth Basic/Digest, extensible authentication schemes based on custom HTTP headers and XPath expressions, powerful URL matching/rewriting, and an optional header enrichment. It's a security wall with which you can conveniently fence otherwise defenseless backend servers.
0297ae5a5ab72b01968fb6f36953dc782b1dc5fc91df7729923b47036aaad7daSecurity Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated twice a month to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins, open shares, and much more.
4f6734be7ebcb6915b3be8941eceac5de5f8d76c53fb96a2efab212596f57290creepy is an application that allows you to gather geolocation related information about users from social networking platforms and image hosting services. The information is presented in a map inside the application where all the retrieved data is shown, accompanied with relevant information (i.e. what was posted from that specific location) to provide context to the presentation.
7afb4f1452cf277205994b8d4188fdd0756b4e03468aa7edd6f3035f895cd620NooMS CMS version 1.1.1 suffers from a cross site request forgery vulnerability.
482e795dcaa8cfd6fa1d0087c2460ed808a453fb1acc42c86eca0a4b3bf412d3IrfanView version 4.28 .ICO file without transparent colour denial of service exploit.
0b08bcd459993385237d031eb341a2acac82577acd468f0dcd6b9d813bb7154aIrfanView version 4.28 .ICO file with transparent colour denial of service exploit.
3a63a85f18060a1bd03245f0f21730729638010886e098858a173c8b21e84f9cagentsmith is a daemon that continuously monitors a log file for break-in attempts by remote hosts. Upon detection of a break-in attempt, it launches a user defined script or application, which can do virtually anything from sending mail messages to whatever else you might think of. The criteria for what is considered a break-in attempt can be configured by means of a regular expression.
38f56dbf017f6cb260c4abf55f422fe540e95a4058f589a88f6314183e1d8435Netragard, L.L.C Advisory - Sonexis ConferenceManager version 9.3.14.0 suffers from a remote blind SQL injection vulnerability.
1f9f92a63ad712d5bdad484011567b4dc9edf18843008ce146b3c460e4a79e40DimacCMS XS versions 1.3 and below suffer from remote SQL injection and database disclosure vulnerabilities.
3578527c3669dcf56dd7df9d8dea276e19488e02ba6044b18b4d69aa67e98291Croogo versions 1.3.3 and below suffer from a remote database configuration download vulnerability.
5b14f73ea62b7dd58d436e714b685da218f537af9750f694a870442ca571a519vBulletin plugin Point Market System version 3.1x suffers from a remote SQL injection vulnerability.
9dd6ddefa3f42971e834a1ba0b5352a7146288deb26c203dba0297a59e5ad117Pars IT suffers from a remote SQL injection vulnerability.
3b15397a27fca5d352d4b016ee2b4f6feac94fef6cdddf80daa2e122ec91d7cbPHP-Jokesite version 2.0 suffers from a remote blind SQL injection vulnerability.
e11630a6d338e07c08ae1ad4078e625d7beca31121bc6455c716096b899e27b6Drupal version 7.0 suffers from a remote command execution vulnerability.
ae379d3ee6258d3421cda34112b5c194d06dfda66bb8a74d6d48cea995174149Debian Linux Security Advisory 2215-1 - Dylan Simon discovered that gitolite, a SSH-based gatekeeper for git repositories, is prone to directory traversal attacks when restricting admin defined commands (ADC). This allows an attacker to execute arbitrary commands with privileges of the gitolite server via crafted command names.
f0580b051580bb59808c5fce70bdee19bf92436a814b5f95dd720c6165393e51PHP-Lance version 1.52 suffers from remote blind SQL injection vulnerabilities.
afb5d08ab4c51881f12f198bc41fe04671736acd7032aecc7c306d78a771afdaOpenPuff is a professional military-strength steganography tool that supports 16 algorithms, has a strong random number generator, supports many carrier formats, and more.
419c918cf20de6ab4c071934463bd1d1e5dcfcaf4182cf945b1a2619a358e5f4This windows binary is a lightweight tool for removing strings in the Windows registry.
930084f1b07b611ad257a6cfe7c757a97c1013ed722666b27d57b5aa114e5604Secunia Security Advisory - High-Tech Bridge SA has discovered some vulnerabilities in Viscacha, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
5f96d98503bf774752c2e391edb1cfea26c6aeaa2dd1bddb5c92edc0b78a8630Secunia Security Advisory - A vulnerability has been reported in HAProxy, which can be exploited by malicious people to cause a DoS (Denial of Service).
6f9b5f7fa1474e7bfb42732af09c14b81ca4a381eac27c592b3d3256918d32b0Secunia Security Advisory - SUSE has issued an update for python-feedparser. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and conduct script insertion attacks.
784e093a4dbfedcaaa38cf1ba2a46fc093fcc6e95df27f64bb55f1e6ba141736UCLA University suffers from a remote SQL injection vulnerability.
85b9e991ed7fd5c93502b171685de1493b1290b3d2a88583118a0028ee9fa76d
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed