Mandriva Linux Security Advisory 2012-016 - A File Inclusion vulnerability was discovered and corrected in GLPI. This advisory provides the latest version of GLPI that is not vulnerable to this issue.
472e73b16fd6ee0050d72856f96d1475f3599833e914ef1810a140d86ca674bcOnxShop CMS version 1.5.0 suffers from multiple cross site scripting vulnerabilities.
e8a201d0d5b0323baf61099f5afd6ad6fc229256f0f037c31caf05de12515339This is an advance notification of 9 security bulletins that Microsoft is intending to release on February 14, 2012.
2864d36f24321d7fe0c59bc2c1994ddaeeddb562bca4982a58705a41aff0e6bdCubeCart versions 3.0.20 and below suffer from an open URL redirection vulnerability.
8fb0b91c0d8185446874dfadb33789cc6680b80322c161e21ff4e36a31252ee1The D-Link DAP 1150 suffers from cross site request forgery, cross site scripting and denial of service vulnerabilities.
84d992689d283edc1df7b827c78c8b56fe44c863680d45edf495fbff087bbea0Zen-Cart version 1.3.9h suffers from a cross site request forgery vulnerability.
ef286cbf4e4b4530afcb9dd37b44ca77c53e9e70a3ed3ba5031156b4e02ae852The Astaro Security Gateway suffers from a whitelist bypass vulnerability due to a poorly formed regex.
95ea96f06b3c0334ad43503c83b9525b824e814fb14b0812c2e99395926a0759Dolibarr CMS version 3.2.0 Alpha suffers from a remote SQL injection vulnerability.
34fc47c667c6f4094df8fb50bcbc95a32e02280417779b2c7d04e499361b440fDolibarr CMS version 3.2.0 Alpha suffers from multiple local file inclusion vulnerabilities.
bbb174eab63b07e87d7e046ec962fecd0864e7437b1c7890ce5e9c099dfaab6aPfile version 1.02 suffers from cross site scripting and remote SQL injection vulnerabilities.
5d886584cbf2c8533cd7efae044b8130d3b097ea7474ffaed7f309bc7ac69ec1Nova CMS suffers from multiple remote file inclusion vulnerabilities.
9ae18fcb0e487affa891a9dbe09003a50ade0d58d4de98b74f8be7279c6b81e4This is a patch for OpenSSH version 5.9p1 that adds a magic root password backdoor, logs usernames and passwords and keeps connections from being logged in wtmp, utmp, etc.
294b74ffd207124239b3013f71cccdcb5dc76d5678ea55de7a9c059b9d674d5fKloxo LxCenter Server CP version 6.1.10 suffers from multiple cross site scripting vulnerabilities.
a33d451cb7193212b19f52ef71ea0a69584fc6f9bc06e942ff9162339e22559cSTHS v2 Web Portal version 2.2 suffers from a remote SQL injection vulnerability.
df2aef2b8ed5719432fab9d65d36c1e6976ddeece6ee659a2784031108fcd5bdMachForm version 2.4 suffers from multiple remote file inclusion vulnerabilities.
bce7bab595ecbfc5ef5e856586e31f7e51fce32963657f2bf22dc3989c98047bBASE version 1.4.5 suffers from multiple remote file inclusion vulnerabilities and a shell creation vulnerability.
6a79ee2e653de8efb45a8234d719c59e30b017ce3998869ca0fbc8cd937dbac3Gocart version 1.0.2 suffers from multiple remote file inclusion vulnerabilities.
879419ea1fef01142ef557c0d764cd162b626d5b5bf725e84037bc2f043fe390The Indianapolis Superbowl 2012 website suffered from multiple remote SQL injection vulnerabilities.
eddaa373cb5b70d21e51fdcc4d1018f7f0492e9bf1242456fe667349d571be59GLPI versions 0.80.61 and below suffer from local file inclusion and remote file inclusion vulnerabilities.
0f618b4a22f1c38efc5bf06ca069a4fa57200e710e5d7a97fd5eca84a84d382fBeWelcome suffers from a cross site scripting vulnerability.
e28e795aeb5bb10a80008d1ad616c5121a9c76aa0e2bba823e211fc4160151ccDotDotPwn is a very flexible intelligent fuzzer to discover directory traversal vulnerabilities in software such as Web/FTP/TFTP servers, Web platforms such as CMSs, ERPs,Blogs, etc. Also, it has a protocol-independent module to send the desired payload to the host and port specified. On the other hand, it also could be used in a scripting way using the STDOUT module.
7c954b9db834e02e36acbc4ebda32cfec3049f30d94668702004db28f42c7afe
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed