Whitepaper called Exploring and Patching Remote File Disclosure Vulnerabilities. Written in Arabic.
b3464630fe63b4411821de351e79f101e7ed02d8035f0a8b51796e260fc6fb70
Secunia Security Advisory - IBM has acknowledged multiple vulnerabilities in OpenSSL included in AIX, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), and potentially compromise an application using the library.
2ada9f23aab55792399ad6404009c7bf2cae3ed3ce75c58782c0b18164f7e942
Secunia Security Advisory - Multiple vulnerabilities have been reported in Public Knowledge Project Open Journal Systems, which can be exploited by malicious users to conduct script insertion attacks and compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks and manipulate certain data.
e1aa5179346aa967ab49c6f175bc48411b17fab65a4b82efd49a6cf3ac219c2b
Secunia Security Advisory - Multiple vulnerabilities have been reported in Google Chrome, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
e49346746af3a01b4b87a5b3fc9c7c5bc6f892b3a70b03cde7c47e7ee0aa4a3d
Secunia Security Advisory - Blue Coat has acknowledged a vulnerability in Blue Coat PacketShaper and PolicyCenter, which can be exploited by malicious people to bypass certain security restrictions.
cd9116c0ebfbd4f5e73b24ed0749d07eefa42f0d23c8d5a9751755cc03133780
Secunia Security Advisory - High-Tech Bridge SA has discovered a vulnerability in Public Knowledge Project Open Journal Systems, which can be exploited by malicious users to conduct script insertion attacks.
9a2adce579c6963fe1a11c08229bead7347cb0a8d303bbc31f6eda813123e1f4
Secunia Security Advisory - Some vulnerabilities have been discovered in Public Knowledge Project Open Conference Systems, which can be exploited by by malicious people to conduct cross-site scripting attacks and manipulate certain data.
0259134c173ffd693e56930cf7f0e1da09f21a8063f02c75a4b23d4feb6a76f0
Secunia Security Advisory - Some vulnerabilities with an unknown impact have been reported in the Blaze Slideshow plugin for WordPress.
94b66dd6fa5ddddd1775f919ff792a1a21622853712844859035a1b4dc475432
Secunia Security Advisory - A vulnerability has been reported in Atheme, which can be exploited by malicious users to bypass certain security restrictions or cause a DoS (Denial of Service).
4cd5c6c72ea46c48501f0038cb02e857c3c2e517073c74bbb0186326a86bfc89
Secunia Security Advisory - Gjoko Krstic has discovered a vulnerability in phplist, which can be exploited by malicious people to conduct cross-site scripting attacks.
e55808ad90470fa457803a3b56eeafc8688ad457b899a76e15fb486fc2fb0368
Secunia Security Advisory - Some vulnerabilities with an unknown impact have been reported in the Carousel Slideshow plugin for WordPress.
7f2e450ac805c692b4146b1f3b507802cea78efd4f4a03252d782025272a8b2e
Secunia Security Advisory - A vulnerability has been reported in the Wishlist module for Drupal, which can be exploited by malicious people to conduct cross-site scripting attacks.
dd736fb8dcc5519a3a4dea6beb868b0aa7f65a3c870c1c2b9804cdc7404032c6
Secunia Security Advisory - Ubuntu has issued an update for thunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, disclose certain sensitive information, and compromise a user's system.
a880422953a0ccea4ca8f3023915cbe47a96d88d5d83b9246dacd41b5a4c91d7
Secunia Security Advisory - Debian has issued an update for icedove. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose certain sensitive information, and compromise a user's system.
1d35b842e9dddb2ccae894a4179063bcbf00a3d03123ceb23fceb0119630f464
Secunia Security Advisory - A vulnerability has been reported in OpenOffice.org, which can be exploited by malicious people to disclose potentially sensitive information.
6fa7316b366034e2952111b2d15726b12c176c6ac6e434936d69683d5c3030b2
Secunia Security Advisory - SUSE has issued an update for osc. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
33cff674b9ee6cec86795b14835a90f078965b4bf8dc767d5ad662683af5bb3a
Secunia Security Advisory - Mutliple vulnerabilities have been reported in the ALO EasyMail Newsletter plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
ff0e9260ab28e477c71acafc87b2fb60e11cc552a1a89d503e36d7801b01fab2
Secunia Security Advisory - AppSec has reported a security issue in AnGuanJia for Android, which can be exploited by malicious people to bypass certain security restrictions.
affb8b03cf87415d2f7a2ffca887cbbde075dc9a0da7c05654cb2b20a3f9584a
Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera PlayerPT active-x control (PlayerPT.ocx) suffers from a sprintf buffer overflow vulnerability. Version 1.0.0.15 is affected.
3933dd1431da4c063e62908b6d60cf61accefadfda1561e952bfa4c9d5163a86
Ricoh DC Software DL-10 FTP server (SR10.exe) versions 1.1.0.6 and below remote buffer overflow proof of concept exploit that sends a malformed request.
e13e1ecd389948511c8683234485d24ca0d9825e618486eaf3a184e64db4cf90
The Drupal Wishlist module versions 6.x and 7.x suffer from cross site request forgery and cross site scripting vulnerabilities.
5e55d2cdca26c33d5bf366c7dedf2d20279db2966b24d218bdf2eb529f0dc53e
phpList version 2.10.17 suffers from cross site scripting and remote SQL injection vulnerabilities.
61b0c2f826c3618ea4efd079d71e7ade4d6d1a0afc0cda20180272f8dc414ead
Mandriva Linux Security Advisory 2012-033 - A heap-based buffer overflow flaw was found in the way libpng processed compressed chunks in PNG image files. An attacker could create a specially-crafted PNG image file that, when opened, could cause an application using libpng to crash or, possibly, execute arbitrary code with the privileges of the user running the application. The updated packages have been patched to correct this issue.
e01682b23f6754dc207bd66c7d6363efb71ddb6802ef423068599e02a0c2dd6f
CMSimple_XH version 1.5.2 suffers from a cross site scripting vulnerability.
3baabd8c7d302fd46aa95ed98487b55cd2b7d11dab5ae33b933e1dd84125a337
This Metasploit module exploits a vulnerability in Dell Webcam's CrazyTalk component. Specifically, when supplying a long string for a file path to the BackImage property, an overflow may occur after checking certain file extension names, resulting in remote code execution under the context of the user.
c9f9dfe042de7f5d659677f6a10aa38d77f8bd3e8e047325d2dceb11e6f8874c