ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote SQL injection vulnerability.
c5fe07e7b05786d6f07d6f09a432fc4fea83c7125de5549570e1eaafcc13b2a5
ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote user enumeration vulnerability.
b0b6bf9a9dab1ec3d533b6e5cd4cc1c40202b20474bcd7c7949b11077ff22ef3
ManageEngine ServiceDesk Plus version 9.0 prior to build 9031 suffers from a remote privilege escalation vulnerability due to improper access controls.
1c879d55c033a0142d5afd25967e70e6b4b9946140355cc35138584d329406e7
The Hack In The Box 2015 AMS Call For Papers closes at the end of January. It will be held May 26th through the 29th, 2015 at De Beurs van Berlage, Amsterdam.
ca24531f98a84457fd6625bab0661ea0ff3c4709f92e9fe52660ec5afbb4d564
ferretCMS version 1.0.4-alpha suffers from cross site scripting and remote SQL injection vulnerabilities.
e833ccba84d5f20433f71ab680b92585696d02bcf2c559cbe91d1e54827ceb49
SmartCMS version 2 suffers from multiple cross site scripting vulnerabilities.
d555b444dbeca536ed18b052a1222905eb7bad519789a5478cf859d96838bbc8
SmartCMS version 2 suffers from multiple remote SQL injection vulnerabilities.
e1e15790d42f90cde2cfadfe486a281cb2d46f6ec3aa8cb911ff47fef02976c6
Red Hat Security Advisory 2015-0079-01 - Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
1e4eb67838f3d02b116ae14de77f7b06c75e052a30e2411763c237dc29b21ad6
Red Hat Security Advisory 2015-0074-01 - JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. An unrestricted stack memory use flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.
767c871e838506d9d4f9cdf7a1f3235d99f9a9298412bdbae9ccced050a4fc3b
Red Hat Security Advisory 2015-0080-01 - Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
15087d6179c42125f49eacdd2d3db0d4acdfa841b070da99a6f33bd8dbd2c82f
Ubuntu Security Notice 2482-1 - Alexander Cherepanov discovered that libelf1 incorrectly handled certain filesystem paths while extracting ar archives. An attacker could use this flaw to perform a directory traversal attack on the root directory if the process extracting the ar archive has write access to the root directory.
0501eb5ac15bf63c79698d578fb24ba1292e1cb67bffeeaf249be1b94aca86dd
Program-O version 2.4.6 suffers from http response splitting, cross site scripting, and local file inclusion vulnerabilities.
76658244af3e987274e86b16084fa6ffaf0d26aebcfead558ea9f4ca01983a80
The USAA Mobile app for Android versions prior to 7.10.1 suffer from an information disclosure vulnerability.
5885b9f88356cacbdd18637c155b3a61531b959d43dbc55fb93a82fdcff79bdf
articleFR CMS version 3.0.5 suffers from a cross site scripting vulnerability.
a7eec6dd3bb01b1d47f2da23b35af63ca219b46a7c1690081c0abac2fbb389cb
Various Alibaba sites suffer from cross site scripting and open redirect vulnerabilities.
4122adb3397a297f4e601144cc131e86b766b44301d48f154f47babf55aaeed6
ecommerceMajor suffers from remote SQL injection vulnerabilities.
130972cbcc57088872f5ad921761903a21a4ffdef387d6ce66b050a87a8f21e4