Runcms version 1.x is susceptible to cross site scripting attacks in bigshow.php.
2dd1b86163b9bbba8736ffba9719fff071509e5ac0aa7760a2fbc2801b604b12Invision Power Board v2.1.5 suffers from SQL injection.
49ab1f56d1bf8c7118b2a21c7a36a280551c816be939058e1042cfb1adcaaab6vbzoom v1.11 is vulnerable to SQL injection and XSS.
57256753d4c283d77078566a6995f41252311246b1678ffebb987072fd749b2dHLBR is an IPS (Intrusion Prevention System) that works directly at the layer 2 of the OSI model staying invisible from layer 3.
5417c91d612c82711522f2ce5a5d50bb6a5cbc4a8e26fa7c93527d70c9872cebNmap Parser is a Perl module that simplifies the process of developing scripts and collecting information from the XML nmap scan data, which can be obtained by using nmap's -oX switch or from the file handle of a pipe to an nmap process. It uses the XML twig library for parsing, and supports filters.
5979fa59078376ce752e9bd46fdc2b34b9a18199780412f5a3f257c82a31a759IP-Array is a Linux iptables Firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, Traffic Shaping (creation of custom HTB and SFQ qdiscs, Classes, and Filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP.
2b5becff85c48a49e1a07f7aed151da43ff44327385296be6dfb545fbae71aadaircrack-ng is a set of tools for auditing wireless networks. It's an enhanced/reborn version of aircrack. It consists of airodump (an 802.11 packet capture program), aireplay (an 802.11 packet injection program), aircrack (static WEP and WPA-PSK cracking), airdecap (decrypts WEP/WPA capture files), and some tools to handle capture files (merge, convert, etc.).
07a38b32af942cf0f79be4779eb64427a00187868b603305c36a40a15f98ff47MacGyver - a program to generate a random valid mac address. Written in c++.
854ad3dd246e900aef43252647a2e46a90d132878af96a79ce95e6759b11672fThere is a vulnerability in the Internet Explorer java applet handling engine. It occurs while running the Sun Microsystems Java VM and is caused by improper HTML 'INPUT' control focus handling.
7fc80c9a3057321503601fb3558a3314e44fb3cb052789ba63e99397266d1dddUbuntu Security Notice USN-260-1 - Chris Moore discovered a buffer overflow in a particular class of lexicographical scanners generated by flex. This could be exploited to execute arbitrary code by processing specially crafted user-defined input to an application that uses a flex scanner for parsing.
d8c13fff328dbcb67a0de57506be5ee9f618095f20f4f00bd8d52f8aa3c8ba93Debian Security Advisory DSA 986-1 - Evgeny Legerov discovered several out-of-bounds memory accesses in the DER decoding component component of the Tiny ASN.1 Library, which is also present and used in GnuTLS, the GNU implementation for Transport Layer Security (TLS) 1.0 and Secure Sockets Layer (SSL) 3.0 protocols and which allows attackers to crash the DER decoder and possibly execute arbitrary code.
b7b9770c4919be34a27afdc1cf6ca3378770e8830b20ff089edfd111ca3ec237Debian Security Advisory DSA 987-1 - Jim Meyering discovered several buffer overflows in GNU tar, which may lead to the execution of arbitrary code through specially crafted tar archives.
0853e9688ed991bc06ac72fdba71791a4444ed3938df39a6057524842aa2500eGame-Panel versions 2.6.1 and below suffer from a cross site scripting flaw.
7be2cbd6a123c6bdaac72620d9b60783bce6740ecb5047c40d578716792f7381Gentoo Linux Security Advisory GLSA 200603-05 - Jean-Sebastien Guay-Leroux discovered a boundary error in the fullpath() function in misc.c when processing overly long file and directory names in ZOO archives. Versions less than 2.10-r1 are affected.
6020105dcb3dc347b589689609b724c4595035a9b2a03c1e80988937fd7dff6bSimplog versions 1.0.2 and below suffer from cross site scripting and directory traversal attacks.
d31d9346d8ed8351831d3faa7cf144d9dce1479beacb790a04ad0fd4d6017f91Gentoo Linux Security Advisory GLSA 200603-04 - Steve Kemp discovered two format string errors in IMAP Proxy. Versions less than 1.2.4 are affected.
06d047194cf51621b38b4bb6b9190fdd105f7eba08bfd7d880a903cc6091b3ecWBB version 2.3.4 suffers from a typical cross site scripting flaw.
0474108a80ff3577d3b0f88f92a023586a88fb00e126e502326b033e8b1a8cdbGentoo Linux Security Advisory GLSA 200603-03 - MPlayer makes use of the FFmpeg library, which is vulnerable to a heap overflow in the avcodec_default_get_buffer() function discovered by Simon Kilvington (see GLSA 200601-06). Furthermore, AFI Security Research discovered two integer overflows in ASF file format decoding, in the new_demux_packet() function from libmpdemux/demuxer.h and the demux_asf_read_packet() function from libmpdemux/demux_asf.c. Versions less than 1.0.20060217 are affected.
b1d4fe9aa96c7675f6c34626bbf03d7d4373c9b72061e715d385164b57a41f70Gentoo Linux Security Advisory GLSA 200603-02 - CSTeX, teTex, and pTeX include XPdf code to handle PDF files. This XPdf code is vulnerable to several heap overflows (GLSA 200512-08) as well as several buffer and integer overflows discovered by Chris Evans (CESA-2005-003). Versions less than 2.0.2-r8 are affected.
ebb549da6088d46a31aac60c334ce4a544cff0647de2ed1757c407db5ccbbea0Gentoo Linux Security Advisory GLSA 200603-01 - Patrik Karlsson reported that WordPress 1.5.2 makes use of an insufficiently filtered User Agent string in SQL queries related to comments posting. This vulnerability was already fixed in the 2.0-series of WordPress. Versions less than or equal to 1.5.2 are affected.
0d0830a3320d82f93eb4e89da5977d76313228407464a4fde6e3cb7b4dd016a0TotalECommerce versions 1.0 and below suffer from SQL injection flaws.
dabc458869743449861b988a62604a28567faff3f82003a3fade5576abc40754CuteNews version 1.4.1 is susceptible to cross site scripting attacks.
31d53fdcb05a3ca200a0930c433a38e1acae92216a8e8a3e237f7c63babee278Pixel Post versions 1.4.3 and 1.5 beta1 have been found susceptible to SQL injection and cross site scripting attacks.
380878565a9c6bdabddd71ab710ce332a7eb9c1947b4866d464de3d52a1c8c38Easy Forum version 2.5 is susceptible to cross site scripting attacks.
2528a10db4d0e57daa651ace1b7150286851c7ea5c9eb12323f0f66b33533f2ePHP-Stats versions 0.1.9.1 and below suffer from remote directory traversal, SQL injection, and command execution flaws.
5e1bb3d424f9a3bfb779ba437927c5754cc6e55f28507e15a6b60e3aa1950db1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed