Month of PHP Bugs - PHP versions 4.4.6 and below and versions 5.2.1 and below array_user_key_compare() ZVAL dtor local exploit.
7951ffcb0d45030446a844d98707fec746f3d86a0f267daa38deeb816d14b6c3Month of PHP Bugs - PHP versions 5.2.1 and below session_regenerate_id() double free exploit.
fc557aadfbec5b0451270b714f5328ff862f73abe0aec6178a0cd749635df5a6Month of PHP Bugs - PHP version 5.2.0 and 5.2.1 rejected session ID double free exploit.
63677ca8ee5a23a258092873b9ca58ce40aaf13e64de9b74d8aa13e5eb4c7cf6Month of PHP Bugs - PHP version 5.2.0 ext/filter space trimming buffer underflow exploit for Mac OSX.
2021590ddfd8b9a92e44b435ed7b810d0ddd652bf3d5d9ddb9e2c67b57e44995Month of PHP Bugs - PHP versions 5.2.0 and below ext/filter FDF post filter bypass exploit.
2f4ac341948a2d6e42c0596dd2f9dcde20aab419cda5462546a951c2de441966Month of PHP Bugs - PHP 5.2.0 / PHP with PECL ZIP versions 1.8.3 and below zip:// URL wrapper buffer overflow exploit.
9ab5f10c9a1c3b4db58904a3dd9e3c4edcb9934eec090d4da92ea41c9a5831cbMonth of PHP Bugs - PHP versions 5.2.1 and below substr_compare() information leak exploit.
13745c954f00bdb48fb1188def122aa897683e1d76714bd699ea886c5890b4e8NetVios Portal suffers from a remote SQL injection vulnerability in page.asp.
a5548c79556aef60c3b5a324104b1fb1fc196d041fee78142f8018a9e52e534bphpBB Minerva Mod versions 2.0.21 and below suffer from a SQL injection vulnerability.
5a8e3b8630181a6ae857d50b7f522437f344ff1395c2a291514f066e5bcd3252PHP-Nuke Module splattforum version 4.0 RC1 local file inclusion exploit.
e1b2f9a3df41f2dc8ecf2bd4f579cf4d551dd185857310373b700b9dc391e84aMetaForum versions 0.513_beta and below remote file upload exploit.
37d3cb5144bb58c1a899e17619c20bd4944a257b1af50941ea8d173382944a4fScriptMagix Lyrics versions 2.0 and below index.php SQL injection exploit.
3b659304cb068d0b27f3a9127d2153498f97d4f98855fb6c2aa72d605bdcb1e3Katalog Plyt Audio versions 1.0 and below remote SQL injection exploit.
ffd2c013a7dd3ed84e2d84685dff237de4dd82bde832cc699965b0fcb55e706bInternet Explorer 7.0 is vulnerable to cross-site scripting in one of its local resources. In combination with a design flaw in this specific local resource it is possible for an attacker to easily conduct phishing attacks against IE7 users.
b2b26c80e92ddc7107b42af7cd66181fbbf55544a6b52617ee681dde95781999WSN Guest version 1.2.1 Comments.PHP SQL injection exploit.
30c43a23b32a4382a4f997fb9623d8d4f48a03e13f0061263142ee03733bb253iDefense Security Advisory 03.14.07 - Remote exploitation of a divide by zero error in Trend Micro AntiVirus may allow attackers to cause a denial of service. The vulnerability exists in the kernel driver, VsapiNT.sys. This driver is responsible for scanning various file formats for malicious content. The code that parses UPX files takes an integer value from an attacker supplied file and uses it as a divisor. This results in a divide by zero error in kernel mode. This causes a kernel fault resulting in a blue screen of death (BSOD). iDefense has confirmed the existence of this vulnerability in Trend Micro AntiVirus version 14.10.1041, engine version 8.320.1003. Previous versions may also be affected.
e71e229da9c2d9659bd65c2398587b06e024b67717615b38e8e15a4c3c405bc7Python version 2.5 (Modules/zlib) minigzip suffers from a local buffer overflow vulnerability.
b62dbc673cfedfa9fab36789398d6e364615e34b436dfe6a268135ce36fc208fSEC Consult Security Advisory 20070314-0 - If the Apache HTTP Server and Tomcat are configured to interoperate with the common proxy modules (mod_proxy, mod_rewrite, mod_jk), an attacker might be able to break out of the intended destination path up to the webroot in Tomcat.
ae0accd7dd41279f8531f981d7995776526f842a5d6e404b34ae2a7019a86a97Tenshi is a log monitoring program, designed to watch a log file for lines matching user defined regular expression and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients. Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports.
7c47d86205354a3ef578815482374f7bab3450b2bea08621dcbde639bfda768dGentoo Linux Security Advisory GLSA 200703-12 - Frank Benkstein discovered a possible NULL pointer dereference in apps/silcd/command.c if a new channel is created without specifying a valid hmac or cipher algorithm name. Versions less than 1.0.2-r1 are affected.
4a930d9bb639ddf1913f5162ada3ed189a110cd8a744da858d55a99a513b79c2PHProjekt version 5.2.0 suffers from a privilege escalation vulnerability.
d0eb6dcd238466f8bf02343caec6f02edb744728d2bc4c2e508a7480db337ddcPHProjekt version 5.2.0 suffers from a cross site request forgery vulnerability.
cf169ff516ecb37f27edb69c002fd063faf696d3add01baf063759d1e46d5b37PHProjekt version 5.2.0 suffers from cross site scripting and filter evasion vulnerabilities.
2aa0a61eb00ffdfcd305ae3b72f1e7744df2d56d283d55a0fa6bb630096ffbd8PHProjekt version 5.2.0 suffers from a SQL injection vulnerability.
a09402b443c16796539cd108dd61aedcdcd438ccc160783d39617bb171dd08f5The RIS web application used to browse Austrian laws is susceptible to cross site scripting attacks.
e56763b9c203ee649468a448d77a205237b07aba23504e7466e39f66cf1cbeb0
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed