TutorialCMS versions 1.02 and below suffer from a remote SQL injection vulnerability.
bdc50169ecc421988f07e0e9ecc79fc06800f972f06ea08bad549b53d445b6dbASP Photo Gallery version 1.0 suffers from multiple SQL injection vulnerabilities.
99cafcd4834afae759e8fb46094ee5b4c62d41bdaf1da29044a4e8c0e6deb99cAgares PhpAutoVideo version 2.21 suffers from a remote SQL injection vulnerability.
bed5dee6bfa92ef153735ba3033e81525abb7e115382f90eb6564dab099b1bbfMandriva Linux Security Advisory - rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy. Unspecified vulnerability in rsync before 3.0.0pre6, when running a writable rsync daemon, allows remote attackers to bypass exclude, exclude_from, and filter and read or write hidden files via (1) symlink, (2) partial-dir, (3) backup-dir, and unspecified (4) dest options.
607f0580fdeb64cd7292d45f76207bc72df6592eb01c1339686bc405ec7300f1Mandriva Linux Security Advisory - A denial of service flaw was discovered by the Google Security Team in the way libxml2 processes malformed XML content. This flaw could cause the application to stop responding.
6cdd88c8f7950f9c5bf57f41333ce3e314f229cf75e3b5c900e6dbd6f212d550Mandriva Linux Security Advisory - The default behaviour of autofs 5 for the hosts map did not specify the nosuid and nodev mount options. This could allow a local user with control of a remote NFS server to create a setuid root executable on the exported filesystem of the remote NFS server. If this filesystem was mounted with the default hosts map, it would allow the user to obtain root privileges. Likewise, the same scenario would be available for local users able to create device files on the exported filesystem which could allow the user to gain access to important system devices. Because the default behaviour of autofs was to mount -hosts map entries with the dev and suid options enabled by default, autofs has been altered to always use nodev and nosuid by default. In order to have the old behaviour, the configuration must now explicitly set the dev and/or suid options.
6c43fb42ec354057d979487502778cd57515d81148a18b6002b61ebc91bc2e35Mandriva Linux Security Advisory - A ridiculous amount of vulnerabilities have been addressed in the Linux 2.6 kernel for Mandriva.
273dd41aecd87f51b63ff47cc5aa3196118b5111297e3b63b32036740b57e3ceMoodle versions below 1.8.4 suffer from a cross site scripting vulnerability in the installer code.
22b5d751e513045185f5825a9ebcf9539597b2972bdcf26c37f38e5dcbf5eeabPhotoKron versions 1.7 and below remote database disclosure exploit.
dc7244d244ac85289a8de2112071008c5e8c029a9d60e9950a7ee877cc0895d70DayDB version 2.3 remote admin bypass exploit.
d9267bfc6aa832ddf86236b63ba87f628b995a4851cdc3f4c2562ef124b2eba9Secunia Security Advisory - Ricky Zhou has reported a vulnerability in WebEvent, which can be exploited by malicious people to conduct cross-site scripting attacks.
6bbffd2fed945371344d0b1c3fe6866c4a1fbe2ab24663657a9ebed1fce0548aSecunia Security Advisory - A vulnerability has been reported in Mambo, which can be exploited by malicious people to cause a DoS (Denial of Service).
3b787013b170e427f73afe64e484d1dc27175e6a965e023078ed2d1ae95c79d8Secunia Security Advisory - A vulnerability has been discovered in Oracle Siebel SimBuilder, which can be exploited by malicious people to compromise a user's system.
1f4d9c2e6e5829675205236bb0d26ce911575cdc79c4eeb9c40bf19256493310Secunia Security Advisory - A vulnerability has been reported in the BUEditor module for Drupal, which can be exploited by malicious people to conduct cross-site request forgery attacks.
689a068777752e75652c96dd445d98ed622a8879d4b721c6fb2cad653d3534c9Secunia Security Advisory - A vulnerability has been reported in vBGallery, which can be exploited by malicious people to compromise a vulnerable system.
06b3748a0b3ba4b6e77c5568e510ec35d99e87db95233b760edd8256075d357cSecunia Security Advisory - Sun has acknowledged some vulnerabilities in Solaris, which can be exploited by malicious users to gain escalated privileges or to cause a DoS (Denial of Service).
7a8ede59242a88bdf9d1815c292c0ec3f82377729ea5e6d34e2a828e2d19dfc1Secunia Security Advisory - A vulnerability has been reported in Tivoli Storage Manager Express, which can be exploited by malicious people to compromise a vulnerable system.
762050e196e36fcb1684c5f4ae88e369068fb517417cb958b91286ec26029e9fSecunia Security Advisory - SUSE has issued an update for cups. This fixes some vulnerabilities, which can be exploited by malicious users or malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
3552f99f749e409b6589c658c98bd9e4ae360d6a6ca5d40d5061be2a415256ffSecunia Security Advisory - Red Hat has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges.
157d519e075b5a666c62b28f61da44ca14888f883cecaf6d378488fde804e0f3
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed