AuraCMS versions 2.2.2 and below arbitrary edit/add/delete exploit that makes use of pages_data.php.
810ddbcac4efa2468c1abbc04747966ed7eb5ebb3dab2539cc484f0dc6d73d17The Joomla Content component version 1.0.0 suffers from a SQL injection vulnerability.
4c245b8b4348250fd34d4eeca9766df1e1380becf0341a6b897312cba69f056fBoonex Dolphin version 6.1.2 suffers from multiple remote file inclusion vulnerabilities.
86585626e7313d6dfa7daae0520c37061d0670253eeb814bb725c711349a7f56Mole Group Last Minute script versions 4.0 and below suffer from a remote SQL injection vulnerability.
7dc7b49b154334719a0cd12151033f1f74f11ded1c23ea50f8a02f256ae6bdbaMole Group Real Estate script versions 1.1 and below suffer from a remote SQL injection vulnerability.
29345b7220f43129c5d54f91d533e3245a28f5f3cd97b0697b785dacb05344adMole Group Hotel Script version 1.0 suffers from a remote SQL injection vulnerability.
e5473dd8097934fa41a6f008ddf3c39f3bb146ef4043c95ba33d842d1ec015e5SmartPPC Pay Per Click script blind SQL injection exploit.
afc7642cbcf24c35c7cce9e71ae36002021ee874a3cd5f1a0cd7fdfc0463e7b5Secunia Security Advisory - t0pP8uZz has reported a vulnerability in Real Estate Script, which can be exploited by malicious people to conduct SQL injection attacks.
84c7d7955c0de8c2e24dc0f1de8e150a4fec0af073f08c6b97c43db1950e2a4fSecunia Security Advisory - t0pP8uZz has reported a vulnerability in Hotel Script, which can be exploited by malicious people to conduct SQL injection attacks.
925b96046313b8b19f0f675de6ef8a69366d1b0082496b4dfdaea4e9e3face92Secunia Security Advisory - A vulnerability has been reported in Dokeos, which can be exploited by malicious people to disclose sensitive information.
bb805b8eab128b015650849e0ab8516e148ae78c5d65f4a5083e10790f437550Secunia Security Advisory - RoMaNcYxHaCkEr has reported some vulnerabilities in SafeHTML, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
bcbd9dcf7745097556c28decd7b19094d24d073ee3d9435d2b5b8b80fbd30ba1Secunia Security Advisory - A vulnerability has been reported in Adobe RoboHelp Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
8c27a2a5ac4d5df6210a023e0d14f089742944d65bc8d9c341e7929d05607a10Secunia Security Advisory - Gentoo has issued an update for poppler. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library.
b05dfc1bb5d411b631163d0ecbe189e6e5399ed90dadf8e5d670d0c09fabb9d2Secunia Security Advisory - t0pP8uZz has reported a vulnerability in Lastminute Script, which can be exploited by malicious people to conduct SQL injection attacks.
3f5417485fb8ce8df575be5eac6de5729359bff88a9c5a1e4313b5523fc99897Gentoo Linux Security Advisory GLSA 200807-04 - Felipe Andres Manzano reported a memory management issue in the Page class constructor/destructor. Versions less than 0.6.3-r1 are affected.
6e0c208b00eff0d9200e67ccf52aa52107b3fb1343e0d2f129c46f14c69434d3vBulletin versions 3.7.2 and below and 3.6.10 PL2 and below suffer from a persistent cross site scripting flaw in the administrator logs.
dcf3b06058a4887db12408d0b65f3d4274237007b9766fbdc07ef5b5175818d3Cisco Security Advisory - Multiple Cisco products are vulnerable to DNS cache poisoning attacks due to their use of insufficiently randomized DNS transaction IDs and UDP source ports in the DNS queries that they produce, which may allow an attacker to more easily forge DNS answers that can poison DNS caches. To exploit this vulnerability an attacker must be able to cause a vulnerable DNS server to perform recursive DNS queries. Therefore, DNS servers that are only authoritative, or servers where recursion is not allowed, are not affected.
d32b92336515b60db970d02f3270a9e590a9813744b8cb3ca422ce491572306eDebian Security Advisory 1605-1 - Dan Kaminsky discovered that properties inherent to the DNS protocol lead to practical DNS spoofing and cache poisoning attacks. Among other things, successful attacks can lead to misdirected web traffic and email rerouting.
b49b4b3b10bf9bfd81a28b077203799c4fd9a65574326c592026a7c73e521a24Debian Security Advisory 1604-1 - Dan Kaminsky discovered that properties inherent to the DNS protocol lead to practical DNS cache poisoning attacks. Among other things, successful attacks can lead to misdirected web traffic and email rerouting.
9ec0fe1a3f5a419aee3fa7db13c0e17d09afe13c03d12a088bf2c4712e2cc496Debian Security Advisory 1603-1 - Dan Kaminsky discovered that properties inherent to the DNS protocol lead to practical DNS cache poisoning attacks. Among other things, successful attacks can lead to misdirected web traffic and email rerouting.
517c0eb1bc68d3a985f38e65523e92591f38a39a7339319f64de7ba31c1c0995BoonEx Ray version 3.5 suffers from a remote file inclusion vulnerability.
34267c39945080c8bc1207262aad01fa855fb5a7d9201cf8d7303ae99eb52fafBrewBlogger version 2.1.0.1 arbitrary add administrator exploit.
3f42f31d9d1f7f8efccf8637cfd28c09325eb945be7f03fab869ef9c7623816dHP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). The vulnerability could be exploited remotely to gain unauthorized access to data.
07e60c42958eca7d811bd5620b47b79a43bd47fc2230bb01af1a9f5612103fccHP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). The vulnerability could be exploited remotely to execute arbitrary code or to create a Denial of Service (DoS).
b9ed1ea2abd1d3438e6d8d55722a94ee205af45425db36d9bf4827d27cc56b43Two vulnerabilities exist in the update function for Panda Security ActiveScan version 2.0. Remote buffer overflow exploit included.
fc8c8168cc278ad654aef72bed59d187fe305f76fbd2789031b91d1ca2a0d26a
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed