Sourcebans versions 1.4.2 and below suffers from an arbitrary change administrator e-mail vulnerability.
d761099e9f6ed944cc623a3fee4d97a5d51353df37ba6cd5f231f8a1445fcf4dKasseler CMS suffers from file disclosure and cross site scripting vulnerabilities.
fd60166553d369546db9ec24f0d8ad882e8d459d10c5487f4027a8159328b2adNetragard, L.L.C Advisory - The libxml library is prone to a heap-based buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary within the context of an application using the affected library. Failed exploit attempts will result in a denial-of-service vulnerability. Safari uses the vulnerable libxml library and can be attacked via the feed:// input vector. Versions below 3.2.3 are affected.
9012ec278979cbf1e8f349fe20406fb03ef5ed6f98fa19b6fa6209f214f162f3Ubuntu Security Notice USN-789-1 - Tielei Wang discovered that GStreamer Good Plugins did not correctly handle malformed PNG image files. If a user were tricked into opening a crafted PNG image file with a GStreamer application, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program.
b410c406ea6366a46dad25c5f9c1913bbc6c19f5212e0d4b641e81765df0f648Campsite version 3.3.0 RC1 suffers from multiple remote file inclusion vulnerabilities.
950cf53f0bbf4e1e24f2c05e6fc413768fd482bd0131059d4cc642c2dae762abMyBB versions 1.4.6 and below remote code execution exploit.
2bb96a8c46fd43511d08890422cdbad48a11d910e717f51fae959f29a36c4865strongSwan is a complete IPsec and IKEv1 implementation for Linux 2.4 and 2.6 kernels. It interoperates with most other IPsec-based VPN products. It is a descendant of the discontinued FreeS/WAN project. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A unique feature is the use of X.509 attribute certificates to implement advanced access control schemes based on group memberships.
a88556a37d0efdbf93354ff4c2e984011024bfda36635a02310886ed95370101Bopup Communications Server remote SYSTEM exploit.
4ab4ba4fe29fb0b4379325376bff1051b56fb57072a41a5dfe853dbf038b8e17Gravy Media Photo Host version 1.0.8 suffers from a local file inclusion vulnerability.
d704249c66d9853e55489682bf6df8d815f1d0643f04ed5e343b1d7a0a8c1260AWScripts Gallery Search Engine version 1.5 suffers from an insecure cookie vulnerability.
f867c42880384ff94e179d402b9d452febf2b5ed57bf891deff2a583b514758cThe Elgg CMS versions below 1.00 suffer from cross site scripting, cross site request forgery, and change password vulnerabilities.
40e064c1b6975c83f7c1b05460f3f848a91ed63188b5e7554523635940bf14d6pmaPWN phpMyAdmin code injection remote command execution scanner and exploit.
70fa9c39342e8666bbfde9f29319905729cea47df83d706b329330eddf5351dephpDatingClub version 3.7 suffers from remote SQL injection and cross site scripting vulnerabilities.
c5d625619a822ab0e5e9df255f176acc309e48d42ab73940587240ed765429b9DedeCMS version 5.3 suffers from an arbitrary file upload vulnerability.
8b19970dd9e7ec1eb63a9a5cf0c733305cd675fc8372b59407ec1e025f1a4f0eInternet Explorer versions 7 and 8 suffer from some cross site scripting vulnerabilities.
01ff72adae6badc1a3d1922ad2173c94909448ac7e44cd9cf0c60e99b5710c16pc4 Uploader versions 10.0 and below suffer from a remote file disclosure vulnerability.
5260ccaf7dd2e3f862645f99db9b3036f10a53af766ee93dd89eb70c5a185cecMIDAS version 1.43 suffers from an insecure cookie handling vulnerability that allows for authentication bypass.
4af5c1d7bc1b60a42ec6dc08618f50ab63e9f6c39a97e26b5eaf4349c4c1ef88
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed