PaoBacheca version 2.1 suffers from multiple cross site scripting vulnerabilities.
0d4661b7ad401ebfc727d18676967eb13fe1de749f18821dad2ce496adb98e40Morris Guestbook suffers from a cross site scripting vulnerability.
4c3e22a88add72d66d36ccc178622619fbfd1e4bfe370c795ddc854599e4b507MFH version 1.2 suffers from a cross site scripting vulnerability.
c6adcdecabe34e064a85554b244715e5b13b7e219e42579c14ce4e734983b837Ardguest version 1.8 suffers from a cross site scripting vulnerability.
2c953d70220af77932f7ae7e0208756e677628f9af1d909d7aa52be6dce1b689RFIDIOt is a python library for exploring RFID devices. It currently drives a couple of RFID readers made by ACG, called the HF Dual ISO and the LFX. Includes sample programs to read/write tags and the beginnings of library routines to handle the data structures of specific tags like MIFARE(r). This is the Windows version.
5f2548f9d68b401baaa7daff67bdc6bbcc032e54b52f5f462ff2009bea7426feRFIDIOt is a python library for exploring RFID devices. It currently drives a couple of RFID readers made by ACG, called the HF Dual ISO and the LFX. Includes sample programs to read/write tags and the beginnings of library routines to handle the data structures of specific tags like MIFARE(r).
245685362a49126ab4eabdb33c35415011cdf9a60a4b48031380023b393455f9Debian Security Advisory 1888-1 - Certificates with MD2 hash signatures are no longer accepted by OpenSSL, since they're no longer considered cryptographically secure.
88d5f8e0192f0be8665ed90a45aa84ccb48c9ed00b752dea60a8068421209f01Adobe Shockwave Player version 11.5.1.601 Active-X related buffer overflow proof of concept exploit.
045e17e1a623573516f590193f401dd66ecc85a798bb9ca7aafcdd76178ed69bChief CMS suffers from a remote SQL injection vulnerability in news.php.
fad803ffc972cc7600b18f2c25167a246cb10cc3cf7052681f6b1b1084c62127Clicknet CMS version 2.1 suffers from a remote file inclusion vulnerability.
2e5ac3f550451836d5e63f820c0ddcc814e7c06655f7f1b137ea473023b3aa7aNovell Groupwise Client version 7.0.3.129 suffers from a denial of service vulnerability.
a9adc3cfdce33e12b448d8399e80eca61df8b0622d76863d8ade78bd194312cbEasyMail Quicksoft version 6.0.2.0 suffers from a remote code execution vulnerability.
d45ccf0c6529ec57992181bf8ddc446abb5d6c148bd3e767e38401ea98b97b0aEasyMail Quicksoft version 6.0.2.0 suffers from a denial of service vulnerability.
b95a436dada2e1a2192e355faee83ed7665cb3af1730d01c283c50a4cd7b190aDebian Security Advisory 1887-1 - Brian Mastenbrook discovered that rails, the MVC ruby based framework geared for web application development, is prone to cross-site scripting attacks via malformed strings in the form helper.
e9db881d48510c6e213b5d71a715500f7af077e97ce065212eede46bfda25193Mandriva Linux Security Advisory 2009-235 - Multiple format string vulnerabilities in lib/silcclient/client_entry.c in Secure Internet Live Conferencing (SILC) Toolkit before 1.1.10, and SILC Client before 1.1.8, allow remote attackers to execute arbitrary code via format string specifiers in a nickname field, related to the (1) silc_client_add_client, (2) silc_client_update_client, and (3) silc_client_nickname_format functions. Multiple format string vulnerabilities in lib/silcclient/command.c in Secure Internet Live Conferencing (SILC) Toolkit before 1.1.10, and SILC Client 1.1.8 and earlier, allow remote attackers to execute arbitrary code via format string specifiers in a channel name, related to (1) silc_client_command_topic, (2) silc_client_command_kick, (3) silc_client_command_leave, and (4) silc_client_command_users. This update provides a solution to these vulnerabilities.
cf29ab20dfb02d1acfb394baa328e5ca9ba75bc356f74d70e641c7d0d2e54046Mandriva Linux Security Advisory 2009-234-1 - Multiple vulnerabilities was discovered and corrected in silc-toolkit. Packages for MES5 was not provided previously, this update addresses this problem.
a51514cfad73cb0fd5f059dc25c98f0dd860e2efc681c5539304259b50a7f217Mandriva Linux Security Advisory 2009-234 - Multiple vulnerabilities was discovered and corrected in silc-toolkit.
d2d335c7fee04bb290f003b33d57677946c5ac8ee24f25bc7797d651892312absXid is an all in one suid/sgid monitoring program designed to be run from cron on a regular basis. Basically it tracks any changes in your s[ug]id files and folders. If there are any new ones, ones that aren't set any more, or they have changed bits or other modes then it reports the changes in an easy to read format via email or on the command line.
f335286261474cb77ef4f89a5c4b452edabdbaf19b6b789f195c6a769cd32765BigAnt server version 2.50 GET request buffer overflow exploit that spawns a shell on port 4444.
2a18b8c27c22b5848e54aed583ed0da892e6b3be2d25e6f17c5df52d7aa4efb5NetAccess IP3 suffers from a command injection vulnerability.
fce11ff0afb25454ee10efa70bb5080b29c7801b75050b83cf95a6ba5c816157Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible.
3e1a35d86f38060fb3dd3056661099be48c961d41dbb19aba33d9763da7aee55DJ Studio Pro version 4.2 local crash exploit that creates a malicious .pls file.
539a03299abdef7dff0d73ede3f6894a01ad85b8eec0a7d282e0f547c3d3ef05SAP Player version 0.9 universal local buffer overflow exploit that creates a malicious .pla file.
0f24223620020d2ae18d7bdd55bfaefe558f05bc5e5e61a0bd6ca4a648616505iBoutique.MALL version 1.2 suffers from a remote blind SQL injection vulnerability.
224c60fd2e9dd05bf8a06421ed2116ab589b37d6ad33f81bbbf8b928791d9167efront versions 3.5.4 and below suffer from a remote file inclusion vulnerability in database.php.
dcdc9dcee43240147ed616dab4a97841292f47641a24582ec83b2ab26a046710
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed