LightNEasy version 3.1.x suffers from file disclosure, local file inclusion, software installation and file upload vulnerabilities.
b46d9ffa03938924070a5a689b35a41395ca675c37d1491c970fa53b1caf2e5b
Zero Day Initiative Advisory 10-077 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Adobe Download Manager. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the gp.ocx ActiveX control. This control has a CLSID of {E2883E8F-472F-4fb0-9522-AC9BF37916A7} and the ProgID Atlcom.get_atlcom. Upon initialization this control copies the values from two parameters into a fixed length buffer. If supplied with large enough values this can lead lead to a buffer overflow that can be leveraged to execute arbitrary code under the context of the user running the browser.
128165a7d8d8eef28948328c1084fc940def985af623cd253fd21e35d7905329
The Joomla Portfolio component suffers from a local file inclusion vulnerability.
eb8d3627bbad8db35d7eb0679f9c0905787b1e9d6b8e376214a7fe5acff0e054
Cisco Security Advisory - Cisco Small Business Video Surveillance Cameras and Cisco RVS4000 4-port Gigabit Security Routers contain a vulnerability that could allow an authenticated user to view passwords for other users, regardless of the authenticated user's level of authorization. An unprivileged user could take advantage of this vulnerability to gain full administrative access on the device or view another user's credentials.
2891fd746e404214f8f7ec8bdef0e17c186d1686f316c0e22b4cac7e4176506f
Secunia Research has discovered a vulnerability in imlib2, which can be exploited by malicious people to compromise an application using the library. The vulnerability is caused by a logic error within the "IMAGE_DIMENSIONS_OK()" macro in src/lib/image.h. This can be exploited to cause heap-based buffer overflows via e.g. specially crafted ARGB, XPM, and BMP image files.
468d8120f75f67faa1343a7d1231b3d69caa8405116258fcbd1b58c624cfdefd
Core Security Technologies Advisory - A Cross Site Scripting (XSS) vulnerability has been discovered in CactuShop.
27b87383b836a5d421fa2c92b53e6cadc8c16ca54e451af91f467dfb9ae90f63