Secunia Security Advisory - Some vulnerabilities have been reported in ScriptsFeed Home Classifieds Software, which can be exploited by malicious people to conduct SQL injection attacks.
d4434822b379f5f3135563f6fdb0640a19762213ff9978842426e2116fa5f21f
Secunia Security Advisory - A vulnerability has been reported in APLHA Ethernet Adapter II, which can be exploited by malicious people to bypass certain security restrictions.
a817c58d2e4152cc97f4cbee5cd39459a7097fe01e8f56118eea3c1b5601930c
Secunia Security Advisory - A vulnerability has been reported in ScriptsFeed Auto Dealer Software, which can be exploited by malicious people to conduct SQL injection attacks.
92ce0fd59b95fa9d960b352d37475af477ccdb076fa6d8aa6dadba6ced5b66fc
ATutor version 2.0 cross site request forgery exploit that adds a new administrator.
2313749fea1adb80f1f9d0955b5ecadd5b3fe85763703e5cd74f7c0c744b3f89
111 bytes small echo 0 > /proc/sys/kernel/randomize_va_space SUB encoded Linux / x86 shellcode.
76d3edb6e172058a17f11a644d1d2adb1159201130e3731720f790f40e375214
Bs General_Classifieds Script suffers from a remote SQL injection vulnerability.
fdc0c886458eec3605272a530c81f11a6c358db8496a8351e3d0309a9c5d8388
Bs Events_Locator Script suffers from a remote SQL injection vulnerability.
5487528ae0d3ef8db0902ec38a446ba2e6e6854dca03aaffffd3bd166dc3c031
Bs Home_Classifieds Script suffers from a remote SQL injection vulnerability.
82b836923709e6c857044edd277677ade0ce3316ae9be47f6721d10dcf0ee79c
Bs Realtor_Web Script suffers from a remote SQL injection vulnerability.
e76f2f337e2404d1dcd0309abb88dcc0475a4e41e3c698407df7fe13990de6e3
Bs Recipes_Website suffers from a remote SQL injection vulnerability that allows for authentication bypass.
a8bdbb6c4983e9f35f44209d062a63f50e453dcd9c9aab547aaf7ff7b92c11d0
Bs Scripts_Directory suffers from a remote SQL injection vulnerability that allows for authentication bypass.
7daf08a8e0b84c4c89f18b29588e391e211cedcc5fe29945393cdc060268e94b
Wiki Web Help version 0.28 suffers from a remote SQL injection vulnerability.
f50a808a514db936aad169cb76e09732e523222bc458638481d751b9c5564470
Sun Java Web Server version 7.0 u7 administrative interface denial of service exploit.
1f4ee03d2f21873fa85a546b82be9bb31a7253d7895c6df6f145c63406a95360
UFO: Alien Invasion version 2.2.1 buffer overflow exploit with Windows 7 ASLR and DEP bypass.
d670ee7d9da281187927541242c1b36505717911df4fb7b66d04d4790fd7c451
nuBuilder version 10.04.20 suffers from a cross site scripting vulnerability.
8c35835d23b1ea0bccf3c389b136007e8d56528bc2cffbd37d5a24d74ccef0e5
NewsOffice version 2.0.18 suffers from a cross site scripting vulnerability.
0669fa05d39016c1d5bebba5eebede40ce4b02cb089593eae7b5fb6a21d22a9d
Bit Weaver version 2.7 suffers from a cross site scripting vulnerability.
ab4f4c21c7716420cda3779bb50c1817dfc703df986b81ccc3fe9b5e1af46fce
62 bytes small XOR encoded execve("/bin/sh",NULL,NULL) with setreuid (0,0) Linux / x86 shellcode.
c24ecf07e4515b1a264d5cf1314b1b3045b9f83a5d125b8d7a47d68a90ac034f
odCMS version 1.07 suffers from a cross site scripting vulnerability.
dce9734f950abe1db79c950191ef9740934e6a14b63204e055a30c4c46ef5157
NetworX version 1.0.3 suffers from a cross site scripting vulnerability.
7cffea4f3740a93c40294e31e420f92b4d270988f21988671735f95661c24614
Orbis version 1.0.2 suffers from a cross site scripting vulnerability.
c74060892392d1e6c988c4ae1b6b3df0a75642d7841842a0a88562b31db82d5c
161 bytes small polymorphic Linux / x86 shellcode that drops a suid root shell in /tmp/.hiddenshell.
4085c1340e78d7095fc1d23337ee35a69a8730c3387e8768584089a1e543f00d
HITB Magazine Volume 1 Issue 3 - Articles include Using Kojonet Open Source Low Interaction Honeypot, Chinese Malware Factory, Reserve Objects in Windows 7, Javascrpt exploits with Forced Timeouts and more.
a99ce15d38f48c00126ef86fd1b8ced026841da89d947e4d9ae958d3127c5e96
Secunia Research has discovered a vulnerability in the BookLibrary From Same Author module for Joomla, which can be exploited by malicious people to conduct SQL injection attacks. Input passed via the "id" parameter to index.php (when "option" is set to "com_booklibrary" and "task" is set to "view") is not properly sanitized before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Version 1.5 is affected.
1b6681317886c2c7b9422ba4c5199bfce4e3692a8ca9a537721c207cdbf69c88
Debian Linux Security Advisory 2059-2 - It was discovered that PCSCD, a daemon to access smart cards, was vulnerable to a buffer overflow allowing a local attacker to elevate his privileges to root. The update for PCSCD caused a regression with some card readers. This update corrects that regression.
0a3af415aec8e29c612aaf56d689046d08500c5084f59a1af6475ac8f9a0eb31