Secunia Security Advisory - A vulnerability has been reported in Automagick Tube Script, which can be exploited by malicious people to conduct cross-site scripting attacks.
3cbca3718c0a5e41652ed28309683fd18151087cbb3823deca8473555d07242cSecunia Security Advisory - Three vulnerabilities have been reported in HP Proliant Support Pack, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct spoofing attacks or gain knowledge of sensitive information.
6ede9eed80ecd139679cf8789bb6643d03052441ea5ca9cac2691a24cc502fffSecunia Security Advisory - Red Hat has issued an update for kdenetwork. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
603e6eebbd42948f3ebcdfae5396bd9e89b8f43e712c02158a972880488e1757Secunia Security Advisory - Red Hat has issued an update for kdelibs. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
bdf9f6db17533145a059a4db67c851b5bd43a369fe47aa60caa8f32ed520d387Secunia Security Advisory - Red Hat has issued an update for kdelibs. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
bdf9f6db17533145a059a4db67c851b5bd43a369fe47aa60caa8f32ed520d387Secunia Security Advisory - Three vulnerabilities have been discovered in ZenPhoto, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
a747c5f8648eced824e3ce22465caac765dd859a2283fa377ccc9588ef67e7eaSecunia Security Advisory - A weakness has been discovered in Pulse CMS, which can be exploited by malicious people to disclose sensitive information.
45e9f670876071f40c708351203b387b86b5dc0f55e914741e1899dabd68b99aSecunia Security Advisory - John Leitch has discovered a vulnerability in web2Project, which can be exploited by malicious people to conduct SQL injection attacks.
7637dc360b85e6b5a16d31aa1c2cab96a57585a0b90b8202ff6f97397f2d9d20Secunia Security Advisory - John Leitch has discovered two vulnerabilities in Dolibarr ERP/CRM, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose potentially sensitive information.
c642021e9067f2892d88b61725c2ad14cb109b21a3ce47142e706e9a88b30076Secunia Security Advisory - SUSE has issued an update for postfix. This fixes a vulnerability, which can be exploited by malicious people to manipulate certain data.
975e2a9f44bd18804ba77f5e4d96a6e1131e56d00612e403deb299b0a2c55a73Secunia Security Advisory - Three vulnerabilities have been discovered in ZenPhoto, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
a747c5f8648eced824e3ce22465caac765dd859a2283fa377ccc9588ef67e7eaSecunia Security Advisory - A weakness has been discovered in Pulse CMS, which can be exploited by malicious people to disclose sensitive information.
45e9f670876071f40c708351203b387b86b5dc0f55e914741e1899dabd68b99aSecunia Security Advisory - John Leitch has discovered a vulnerability in web2Project, which can be exploited by malicious people to conduct SQL injection attacks.
7637dc360b85e6b5a16d31aa1c2cab96a57585a0b90b8202ff6f97397f2d9d20Secunia Security Advisory - John Leitch has discovered two vulnerabilities in Dolibarr ERP/CRM, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose potentially sensitive information.
c642021e9067f2892d88b61725c2ad14cb109b21a3ce47142e706e9a88b30076This Metasploit module exploits an arbitrary command execution vulnerability in the Spreecommerce API searchlogic. Unvalidated input is called via the Ruby send method allowing command execution.
5f324564c756ec1163ada3b1c576328ce33a96570f58fa83e43acb3bf9d56e4eA local file inclusion vulnerability in Dolibarr version 3.0.0 can be exploited to include arbitrary files.
efefe3ea8c6810ee1b670ebdcaa5526092580261c7cc1260a703f0ba6ed0f2efA reflected cross site scripting vulnerability in Dolibarr version 3.0.0 can be exploited to execute arbitrary JavaScript.
d40933a490a20ec99376edb8fcfdf191c2b6d3f52c7403f52d814f84aaa0429fA SQL injection vulnerability in LightNEasy version 3.2.3 can be exploited to extract arbitrary data. In some environments it may be possible to create a PHP shell.
93a1ba2d22f9b3d9d4a6a2fd2808c2d63040253943fdf3ad6963492f3074085fA reflected cross site scripting vulnerability in Todoyu version 2.0.8 can be exploited to execute arbitrary JavaScript.
8905a94f9ae11f23729ab5705029975f0e8f3fa55cf34596e953c48ab0ef4325Web2Project version 2.3 suffers from a remote SQL injection vulnerability.
627a34cbf590c6a115d8710e1446b9296d812a1043dbd985cf440ede9c495a61Asterisk Project Security Advisory - It is possible for a user of the Asterisk Manager Interface to bypass a security check and execute shell commands when they should not have that ability. Sending the "Async" header with the "Application" header during an Originate action, allows authenticated manager users to execute shell commands. Only users with the "system" privilege should be able to do this.
31ede85ee7d0cff21021d4dd6f89dfc438a48a6a387fbe72033246f6071a6e174images version 1.7.9 suffers from path disclosure and remote SQL injection vulnerabilities.
ec8a032011134c00f1579ce76dd4a3c98b1ce8bad1a156a8c072bd2e686b630cCall For Papers Hack.lu 2011 - The purpose of the hack.lu convention is to give an open and free playground where people can discuss the implication of new technologies in society. The convention will be held in the Grand-Duchy of Luxembourg from September 19th through the 21st, 2011.
851f13b1c36beaa8bf216cdf1a7f9361919431b404d2e9700e9ca1e20d65634c73 bytes small Microsoft Windows 32-bit XP/SP3 MessageBox shellcode.
04a43186ea7b420fe973f0033f8313e9016718ea94b9cc348821109595146974ZENphoto version 1.4.0.3 suffers from cross site scripting and path disclosure vulnerabilities.
1144a0505d5a54673c9cb3ad14c501b10a5311d7e4ae93639565b1b28542d45c
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed