Secunia Security Advisory - AmnPardaz Security Research Team has discovered a vulnerability in the JCE component for Joomla!, which can be exploited by malicious users to disclose system information and manipulate certain data.
88003143847f237c7bbc66ec68a65f2c021427f657053849aa9cd46331c3ca7eSecunia Security Advisory - A vulnerability has been reported in the Image Manager Extended and Template Manager plugins for the Joomla! component JCE, which can be exploited by malicious users to disclose system information and manipulate certain data.
362492f1f9f75e849323a0aae92939440e32f8fd389b953c23d08f51e6524396Secunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in InduSoft ISSymbol ActiveX control, which can be exploited by malicious people to compromise a user's system.
e7edd58244049d72a0d14dc8b0beec9ebdc8aebc891aada17bfd7dde837e3a25Secunia Security Advisory - Red Hat has issued an update for ecryptfs-utils. This fixes multiple security issues, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, manipulate certain data, cause a DoS (Denial of Service), and potentially gain escalated privileges.
b2f7c0c1562b0d01fa0161604cc40a960e6b352f9360cbbd6018587a6e05a63cSecunia Security Advisory - SUSE has issued an update for samba. This fixes two vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks.
2652f4b3f38fee53373572a81b266b94284f137fb51043c7affe40dd0a1b73d8Secunia Security Advisory - A vulnerability has been reported in multiple TANDBERG products, which can be exploited by malicious people to cause a DoS (Denial of Service).
452ca2d06a236d84ecdcec796ba2c60d59ba982916a7af985d36c8d4cf019652Secunia Security Advisory - SUSE has issued an update for xen. This fixes two weaknesses, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).
54809958fa9b6e41d7a70888e7043aaef2036b3e46684862636a429b12fca4b7Secunia Security Advisory - Miroslav Stampar has discovered a vulnerability in the Donation plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
9ebd4b4a228ce96587474ac717d168d7fae655dd64fb212346bc71a4283c7a42Secunia Security Advisory - Two vulnerabilities have been reported in the Bot Alarm module for Drupal, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery attacks.
8cc18a7deea0d7a7eb421de7de148a8012a335ad2d92781159fe8ed1532cea60Secunia Security Advisory - Miroslav Stampar has discovered a vulnerability in the WP Bannerize plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
6eaddaf95554d85043d255f29ef025f2b07b61bba0aa7b1f88aa078e26d0a23fSecunia Security Advisory - A vulnerability has been reported in the Taxonomy Views Integrator module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
e3c51101e611d5e20014a50a39052bd1c685f225c930d39dcd23c54899ba45d2Secunia Security Advisory - A vulnerability has been reported in the Node Invite module for Drupal, which can be exploited by malicious people to conduct cross-site scripting attacks.
202cef656520624856a84501bad5b2e089ddaab9b64e2363bf9b1748e33d4580Secunia Security Advisory - Dan Luedtke has reported a security issue in Dienstplan, which can be exploited by malicious people to bypass certain security restrictions.
6bc16b52c45bb78bd1a4fc4f2d450ae617b866964fbfd1ff2b924060dd917037Secunia Security Advisory - A vulnerability has been reported in the ICONICS IcoSetServer ActiveX Control, which can be exploited by malicious people to manipulate certain data.
bb826fe2f4730fd2626b49d4ac5ee6536b8b2473a58468c4b5c62459c7dbd5c0Secunia Security Advisory - Multiple vulnerabilities have been reported in TIBCO Spotfire Analytics Server and TIBCO Spotfire Server, which can be exploited by malicious people to conduct cross-site scripting, session fixation, and SQL injection attacks.
ee09835628880f29b7bc322d4e787dd627cbe7198ca1738ee05a923ca288b2f4Secunia Security Advisory - Novell has acknowledged a vulnerability in Novell Identity Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
f760dbe5d1a26c7318b5548297597df632f56dc056afd8b04f938c696fd65df3Secunia Security Advisory - IBM has acknowledged a vulnerability in OS/400, which can be exploited by malicious people to cause a DoS (Denial of Service).
00f846f83be8ad89f072b2e791835f9887892cc7a90d511a257a0c2f951d3d3eThis archive contains all of the 462 exploits added to Packet Storm in August, 2011.
35fefc343a1f4608e54fce81c523fe490792698a983a0323eecdc0c69af90045Ubuntu Security Notice 1197-1 - It was discovered that Dutch Certificate Authority DigiNotar, had mis-issued multiple fraudulent certificates. These certificates could allow an attacker to perform a "man in the middle" (MITM) attack which would make the user believe their connection is secure, but is actually being monitored. For the protection of its users, Mozilla has removed the DigiNotar certificate. Sites using certificates issued by DigiNotar will need to seek another certificate vendor. Various other issues were also addressed.
fd76e255f1d4a7bca86eae44ae57d1918bdd583af5e7a0b929620db8d1e6ef53Red Hat Security Advisory 2011-1245-01 - The Apache HTTP Server is a popular web server. A flaw was found in the way the Apache HTTP Server handled Range HTTP headers. A remote attacker could use this flaw to cause httpd to use an excessive amount of memory and CPU time via HTTP requests with a specially-crafted Range header. All httpd users should upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the updated packages, the httpd daemon must be restarted for the update to take effect.
9d358eee0137bcb55329f07523ac5c813ec3f38675b434ed0acc12412b497c7eDigital Whisper Electronic Magazine issue 24. Written in Hebrew.
729218c56fd4475537615df7acfc482740d369f897b4ae359fb57392ca43bfc1WordPress WP Bannerize plugin versions 2.8.6 and below suffer from a remote SQL injection vulnerability.
e069bc342586f87e1e33ab61227ff344656f72456f892a973dd31343deabf655WordPress Donation plugin versions 1.0 and below suffer from a remote SQL injection vulnerability.
c2afc1df73ca3bf6d3f976528e6eb89b9229b7735009d2be894937b407f92297Red Hat Security Advisory 2011-1244-01 - SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. It was found that a Certificate Authority issued a fraudulent HTTPS certificate. This update renders any HTTPS certificates signed by that CA as untrusted, except for a select few. The now untrusted certificates that were issued before July 1, 2011 can be manually re-enabled and used again at your own risk in SeaMonkey; however, affected certificates issued after this date cannot be re-enabled or used. All SeaMonkey users should upgrade to these updated packages, which correct this issue. After installing the update, SeaMonkey must be restarted for the changes to take effect.
7df61e89a4c25927a5226cf3ad45c80b05824cabd528719ed04b620fdc009f76Pruvit CMS suffers from a remote SQL injection vulnerability.
e0cbe23ebbd0be42df2b608db63cdf5bda3751063c35268af48f33f21d68865e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed