Microsoft Forefront Unified Access Gateway Remote Access Agent version 4.0.0.1 suffers from a remote file upload and command execution vulnerability.
3ebeabe791748805647629a3fbbecc741bc96a94f425f58d13409d7e8d83b60c
This whitepaper is called Local Session Poisoning in PHP Part 3: Bypassing Suhosin's Session Encryption.
b4c2757edc23926772d3931a43343d42a16d61a0d0eeaf402605d9c79122b967
This whitepaper is called Local Session Poisoning in PHP Part 2: Promiscuous Session Files.
a5b53f4b5bd46c66cfc9ad3a8d7d286455bc7a43f332c3b1e6ccb2290c69cb84
This whitepaper is called Local Session Poisoning in PHP Part 1: The Basics of Exploitation and How to Secure a Server.
c245f17fa9754ac7a72df98693b35929e796d3a655aeb50b5fa88d746027aa9e
Brief write up with a proof of concept explaining local session snooping in PHP.
a84ca642d685d472d8bdfa3fa84d30b724025d72ebec2bae38b90f52fc241d78
Brief write up with a proof of concept explaining local session hijacking in PHP.
c5099b1e7690d5d716238987cd3fe94c2ec425e441ee4155e5d47e1f6cad678e
This is the full Daytona package that houses three remote JBoss exploits with authentication bypass. They are ported from Metasploit and beefed up with two scanners.
3a7c10344dc210d299bebed708f49b6d1eb9c05deab6be158b3a1745486177bf
Nabble Forums suffers from a cross site scripting vulnerability.
4a5b9c32add09fed807143a9e3ea2a50bfc148b3e5b77953218cc05556fc51df
VMware Security Advisory 2011-0012 - VMware ESXi and ESX updates to third party libraries and ESX Service Console address several security issues.
7fd5e9259774393a258a0c189d667e06ba833c9fb8b0cd11fa8fb35727aecafa
Two code execution vulnerabilities have been discovered in Internet Explorer. One vulnerability is caused by incorrectly validating integer parameter passed to the 'add' method of the Select HTML element. Another vulnerability is caused by a use-after-free bug triggered by accessing a previously deleted Option element.
00ed6913fc28235fa406b329358c7b4198e80bad1be3a6a32de2641d3a1cb323
Secunia Security Advisory - A vulnerability has been discovered in the Contact Form plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
e13910965b5fe0c73a230ead4c79ad9b8a304108f513c9f8386a14d0146cec40
Secunia Security Advisory - Gentoo has issued an update for wget. This fixes a weakness, which can be exploited by malicious people to bypass certain security features.
e9a7bb3080a222866e28d04508428ec7cf5e8ae479709042398b42e7666302c8
Secunia Security Advisory - Luigi Auriemma has discovered multiple vulnerabilities in PROMOTIC, which can be exploited by malicious people to disclose potentially sensitive information and compromise a user's system.
a8eef5ae5930ff13495d91b7bb700ce23fe4430979981385a99da95d3b4192a1
Secunia Security Advisory - Two vulnerabilities have been reported in Sybase M-Business Anywhere, which can be exploited by malicious users to gain escalated privileges.
0950eca9c450103550f3d22c4af4077be14217a056507198c04e47378f5d7803
Secunia Security Advisory - Gentoo has issued an update for conky. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
69772d14fa3bf9fc7a06b54c704cf97712cd065d9bc51cc5d047bcf6cce09816
Secunia Security Advisory - Red Hat has issued an update for pidgin. This fixes two weaknesses, which can be exploited by malicious people to cause a DoS (Denial of Service).
2c6fbb03a26590bb952b95dfed3ed14159cb660624437e0e827a506896bf04bc
Secunia Security Advisory - Gentoo has issued an update for adobe-flash. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to conduct cross-site scripting attacks, disclose sensitive information, bypass certain security restrictions, and compromise a user's system.
ed29ee1c0109506ad2b5423f6e227f338ea2afe0ddf7337b2a8d4e5c7e921837
Secunia Security Advisory - Ubuntu has issued an update for quassel. This fixes a weakness, which can be exploited by malicious, local users to disclose sensitive information.
c1ca24efde1a5fd62c38de1afcbba5440bcae6c68d8a5eb719fc3aa8b364ec50
Secunia Security Advisory - Jose A. Vazquez has discovered a vulnerability in Opera, which can be exploited by malicious people to compromise a user's system.
555c9af18d2654139de5de508173c015529b97e5c93f4e3569845402d25da46f