The Joomla Autographbook suffers from a local file inclusion vulnerability.
b15789100e4711cf4c1944e15544fbec83da45b999788c20433db97c837ad137The Joomla Sadnews component suffers from a local file inclusion vulnerability.
1dfa7ab5db2437c2d1dcab40aec7cb5429b88e888116e477410a98b423cf882bThe Joomla Rule component suffers from a local file inclusion vulnerability.
ca5ae437db73d0b897221eb74e3fa60cb35a52e8b269251658c7a9f0df3d0b26The Joomla BCH component suffers from a local file inclusion vulnerability.
c8159c44dfae717e33c32bb2cb5df7b8c662141873a729a4738fe5a26c67ba8bYuku Forums suffers from a cross site scripting vulnerability.
8408ecb7188a72bf06a5f5235b81bb919f3f43a696b724ed4dd15f5cb28de449The Joomla Fundhelp component suffers from a local file inclusion vulnerability.
b743797e485023b9f7f60e1e61c1353a031d3ff60593699ed0ff7cf1255150d2Secunia Security Advisory - A vulnerability has been discovered in the AllWebMenus plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
5b1080c36e53ec73c6bb95985d118c29addc3d5dd8abfde5516cc0da3d19dda9Secunia Security Advisory - A vulnerability has been discovered in the Linux Kernel, which can be exploited by malicious, local users to gain escalated privileges.
22931be632e7f738748b040119662b4d6682cdef6dfe1d68ca52f167cff4235dSecunia Security Advisory - Debian has issued an update for phpmyadmin. This fixes multiple vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information and conduct script insertion attacks.
42a9cb9ded3074df83f9cc6ce4685fc96d6e6615cbacc62428df4ff6f5797d73Secunia Security Advisory - Ubuntu has issued an update for qemu-kvm. This fixes a vulnerability, which can be exploited by malicious, local users in a guest virtual machine to potentially gain escalated privileges.
ec1c642a60e2d477396c13a081a6c3576550b50bbd5849b4902b07a56e20fc2aOpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.
0abcd4b9cb076582735d0a68d07fe3a075ae3beb88d440954eadaf2abd9ac47dMIMEDefang is a flexible MIME email scanner designed to protect Windows clients from viruses. Includes the ability to do many other kinds of mail processing, such as replacing parts of messages with URLs. It can alter or delete various parts of a MIME message according to a very flexible configuration file. It can also bounce messages with unacceptable attachments. MIMEDefang works with the Sendmail 8.11 and newer "Milter" API, which makes it more flexible and efficient than procmail-based approaches.
88a0f294e517348b692b0e0f226b60f90fa94eb0e771e02ab716c8e50d8cf714Base Content Management System Lennox Industries suffers from a remote blind SQL injection vulnerability.
dbf5444fd46dead5484090c03be501148d2c22bf26ac582b880eddc1db55a4fcDirectAdmin add sub domain cross site request forgery exploit.
3126a7db0cacf9a7ea7277fca0aac616368fc4d14bc2cc4c2fab71fb9a97832fWordPress Kish Guest Posting plugin version 1.0 suffers from an unrestricted file upload vulnerability.
41cca2429698e815d678cab74cf2e1fe4fc269d0ce2e816785dbb54b033093daSpamTitan Application version 5.08x suffers from a remote SQL injection vulnerability.
a7a24030ab1b2750c1544f9bfd2ad88f8a49ad3457f715050e787a597210ccbcBigware Shop versions prior to 2.15 suffer from a remote SQL injection vulnerability.
12747cd772fb53c2342c34da6f8eff9e23e1222667f989bd3857762d8a791c69PostTest is a jar file that will send POST requests to servers in order to test for the hash collision vulnerability discussed at the Chaos Communication Congress in Berlin.
bd550e19acbe2d399474ba43ff5e2e77c8272fcd31dcfc6416fb5526af110a23Softplace CMS suffers from a remote SQL injection vulnerability.
7434c4dd39d930c258d4d6b99da58a1602d40fa76803a658181cb817a0708852SolarWinds Storage Manager Server suffers from a remote SQL injection vulnerability that will allow for authentication bypass.
a1e28c92e5687a6665abb431cb78157e967e372a4431d34139edb4b3fcb77124Gentoo Linux Security Advisory 201201-10 - Multiple memory management errors in JasPer could result in execution of arbitrary code or a Denial of Service. Versions less than 1.900.1-r4 are affected.
0cb97b8a4ed08246139031846f5ec96c37efe43c2bb067741bc0ba578c6a9e81Gentoo Linux Security Advisory 201201-9 - Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause a Denial of Service. Versions less than 2.4.8 are affected.
c2f545da77d59dcae89071ef5db306706481440c4f480de96b07a59229faf95eDebian Linux Security Advisory 2301-2 - It was discovered that the last security update for Ruby on Rails, DSA-2301-1, introduced a regression in the libactionpack-ruby package.
ef3167ca6e6bc40b5f6687882b1d2cacc94bbf6b0ebc1f2bf961163c8ef91d9eUbuntu Security Notice 1337-1 - Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. A flaw was found in how the Linux kernel handles user-defined key types. An unprivileged local user could exploit this to crash the system. Various other issues were also addressed.
e7802e95806affb052441f4c11bd6b13bb1ef0d304666e0eaf42903f54cfa810Ubuntu Security Notice 1339-1 - Nicolae Mogoreanu discovered that QEMU did not properly verify legacy mode packets in the e1000 network driver. A remote attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program. When using QEMU with libvirt or virtualization management software based on libvirt such as Eucalyptus and OpenStack, QEMU guests are individually isolated by an AppArmor profile by default in Ubuntu. Various other issues were also addressed.
99fca1d35176132983e4d6faefd19e4889e531993a958786ee9369ae610afe78
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed