Secunia Security Advisory - AppSec has reported a vulnerability with unknown impact in Dolphin Browser HD for Android.
c49731b29b855df25f642b20a5083bc01870602ecf67f0002c00d4bd9dbbf541Secunia Security Advisory - Red Hat has issued an update for python-sqlalchemy. This fixes two vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks.
da482e403a4f8ca36c8de793f723b49fc1e1a515462f1c1c257899db280bb35fSecunia Security Advisory - Two vulnerabilities have been reported in Jenkins, that can be exploited by malicious people to disclose potentially sensitive information and conduct cross-site scripting attacks.
4cc88b8079db7fa17370412f32fb069f22915b032e332a39413a227b922e6eccSecunia Security Advisory - Two vulnerabilities have been reported in SQLAlchemy, which can be exploited by malicious people to conduct SQL injection attacks.
c8864521f37188262c93974aae7c7d7827873fdf1a573d5e509441de17c4f0faSecunia Security Advisory - A vulnerability has been discovered in HomeSeer HS2, which can be exploited by malicious users to disclose sensitive information.
f883f4f8ce199a732036cd50a0a24f20f065570859c22703d308662483e0555dSecunia Security Advisory - A weakness and multiple vulnerabilities have been reported in IBM Maximo Asset Management and IBM Maximo Asset Management Essentials, which can be exploited by malicious users to disclose sensitive information and conduct SQL injection attacks and by malicious people to conduct spoofing attacks, cross-site scripting attacks, cross-site request forgery attacks, and cause a DoS (Denial of Service).
7514f966ff15afa9258bc26ac26809d3363aa22c0c6bbd14217e71db67188af1Secunia Security Advisory - Debian has issued an update for imagemagick. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
4b1d8567a1341c9cd3e2f6d241b181d3f036f0832d4c08209ce6647269933578Secunia Security Advisory - A vulnerability has been reported in RSA SecurID Software Token Converter, which can be exploited by malicious people to compromise a user's system.
fe1d1ec1c49f3dd2df13d6472af70001c31b2e595ab3dc7f3a7a9e6a46bb3215Secunia Security Advisory - Debian has issued an update for gimp. This fixes multiple vulnerabilities, which can be exploited by malicious people to compromise a user's system.
afdbe0fda0b2fa6a5381f6712750208c1d00bc0c2452fb6911badd2d08fb1a1fSecunia Security Advisory - Gentoo has issued an update for libxslt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) in an application using the library.
b28ebd2aed86e47437bfab0a7f07c325365ef6c63ab3ffc371281e67547a6f32Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users and malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and gain escalated privileges and by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
41b24e8df4f48afae79e0b690e252a041a699f9f8e935bcbb84468b8556f472eSecunia Security Advisory - Luigi Auriemma has discovered two vulnerabilities in NetDecision, which can be exploited by malicious people to disclose potentially sensitive information.
137223e9b070a80b49787bec071f755093253fe2b07a24288749a2e8679c0401Secunia Security Advisory - Multiple vulnerabilities have been reported in IBM DB2, which can be exploited by malicious, local users to manipulate certain data and gain escalated privileges, by malicious users to bypass certain security restrictions, gain escalated privileges, and cause a DoS (Denial of Service), and by malicious people to cause a DoS (Denial of Service).
db80dd0fef22708d9a686d8b330dd8d5a9344947e4646d3c8eb15652e47d2280Secunia Security Advisory - Ubuntu has issued an update for linux-ti-omap4. This fixes multiple vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service) and by malicious people with physical access to potentially compromise a vulnerable system.
feca7a37d6ecc4eaa3d9ec45943309f78726b38741498a6ecfb4f2593e4117d1Secunia Security Advisory - A vulnerability has been reported in Touhou Hisouten, which can be exploited by malicious people to cause a DoS (Denial of Service).
fb0b777f91e42a601dbd0f22af53963e683312dbf51a8498d66f00bb3548c994Secunia Security Advisory - Krystian Kloskowski has discovered a vulnerability in Safari, which can be exploited by malicious people to compromise a user's system.
c54e4da1e7b08f80587bc88bc5632578b833387b8956ebb1ab8b0c2c2de06083NetDecision versions 4.6.1 and below suffer from a remote directory traversal vulnerability. Proof of concept code included.
d721af39d139f82f49468f70daaadb3702443fd72006aef70d14530f14a10a89This Metasploit module exploits a vulnerability found in Adobe Flash Player. By supplying a corrupt .mp4 file loaded by Flash, it is possible to gain arbitrary remote code execution under the context of the user. This vulnerability has been exploited in the wild as part of the "Iran's Oil and Nuclear Situation.doc" phishing campaign.
bc712e2a0634304709e04fab0e0b399f87ad8994ef78b54e906ba338a89de632This Metasploit module exploits a vulnerability found in Lotus CMS 3.0's Router() function. This is done by embedding PHP code in the 'page' parameter, which will be passed to a eval call, therefore allowing remote code execution. The module can either automatically pick up a 'page' parameter from the default page, or manually specify one in the URI option.
9cfa92781759b0e3fca07d4e2381bdf31f60c42eb04c18946ce17fa3ef4f50c3Promise WebPAM version 2.2.0.13 suffers from cross site scripting, header injection, and remote SQL injection vulnerabilities.
e7dad28fcfe42c36cf6f63d3e01c4c99a1147c143fc301e92230cf0c1ed89191Toenda CMS version 1.6.2 Osaka Stable suffers from multiple local file inclusion vulnerabilities.
5a020f9c72ff4b501c12f66bc1971a4e0d49451035732bdb1806e4f14a090236The Drupal Webform module versions 6.x and 7.x suffer from a cross site scripting vulnerability.
ebc8afc7a8e3b9bc5101110a82c959641537ff9199390ac05b85f1fca3fab6b3The Drupal Note Recommendation module version 6.x suffers from a cross site scripting vulnerability.
0d5478a9de5ee767ee36f4e93e4cc328b19707ca13ca3a9371f41414d5cd9f89The Read More Link module version 6.x in Drupal allows you to move the "Read more" link from the node's links area to the end of the teaser text. A user could inject java script into pages affecting other site users. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "access administration pages."
bd92348ee67235662934cb4a09b086c5d52b673a6df75c2193424fa80f15fba0OSClass versions 2.3.5 and below suffer from a directory traversal vulnerability.
c4411548e16d40545b80301b74d258f57c4662d3f5f44fbff9ee7d0e877247f6
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed