Free Reality version 3.1-0.6 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
493f04f3ec7af900fb32e04bb9d6040d9d5478aa3e1ab908625ea0aa19e36bbdSSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.
10da16c1be95d20157145da3dd5e9ffea69818889a25c2c134fcd14c97fbf6a3AnvSoft Any Video Converter version 4.3.6 unicode buffer overflow exploit that creates a malicious .reg file.
c532021cc23d12aa672117669ee1f244c0d5045941bccdba57ba511e3b959328Sockso versions 1.51 and below suffer from a persistent cross site scripting vulnerability.
ce4130dfcdd5f03d5815606f2541cae70de1c7e752e6e762e838a81b94563ec2GENU CMS version 2012.4 suffers from cross site request forgery and remote SQL injection vulnerabilities.
6bddc2191901810274fa3dc11c1b25d1771893d78a5b2233469550f82f00e35dThe Hackers Conference 2012 Call For Papers has been announced. It will take place in New Delhi, India on July 29th, 2012.
2df905cfab372c60d91883baf18207d362798725de61105f13e35ec782b04499Serendipity CMS version 1.6 suffers from a cross site scripting vulnerability.
10b7368991d50674bb817ccf140405847e9ce14c0a0c273269026118e68149f0GetSimple CMS version 3.1 suffers from multiple cross site scripting vulnerabilities.
907c8b643da2c6b6cde7782c0dc396629ae2402f8972644e23c2e574d7f1ee23Indexa suffers from a remote SQL injection vulnerability.
dc8c877edeeba28ad84395fbc9eaec87591e83a222a3bfec24a3f4e87705371aCura is a mobile phone application bundle of remote systems administration tools. It provides a personalized terminal emulator, a syslog module that allows for reading logs directly from a server, a SysMonitor module that visually graphs CPU and RAM usage percentages, access to Nmap, and Server Stats will offer general server information like its Vitals, Hardware information, Memory information, processes, and so on. A security feature will be implemented that allows users to have Cura's database completely wiped upon them sending the compromised phone a secret pattern of their choosing (e.g. send an SMS message containing "phone has been stolen!" to your Android phone to wipe Cura's database, and receive the location of the compromised phone as an SMS to your emergency phone number or as an email to your emergency email address).
7535e3c956995ec088e0036a3ecb227af85f7e7498611ed214ba05bc70a26996It appears that high performance servers from NEC suffer from a hard-coded administrative account that can manipulate memory.
eb4272908d1ad7c1709578a39de60f3cbe679c413cb078dd31662645958fdcb3Secunia Security Advisory - A security issue has been reported in the Contact Forms module for Drupal, which can be exploited by malicious users to bypass certain security restrictions.
2d7957eed9cae4272fb424a07a0763daf8e104bdad6080dcf04c8917a877074bSecunia Security Advisory - Debian has issued an update for linux-2.6. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
eb30cb580a5c754fd27800e532e3a01a0dfcc39f0b8cee2e71d4f6d78b29f0deSecunia Security Advisory - A vulnerability has been reported in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service) of the application using the library.
e35898a18b7ce00d4c782c320c6a6f07ce7af0807f27b37b33ab01bf5c26bb4bSecunia Security Advisory - A vulnerability has been reported in IBM Rational ClearQuest, which can be exploited by malicious users to conduct SQL injection attacks.
cb36fefe3371aaf80086f856acbcd4decad100f1f27a753233d7b2746b79db60Secunia Security Advisory - A vulnerability has been discovered in Galette, which can be exploited by malicious people to conduct SQL injection attacks.
744c9bf680c97719ff18b193d831b2c7dbfdd361ff7cab53708d0ad1236965b6Secunia Security Advisory - A vulnerability has been reported in Opera, which can be exploited by malicious people to compromise a user's system.
bdf54e6e2d114ed5d815b03cda2f40c9b9ffb492fb769598c0472a9033490255Secunia Security Advisory - SUSE has issued an update for puppet. This fixes two security issues and two vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges and by malicious users to cause a DoS (Denial of Service).
105f5bfdddfee5649d03653b620d229812f34bf99fbde0c1e90212c1a88f3666
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed