NTDS WebStudio suffers from a remote SQL injection vulnerability.
e2c5ec560a8a0c840ee4e95b34ddbe1187ae4e0c28d79f834c54165417632f01This Metasploit module creates a buffer overflow condition by sending a Read Request (RRQ) packet to TFTP server version 1.4.
fa9a0be38e83a3162d8474b2cb10cba8e6ec243cb4cbcc36423fedb3d72656abb2ePMS version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
98ff7be2302259ebcd488c1d2c68d14a045c80c196e9914bf85c1acc78e22d7f42 bytes small Linux/x86 execve(/bin/dash) shellcode.
1f064f3f4e529376eb4edee2ea45ed1176d1934a1c38873cb290b1e9fb04ef2aVallarta Web Services suffers from a remote SQL injection vulnerability.
5a91efb081899433680eab4a9d6a096c1ef8014f792e1ee7f21a13c1f4dda161Universal Reader version 1.16.740.0 suffers from a filename related denial of service vulnerability.
9fc1288cb87d2f76ded479085c5724fe535048050588dd20e82a0d94fc86bbcfLiferay Portal suffers from a privilege escalation issue due to an insufficient permissions check in the updateOrganizations method of UserService.
4c1ad3c260bfe325b9aead7258ea230d32d644be3b58cca2627419a584adc85bGalette versions prior to 0.7.x are vulnerable to a remote SQL injection vulnerability in picture.php.
a2ce6c5fd8c67c90ac3d11efc210f31a32fca23d17b133853c14b72af1fb973fSecunia Security Advisory - Two vulnerabilities have been reported in Travelon Express, which can be exploited by malicious people to conduct SQL injection attacks.
c7ed8756c3c741900efdc23d3e22f2a1f2a88a0a8380227195efb183652ac99cSecunia Security Advisory - A vulnerability has been reported in Proman Xpress, which can be exploited by malicious users to conduct script insertion attacks.
aac1242476e7459f2d9abc86917b58f45c1315537cbbf8d3047a860385ab9ebbSecunia Security Advisory - Chokri B.A. has discovered a vulnerability in GetSimple CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
8eb6820d562ff4891bab91a4c04d3a61385207060dfd1cd6b466f9b5a3a2b3f6Secunia Security Advisory - Two vulnerabilities have been reported in NetBill, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery attacks.
2f2a06f29b0f84cc3615df9ecdc5bdb6f0a4e30f627a4445345fa91747fac73bSecunia Security Advisory - Ciaran McNally has discovered a vulnerability in Sockso, which can be exploited by malicious people to conduct script insertion attacks.
e6cb9178e40207d98aeed7f65c953132bf70cba628d46c5000c0c3ba4fcc37d1Secunia Security Advisory - A vulnerability has been reported in Hitachi COBOL GUI Run Time System and Hitachi COBOL Server GUI Run Time System, which can be exploited by malicious people to compromise a user's system.
827db2abf132c393857e62d976e301316fcec7a8f644de7fb57f2e736596efb2Secunia Security Advisory - Multiple vulnerabilities have been discovered in FreeRealty, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery and SQL injection attacks.
2ff5983779b5efd5e797d0f9340a827b6ec7cdfb2e1f2ade0e996f6b19c44cc5This Metasploit module exploits a use-after-free vulnerability in Firefox 8/8.0.1 and 9/9.0.1. Removal of child nodes from the nsDOMAttribute can allow for a child to still be accessible after removal due to a premature notification of AttributeChildRemoved. Since mFirstChild is not set to NULL until after this call is made, this means the removed child will be accessible after it has been removed. By carefully manipulating the memory layout, this can lead to arbitrary code execution.
0750feb0c6b04b3e549b1720e08f8946c5ad47833c85f2914592e886fe867eb0Debian Linux Security Advisory 2457-2 - The updates DSA-2457 and DSA-2458 for Iceweasel and Icedove introduced a regression, which could lead to crashes when interpreting some Javascript statements.
28db1b69a2c5d62243306c2364dcc29f83636de6719b9ff7c57c5aa770957268Debian Linux Security Advisory 2471-1 - Several vulnerabilities have been discovered in FFmpeg, a multimedia player, server and encoder. Multiple input validations in the decoders/ demuxers for Westwood Studios VQA, Apple MJPEG-B, Theora, Matroska, Vorbis, Sony ATRAC3, DV, NSV, files could lead to the execution of arbitrary code.
a752e73c0cc9d4582a8cb0c918c857c8195a4a7f08461bb000946a973352da1fSecunia Security Advisory - Debian has issued an update for wordpress. This fixes a security issue and some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks, bypass certain security restrictions, and compromise a vulnerable system and by malicious people to conduct script insertion and cross-site scripting attacks, disclose sensitive information, and cause a DoS (Denial of Service).
42deb145dca11769a826e263e94e363df6c60f811053fe3cca404124ae9ea1d1Secunia Security Advisory - Multiple vulnerabilities have been reported in Kronolith, which can be exploited by malicious people to conduct cross-site scripting attacks.
893d13f4cc78797fd9693e45cb821aead28100e6d4de11d88fd499ebff3de53fSecunia Security Advisory - A vulnerability has been discovered in the WP-FaceThumb plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
fc242a7e1bbcbe02751dd168959bc3a490dc94c0a6dbcd07c396b74f65090d3fSecunia Security Advisory - Multiple vulnerabilities have been reported in Sympa, which can be exploited by malicious people to bypass certain security restrictions.
fa92021bd4425a9be6f1ee5d4e92331e4a3feb8668c2f9718852bf518ef77aeaSecunia Security Advisory - Debian has issued an update for ffmpeg. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise an application using the library.
adbbe6ec48a93ed965a8ccc2ded1d77a168f824d9f6d024993ab1229739bb090Secunia Security Advisory - Two vulnerabilities have been reported in Hitachi IT Operations Director, which can be exploited by malicious people to conduct cross-site scripting attacks and cause a DoS (Denial of Service).
b6258e7ce4a6211e1108a9dbc2a8069e66adf2721ae8b191a58a19494f4f4de9Secunia Security Advisory - A vulnerability with unknown impact has been reported in IBM WebSphere Application Server for z/OS.
54f50c7e4a035092bc9c973f08720b4f4d74c3be779869ae1101f85f97fe12ad
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed