Secunia Security Advisory - Two vulnerabilities have been reported in the PoodLL plugins for Moodle, which can be exploited by malicious people to conduct cross-site scripting attacks.
7f928e1ef9d46da2dadab131054e85fcc473662c2453689b842054730301fedd
Secunia Security Advisory - Two security issues and a vulnerability have been reported in Django, which can be exploited by malicious people to conduct cross-site scripting attacks and cause a DoS (Denial of Service).
9239fbffebc7f27da01750df0381a2801292c0c7b99ddaa8f70b612be2d18560
Secunia Security Advisory - Some vulnerabilities have been reported in the Backend Localization plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
77a4086ca6f20e915785181730d0675252f56b8f6f763f25404ec336d2103498
Secunia Security Advisory - A weakness has been discovered in Scrutinizer NetFlow and sFlow Analyzer, which can be exploited by malicious, local users to bypass certain security restrictions.
eb4bc7c7983fbc936d2f8fc9acc61b3ad6789d493a3111747661dfc717954d3c
Secunia Security Advisory - A vulnerability has been reported in ICONICS GENESIS32 and ICONICS BizViz, which can be exploited by malicious, local users to gain escalated privileges.
a873e7efe03216b30da648df37190cfe2e7d2c76894d75aaf671a7b90ec9d078
Temenos T24 R07.03 suffers from an authentication bypass vulnerability as it fails to properly enforce access control on the password reset functionality.
02ff07cc29f837babb592db15e1183a5b60963952716001ea0a431f7960a4a04
Temenos T24 R07.03 suffers from a reflected cross site scripting vulnerability.
5a86a359330048bce578fad4d1e515585ab3ba67c08f61b0f8def7cf9c396e72
Symantec Web Gateway version 5.0.3.18 suffers from a remote blind SQL injection vulnerability in deptUploads_data.php.
3979d02fd58b3d8d425160bc812c8985dd4e717d3e8b65cbe4b4ce9d8c41fd1b
DataWatch Monarch Business Intelligence (BI) version 5.1 suffers from a blind XPath injection vulnerability in the administrative section.
3e0ec45c35080aac2af038b91791730e03ba16055058332c47d09bc62aab599e
DataWatch Monarch Business Intelligence (BI) version 5.1 suffers from a remote blind SQL injection vulnerability.
b490b61cddfb1646f4adbb097c40441e7e7963d4b9bc0f254dde7e16ee03d28f
DataWatch Monarch Business Intelligence (BI) version 5.1 suffers from a reflective cross site scripting vulnerability.
ec32eb30d78cfa43006c0637f0d72afa5a3d43bf5f740ba4eef97842fa1daac5
DataWatch Monarch Business Intelligence (BI) version 5.1 suffers from a cross site scripting vulnerability in the client section.
a56f2b5cc1afeece14c2a41f4faabc96b0f7f9edcef58badecb3fee221ce4bd7
DataWatch Monarch Business Intelligence (BI) version 5.1 suffers from a cross site scripting vulnerability in the administrative section.
ec32eb30d78cfa43006c0637f0d72afa5a3d43bf5f740ba4eef97842fa1daac5
Dr. Web Control Center version 6.00.3.201111300 suffers from a persistent script injection vulnerability.
851dfd59c6d9101c9e8c052a49bf2565ed6031d9562a93e808d4c5f2aacb003b
A security oversight has been discovered in LedgerSMB 1.3 which could allow a malicious user to cause a denial of service against LedgerSMB or otherwise affect the way in which certain forms of data would get entered.
4cd2f77e1b66b8024507a17ff8fd9246978a15c4237dcc46026b9a96ef1a1227
Debian Linux Security Advisory 2517-1 - Einar Lonn discovered that under certain conditions bind9, a DNS server, may use cached data before initialization. As a result, an attacker can trigger and assertion failure on servers under high query load that do DNSSEC validation.
1264cbf6ebe6d856f52045f33b4880823f6d6637579867ab6419f12fcd0c8aa0
Spark IM client version 2.6.3 suffers from a cryptography failure where the key for encrypting the passwords is stored statically in Encryptor.java. Tool included that will recover usernames and passwords.
9782253ae9795fa6cba9d6a8e3b03d59608adabe717e35b82a175473cd0bfd36