PHP Lite Admin versions 1.9.3 and below suffer from a PHP code injection vulnerability.
3a897b59d51cd8a739c4daecc9eaeca0a04ab42ea6f0efafd282a2f0a940c923Compact mass scanner for Cisco routers with default telnet/enable passwords.
867a0b5fd20fabea27f9b864ebcfd8aa4198e3378d494f86556283265b4301b0Orange HRM version 2.7.1 suffers from a persistent cross site scripting vulnerability.
43e75c2701bb946a7b775501f76bbaf709ace8b9e0a562b83aed7b1e8a943f25DefenseCode is going to be releasing details that allow for remote root compromise of a Cisco Linksys device.
cc345c67ac004f5d8a0f4d3402ead3913aec2388ba8d492b6d3fdaaa0be4e355SE46 from Cryptzone and Application Control from McAfee suffer from file handling issues that can allow for arbitrary binary execution.
efbcdf48625ce7bc7327f19051a636ea8f8e2c3089629f3de29c07c0d05ac2b9WordPress Gallery plugin version 3.8.3 suffers from an arbitrary file read vulnerability.
53fde8d2df0a47c183ebedd6f9ebbfca383484d402ee8eb3004bbbacb87a7f2aSlackware Security Advisory - New mozilla-firefox packages are available for Slackware 13.37, 14.0, and -current to fix security issues.
d733f2b55e028b7229f3dd6c6b1ee9cd1692acff74cb1901b08235aac9894c6fPrizm Content Connect version 5.1 suffers from a remote download and code execution vulnerability.
7ace198c0e8fe9862c5b068428b6d842af8fdfbe78822a19139d611c91c46320BT HomeHub version 3.0b has a remote vulnerability that can yield an attacker a root shell. Exploit code included.
c0d6d59e32c4113bf59bfc7217f3e658aad028ac4978ba276e451a4c3b03f97bRed Hat Security Advisory 2013-0155-01 - Ruby on Rails is a model-view-controller framework for web application development. Action Pack implements the controller and the view components. Active Record implements object-relational mapping for accessing database entries using objects. Active Support provides support and utility classes used by the Ruby on Rails framework. Multiple flaws were found in the way Ruby on Rails performed XML parameter parsing in HTTP requests. A remote attacker could use these flaws to execute arbitrary code with the privileges of a Ruby on Rails application, perform SQL injection attacks, or bypass the authentication using a specially-created HTTP request.
d825b1b57e1d6890cb94057f1685605a18e65bd563bbe43c07cec03d024e59d8Red Hat Security Advisory 2013-0154-01 - Ruby on Rails is a model-view-controller framework for web application development. Action Pack implements the controller and the view components. Active Record implements object-relational mapping for accessing database entries using objects. Active Support provides support and utility classes used by the Ruby on Rails framework. Multiple flaws were found in the way Ruby on Rails performed XML parameter parsing in HTTP requests. A remote attacker could use these flaws to execute arbitrary code with the privileges of a Ruby on Rails application, perform SQL injection attacks, or bypass the authentication using a specially-created HTTP request.
b89415f26cbe7df0292f8becc9d6c5ea880a07ca0ff91d3ddedb27ea9643cf93Red Hat Security Advisory 2013-0153-01 - Ruby on Rails is a model-view-controller framework for web application development. Action Pack implements the controller and the view components. Active Support provides support and utility classes used by the Ruby on Rails framework. Multiple flaws were found in the way Ruby on Rails performed XML parameter parsing in HTTP requests. A remote attacker could use these flaws to execute arbitrary code with the privileges of a Ruby on Rails application, perform SQL injection attacks, or bypass the authentication using a specially-created HTTP request.
18290fb693eb323ada51e08af1a59be026ee402a2ed7573762d67e8eb9289551The heise.de site suffers from a reflective cross site scripting vulnerability.
8fd7c85439a605e446c8c2cf6fd876c19e8cd23e97fc67b703b2472df1e97294The uk.ask.com site suffers from a cross site scripting vulnerability.
d02dc9b5ecfddb689cf57fc6a9a5f0736bc0a3ddb1d2c85a32365d8bab49d534The www.elitepartner.de site suffers from a REFERER-based cross site scripting vulnerability.
3a5739370ac00677e8ce70c188395bb7f6a1ccc2940c8c4135b13a056e87a498
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed