VideoWhisper Live Streaming Integration version 4.27.3 suffers from cross site scripting, remote shell upload, information exposure, and path traversal vulnerabilities.
8589343b28cf5465cb971032b90d3806ffa103808d0ea8ff3382c08d32bb6003
GoldMP4Player version 3.3 local buffer overflow exploit.
e5381967f3870c2e06479eae5f6fe202bb149136fc53d671df52b80010800799
The German Telekom website suffered from a local file inclusion vulnerability.
b7fa37b22bc4bbcb19ac1e882d221051ad4c3c393229e09724ecba5cb14413d5
Bluetooth Photo Share Pro version 2.0 suffers from local file inclusion and remote arbitrary file upload vulnerabilities.
373723247bb674fdb182129aadcb6edbb943fb7ba1f53545391908392eb3d231
SAS for Windows versions 9.2, 9.3, and 9.4 suffer from a local buffer overflow vulnerability.
24769861835016b127bed896f8ade5c050efa0a1c159a8540888d617d43db899
GroupOffice version 5.0.44 suffers from multiple cross site scripting vulnerabilities.
5e9ecb41f455fc5ce8462aa3f2c84f75038ea0fb008529aa2033cd378c59c892
PHP-CMDB version 0.7.3 suffers from cross site scripting and remote SQL injection vulnerabilities.
a67d8b34f99f51d05ba0d86b8dd9d16c2587342e99d7267c8f8f0d015c02ef63
X2Engine version 3.7.3 suffers from cross site scripting, remote shell upload, and remote SQL injection vulnerabilities.
d3c14e2d6ce07bb3835b1588b086b2b1c63408940f717a399617a80e062e48bc
PHP Calendar version 2.0.1 suffers from multiple cross site scripting and information disclosure vulnerabilities.
d2a72263079a61bd29ed5e7830991d421fa3083c72d80bbfeee5123fb35db2d3
Moodle version 2.6.1 suffers from multiple cross site scripting vulnerabilities.
f982e66358058f04f37c7d3427ec64943263e1f5f996338826132ed3cb5e0ea1
Open-School Community Edition version 2.2 suffers from multiple persistent cross site scripting vulnerabilities.
8cfad8b0dbd6d1dc9edaaf32671ea326da8545af162c775f2ba22e84502b655e
This is a write up that discusses the Office 365 account hijacking via a known cookie re-use flaw with additional information.
8b145eea262a37634ef49cfb4f85780277f702f002b5acc7ddeedc40869e28d9
Barracuda Networks Backup Appliance suffers from a persistent cross site scripting vulnerability.
f4d19a941a32473be3476c14e4dd4d786e3314d84fc3533afcc5beffd9e90f0d
VideoWhisper Video Conference CMS suffers from a cross site scripting vulnerability.
ada59ed47e25c9aa182b43c0f1224c9573103add6abeb21639c8371f889c853e
Cisco Security Advisory - A vulnerability in Cisco Prime Infrastructure could allow an authenticated, remote attacker to execute arbitrary commands with root-level privileges. The vulnerability is due to improper validation of URL requests. An attacker could exploit this vulnerability by requesting an unauthorized command via a specific URL. Successful exploitation could allow an authenticated attacker to execute system commands with root-level privileges. Cisco has released free software updates that address this vulnerability. A software patch that addresses this vulnerability in all affected versions is also available. Workarounds that mitigate this vulnerability are not available.
2085552f3da2a1de4ba3036cf8124df7234b01446b9bb08ae5f19907c7e9ae85
HP Security Bulletin HPSBST02955 - Potential security vulnerabilities have been identified in 3rd party software used in HP XP P9000 Performance Advisor running Oracle and Apache Tomcat Software. HP has updated the Apache Tomcat and Oracle database software to address vulnerabilities affecting confidentiality, availability, and integrity. Revision 1 of this advisory.
7a0da1c21ab0ea1ff0e437cda710d643179e7469a520d96d54e7b1e4ad034845
Drupal Mime Mail third party module version 6.x and 7.x suffer from an access bypass vulnerability.
bcf2575491826b0710730dc39d915d6af8fe276f8edf30d29d0e119fe33af483
HP Security Bulletin HPSBPI02869 SSRT100936 3 - A potential security vulnerability has been identified with HP LaserJet MFP printers, HP Color LaserJet MFP printers, and certain HP LaserJet printers. The vulnerability could be exploited remotely to gain unauthorized access to files. Revision 3 of this advisory.
4c59ce6eebc678501a609d6ecc4489c93d0aac9371b86e05604dad9152f1ca81
Drupal Content Locking third party module versions 6.x and 7.x suffer from a cross site request forgery vulnerability.
16cd79d67b6d805f59cc01b989a8be123d70328cbc9af0cc97a00012b4b6168d
Apple Security Advisory 2014-02-25-3 - QuickTime 7.7.5 is now available and addresses multiple security issues related to denial of service and arbitrary code execution.
d19d51684f4d799bc85e0de254dedd61e3c5f79f8604e717e35213ae98ea6da9
Apple Security Advisory 2014-02-25-2 - Safari 6.1.2 and Safari 7.0.2 is now available and addresses an issue where visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution.
5f115e3656944c57ae6ad7a470d49b01ef3a6dc1308fcc4e1edf5fa848043874
Apple Security Advisory 2014-02-25-1 - OS X Mavericks 10.9.2 and Security Update 2014-001 is now available and addresses multiple security issues including the recent SSL vulnerability.
1d8f727073c1ea1d6289c8c7fa93c5237ad978b58d6ca700d78a6f12ea0f3b83
Barracuda Web Firewall version 6.1.0.016 suffers from a persistent script insertion vulnerability.
fa8731752b65dbe18c0a5dcb5bf6a32f993c8ace5f0907cd6d1366c6fc2cce5d
HP Security Bulletin HPSBMU02966 - A potential security vulnerability has been identified with HP Operations Orchestration. The vulnerability could be exploited to gain unauthorized access to information. Revision 1 of this advisory.
32d365b078cb65bcb4beceeac0ade27c68c83a77127c990b36aeb5f30104c0ba
Ubuntu Security Notice 2122-1 - It was discovered that FreeRADIUS incorrectly handled unix authentication. A remote user could successfully authenticate with an expired password. Pierre Carrier discovered that FreeRADIUS incorrectly handled rlm_pap hash processing. An authenticated user could use this issue to cause FreeRADIUS to crash, resulting in a denial of service, or possibly execute arbitrary code. The default compiler options for affected releases should reduce the vulnerability to a denial of service. Various other issues were also addressed.
0a995469005a5d9cd6cf4dd533400746453f53f7672a93339e2f298e285126ef