A stored cross site scripting vulnerability exists in Microsoft Windows SharePoint Services 2.0 where a malicious user can bypass sanitization and inject javascript into a web page they are editing.
de54a6cb63b016abf59cab3f7964511738229fd8484eb8c2dfc2ed77e80b45ce
Myspace.com's navigation menu can be replaced with a malicious menu via CSS code in the attacker's profile.
a3b9d50ae789cce4e96929980808df6b3eace71418a5cdfe6a186d22f8dae2b8
imwheel version 1.0.0pre11 uses a predictably named PID file for management of multiple imwheel processes. A race condition exists when the -k command-line option is used to kill existing imwheel processes. This race condition may be used by a local user to Denial of Service another user using imwheel, lead to resource exhaustion of the host system, or append data to arbitrary files.
f6ab085f417793a02d07c3de39249974381b31d162ecd131d00e5b53e4085e33