LokiCMS versions 0.3.4 and below suffer from arbitrary file overwrite, code injection, file inclusion, and administrative hash retrieval vulnerabilities.
1f1ae5f7ff6a42b03c2ad92a0f0f650763fb628ba8d21cd22fc17631d394f5ceSocial Site Generator suffers from a remote file inclusion vulnerability.
068a18ecce2a07623b24cecb8233beca3bcf7a5bf4711e3170e6247d469cd0cbThe Joomla component Prayercenter versions 1.4.9 and below suffer from a remote SQL injection vulnerability.
4b15be7fbed6c59154e53a9e35fc69c7e876f68b9cbd848cbbe3f1fb6411ee66PassWiki versions 0.9.16 RC3 and below suffer from a local file inclusion vulnerability.
fb21db4eed1cc6a1f5a77d37b050a6f99d48fbcff85895bc9f45134036593a2aEasyWay CMS remote SQL injection exploit that takes advantage of index.php.
5ec8cbbe815badf339f3686ec3929f8452173838b9bb8a3a139435935a35bba1PHP Visit Counter versions 0.4 and below suffer from a SQL injection vulnerability.
2fb7b9f418f5b2cc4a03537db6103e25b831704e56d227ce2df1bf04b4d83eebAzureSites CMS suffers from insecure cookie handling and SQL injection vulnerabilities.
6225ce3cc939135da97775fe78631e956f768e6b51f9688f375ac39d79aebc75MD5 cracking program written in PHP that takes a wordlist.
f9b2902fc4fb1490642f1479890aa36065194d453cfced3a161862ffa51e08b9Debian Security Advisory 1588-2 - Johannes Bauer discovered an integer overflow condition in the hrtimer subsystem on 64-bit systems. This can be exploited by local users to trigger a denial of service (DoS) by causing the kernel to execute an infinite loop. Jan Kratochvil reported a local denial of service condition that permits local users on systems running the amd64 flavor kernel to cause a system crash. Paul Harks discovered a memory leak in the Simple Internet Transition (SIT) code used for IPv6 over IPv4 tunnels. This can be exploited by remote users to cause a denial of service condition. David Miller and Jan Lieskovsky discovered issues with the virtual address range checking of mmaped regions on the sparc architecture that may be exploited by local users to cause a denial of service. This updated advisory adds the linux-2.6 build for s390 and the fai-kernels build for powerpc which were not yet available at the time of DSA-1588-1.
ba90a6aefd8df1c311527c66c80ec64b3333553aad6c396380a46901f6d0d213Debian Security Advisory 1590-1 - Alin Rad Pop discovered that Samba contained a buffer overflow condition when processing certain responses received while acting as a client, leading to arbitrary code execution
aec232a5c875938b2d0d347e657fd94ca95fa622a6dd6d5c3ac988310ebc378fVMware Security Advisory - Several critical security vulnerabilities have been addressed in the newest releases of VMware's hosted product line. VMware Workstation versions 6.0.3 and earlier, VMware Player versions 2.0.3 and earlier, VMware ACE versions 2.0.3 and earlier, and VMware Fusion versions 1.1.1 and earlier are affected.
8c93656750d2594481c252544a4ae9731db471a2c2e561e33ca8a8215e9eea75BP Blog version 6.0 suffers from a remote blind SQL injection vulnerability in template_permalink.asp.
00175d8fb1b52a1edfc35030565e2a84f42ac321220582f055d828e61aa2e167Social Site Generator suffers from a remote SQL injection vulnerability.
3a8eefe0a45b6725327afec68f3e22e0e5267e17f47b2a7b5e448d64e0652aeeCMSimple version 3.1 local file inclusion and arbitrary file upload exploit.
45b1963cfae234a03e78886aab89f751e855c365c23147d8cb011ec950340f57PsychoStats versions 2.3.3 and below suffer from remote SQL injection vulnerabilities.
882a6c6e8def737118f4653a02ccfff5230eff60ebdbe2c40b70c27e967b3727Secunia Security Advisory - Gentoo has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
c8b790d85043597b091e4bfd2d3f87e31d9339f18938b19b23558c8ad165486aSecunia Security Advisory - Gentoo has issued an update for mplayer. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
439395ea0381e504909ef979a1f45def26ab0e56872af42f510ca4a4d762f17dSecunia Security Advisory - A vulnerability has been discovered in 4U WMA MP3 Converter, which can be exploited by malicious people to compromise a user's system.
5e0df869624a7ce78719e98b86889abdd6f7cdb92a529519de273dddcc543411Secunia Security Advisory - A vulnerability has been discovered in various Focus Systems products, which can be exploited by malicious people to compromise a user's system.
4240b9b1204145e80ab773519dd1640ba2d04af1567eda4f5869f6e35dbcc4fbSecunia Security Advisory - Doz has reported a vulnerability in Xerox DocuShare, which can be exploited by malicious people to conduct cross-site scripting attacks.
40d820b7bd74f5b287d1dbe03396a9f546888c407e410d74caf3bebb481e7f6cSecunia Security Advisory - Heise Security has reported a security issue in IDrive Online Backup, which can be exploited by malicious people to conduct spoofing attacks.
aa09868f550ec065ef210288c8ba5890980a9b383504c3080d1c6c09639279e5Secunia Security Advisory - A vulnerability has been discovered in Vista MP3 Recorder, which can be exploited by malicious people to compromise a user's system.
0db490089cee0103f3935654c8890e5f74df9840d508702f17070ff54aa34569Secunia Security Advisory - QTRinux has reported a vulnerability in Airvae Commerce, which can be exploited by malicious people to conduct SQL injection attacks.
ee34b56434e111f7b1a2266a0a4dcebe2c01b31b16aee11106af81efa518f4c0Secunia Security Advisory - A vulnerability has been reported in Kent Web Mart, which can be exploited by malicious people to conduct cross-site scripting attacks.
37d2dabc09f6bf86d52713b4368f55bdc96e4c121d660b8d936308a5ef39d3a9Secunia Security Advisory - Stack has discovered some vulnerabilities in CMS from Scratch, which can be exploited by malicious users to disclose sensitive information and to compromise a vulnerable system.
d8dbd1b355c4934131efb481b21e15ac5494590ab823f1de5cf6271a4ceab47b
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed