Ubuntu Security Notice USN-821-1 - Several flaws were discovered in the Firefox browser and JavaScript engines.
765a4fb7ecf61003458832a0e49f0cdaa2795e4160237713b7ece6fb3a540b77
T-HTB Manager version 0.5 suffers from multiple blind SQL injection vulnerabilities.
025a956f393c0995276e6e39d521dcf050b7d996721072dee0b244bcb116c5f5
An Image Gallery version 1.0 suffers from a remote directory traversal vulnerability.
9cd6f1c8b65f68899623a94d975b8d7ef7360585b2db1a1acb6b09f19ce7013f
Bo-Blog version 2.1.1 suffers from a remote command execution vulnerability.
c7f7e72242b7e90b2b353fcd6e076a20a4520247703734763ea5e073759bc484
SecurityTube.net is pleased to announce the CFP for SecurityTubeCon, the first hacker conference, to be held completely online! This conference will be held November 6th through the 8th, 2009.
d864c5180870c59e9bb08f13326a0e6a1201785bbba85dcba10adb7956e058fe
Mandriva Linux Security Advisory 2009-226.2 - The rad_decode function in FreeRADIUS before 1.1.8 allows remote attackers to cause a denial of service (radiusd crash) via zero-length Tunnel-Password attributes. NOTE: this is a regression error related to CVE-2003-0967. This update provides a solution to this vulnerability.
0b918aa332e19bce2d02dc779dd501b0f924a1ab00fb3da89a4010038fa16b3f
Mandriva Linux Security Advisory 2009-226.1 - aria2 has a buffer overflow which makes it crashing at least on mips. This update provides a solution to this vulnerability.
60c3404a1f6d367e49f4a4d3f28b9480026e866c8217df3132b5776796e8ea61
The TCP/IP-Stack of the Microsoft Windows XP/Vista Operating System is vulnerable to a remote resource exhaustion vulnerability. By taking advantage of this vulnerability, an attacker can cause a connection's Transmission Control Block (TCB) to remain in memory for an indefinite amount of time without the need for the attacker to further maintain the connection's activity.
15a60a5f477e09ee40822768593559d188cfaca8a7a7e280c79b97103571951d
INMATRIX Zoom Player Pro versions 6.0.0 and below integer overflow proof of concept exploit that creates a malicious .mid file.
8068a618273801d1abbefbecc33348890d78830d45abfe76f3be1db1c1e97bb1
QuadNX version Qx2 kernel-mode denial of service botnet system that has user-side control console aka Qcontroler, a kernel mode DDoS bot, user-mode part including latest linux kernel exploit and just one file php gate script.
3935d6160b91fb7a8b35509fd59ef1bc495389e7f5e6066d9f00f925f8ff7397
Advanced Comment System version 1.0 suffers from multiple remote file inclusion vulnerabilities.
9c98ca2260c46c1d7406e5789d79bd5b872815bff79e2cc1c5b1ee97b3b9e6d2
Lame Windows Vista / Windows 7 / Win2k8 R1 SP2 and beta R2 SMB 2.0 NEGOTIATE PROTOCOL REQUEST remote blue screen of death denial of service exploit.
1b9765f03f68b77cba216ddcee8c18047b3d0f7309727a6f8bfb55a329c216aa
This whitepaper discusses how misconfigurations and poor practices on social networks can lead to information disclosure. Written in Spanish.
c110cf0f0f3fbeb0b1e806b5f312c9302b0970434bed92c4d6588c840a477c3f
This whitepaper discusses remote code execution vulnerabilities due to misuse of system(). Written in Spanish.
45f96616260f2a7eae396479dfc687c25bbab36804bb4511bd57d8c775cd5203
phpNagios version 1.2.0 suffers from a local file inclusion vulnerability in menu.php.
f71eb127924b6bf709872399422a60b4c62e78218aca306c8dcb911693a4abf9
BuyDatingSite version 1.0 suffers from a cross site scripting vulnerability.
df1e2bf32213dfff4493bd047f96bc98624eb2ae5e086f24b675fd44ced8d185
Datemill version 1.0 suffers from cross site scripting vulnerabilities.
14b7978b5861793f1da7c14d585ec86bf764b318a6e7b87702fdc8aa3409596c
Match Agency BiZ version 1.0 suffers from cross site scripting vulnerabilities.
f7fd8ffc1e6f7d4c112ae52f34a0ffb4bfb79f38c950e2a84d47d66375ed145c
The Joomla Speech component suffers from a remote SQL injection vulnerability.
fe7f620511f8378311f2975ac32cd7570104fe624f8c504363d252a4a6bcef77
The Joomla Press Release component suffers from a remote SQL injection vulnerability.
13b7eddd3563f35b8066c55b1597e1d0cd7e2c1a173904cd807b1cd97f691b76
The Joomla Media Alert component suffers from a remote SQL injection vulnerability.
165ded7ef5069af7e6114571a32ec1437d4e476234aa5003b1966a9031000fb1
War FTPd version 1.82 RC 12 format string denial of service exploit that makes use of the LIST command.
2b9e152a8527b287501a34450739c725496b9fef5e60fefd0c238f53aafcc674
Media Player Classic version 6.4.9 integer overflow proof of concept exploit that creates a malicious .mid file.
d9262af4b196075c83ac946b27e1273a7b7a7a2e1152a9f554443433de5be114
OBOphiX versions 2.7.0 and below suffer from a remote file inclusion vulnerability in fonctions_racine.php.
d2d138eedadee70cda29793b53b6a514c4ec45a047284626bce629580dca0cc8
Model Agency Manager Pro suffers from a remote SQL injection vulnerability.
e70c724979a5876da8f1e0120b83a142b310f16725c006c8cd1553f25986518c