OpenCollab version 1.4.3 suffers from a persistent cross site scripting vulnerability.
47923527fa2c7f8f20ebe1a0ace855f08e55c50ba820fb32498c031b173b52a2Nucleus CMS version 3.63 suffers from a persistent cross site scripting vulnerability.
4d81bd3d0f627880ed68ff6fdb9945061d3a2527c367e47cee177ed93af94ddbA persistent cross-site scripting vulnerability in Newscoop version 3.5.1 can be exploited to execute arbitrary JavaScript.
f66ea8bdd11017391ef795c8f21de5f5781df107aaf04457c4e878c65eb1b2b6A reflected cross-site scripting vulnerability in netjukebox version 5.25 can be exploited to execute arbitrary JavaScript.
5b8226a2c45a0313eb586079c8e4b6be8cb226a704b81f446da02620efbf8055A cross-site request forgery vulnerability in GroupOffice version 3.6.22 can be exploited to create a new admin.
d357bb3898ee1f8b5cda1c456d3b60186f7c0483cf813e915a563f5dddba7c07A reflected cross-site scripting vulnerability in Collabtive version 0.6.5 can be exploited to execute arbitrary JavaScript.
822625bb8ed1a24dfc8be3787cc847db11947edb59153cad2295af256ba3da42Collabtive version 0.6.5 suffers from a cross site request forgery vulnerability.
25cb16b8a2cc7f855d3151d6853a33f00f970bbbe9a4b99fdf500f6f820ba48eA reflected cross-site scripting vulnerability in ClanSphere 2010.3 / CKEditor can be exploited to execute arbitrary JavaScript.
f1aadb89b83e6a13894d0ae59de5b756a76ff3d3939a1b548181f77df57885c3An arbitrary upload vulnerability in ClanSphere 2010.3 / CKEditor can be exploited to upload a PHP shell.
dc96b54ae257c03f13ce0d4dca62c1f62dd85ee4575ba2f910a65fcf9080a385SyndeoCMS version 2.8.02 suffers from cross site scripting, path disclosure, and remote SQL injection vulnerabilities.
8ec57af9de411a73364ac97f9436ec544a44a4ed4ecc3b11dd4e3365dd20c199Ripe Website Manager version 1.1 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
b82fdbfa1df295a67be0c1a3f3be2da4c5a0dbb94ead479a2601283f55ab2a6cOpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.
e657a68a0dd07b6c368fe00d1937671ad68ffa75f21313c5fc8553e7f3ebcfdcAvaya IP Office Manager version 8.1 TFTP denial of service exploit.
5a76b79e70e6a0433a594980830d9f10ef5058b71ab02123f3a7ca06b739890cDebian Linux Security Advisory 2202-1 - MPM_ITK is an alternative Multi-Processing Module for Apache HTTPD that is included in Debian's apache2 package.
b928a735f521bacebfb2c8190a7619edeff9aeca300224b2d84504d193d6561bSecunia Security Advisory - HP has issued an update for OpenSSL in HP-UX. This fixes multiple vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise an application using the library.
4f22cad1b146f567970784b136e79ba820eb097c27e7b032bf6bcea2dd6454b7Secunia Security Advisory - Multiple vulnerabilities have been discovered in xtcModified eCommerce Shopsoftware, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
2e883e73b3877abbd153e4ec746a3191cf1049060f35d1c054b804d6a9405c0aSecunia Security Advisory - BalaBit has acknowledged multiple vulnerabilities in syslog-ng Premium Edition, which can be exploited by malicious people to manipulate certain data and bypass certain security restrictions.
65be6dd4e29b5f24d540a9e657dc0acb9ec6e7b7c0f2fd866883bc8895fe217eSecunia Security Advisory - Ubuntu has issued an update for linux-lts-backport-maverick. This fixes multiple weaknesses and vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), expose system and potentially sensitive information, bypass certain security restrictions, gain escalated privileges, and conduct DNS cache poisoning attacks and by malicious people to cause a DoS and potentially compromise a vulnerable system.
c7d26cc7d977e6a977e51508e6d4968845c85e5bd2c6e62b203b3692ac9ab47fSecunia Security Advisory - A vulnerability has been reported in Apple iPhone iOS, which can be exploited by malicious people to compromise a vulnerable device.
4ca404bb386a61c3ee07e03daf7c440fe7d870c7282ded69cdf586b1ead8c81aSecunia Security Advisory - SUSE has issued an update for pango. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
fc42bc5e52f854e4f0c0c26f31d0596cc813146afd109620a4f77e08f66bbc4bSecunia Security Advisory - SUSE has issued an update for flash-player. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
68ac216524db3ee084261aeadc7011283d8d34faf868d8868c80d3ffc0d48924Secunia Security Advisory - A vulnerability has been reported in HP StorageWorks P4000 Virtual SAN Appliance Software, which can be exploited by malicious people to compromise a vulnerable system.
24446062eb90c4d17ea1ba0f83f4803c4913b1ec06f203037496bac6d2b93644Secunia Security Advisory - A vulnerability has been discovered in XMB, which can be exploited by malicious people to conduct cross-site request forgery attacks.
2b4a58eb064bc934ff380fcc9acb16c54949aa9c7c7ebe5ff894aa5569091c9dSecunia Security Advisory - Debian has issued an update for wireshark. This fixes several vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
069fd92b1646a886497c7b06c70731e86e1d804d6f4907d56e39c1d99f40b5b8Secunia Security Advisory - Dylan Wilder-Tack has reported a vulnerability in the Webform Block module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
3677f1f18fc98327c0fb324dbd9d2042101513500019e8829ae8200cc1ca4791
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed