Secunia Security Advisory - AmnPardaz Security Research Team have reported some vulnerabilities in MegaBBS, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
79bf69e2ed65441a65fb2a59c5759b84f362870aa181f06eec4687ee116dbfb7Secunia Security Advisory - A vulnerability has been reported in KDE, which potentially can be exploited by malicious people to compromise a user's system.
dd6413ba8c96fcbad514cc0249bbe3457ae3b72005b776649e983ad88c13b3d9Secunia Security Advisory - Sun has acknowledged some vulnerabilities in Solaris, which can be exploited by malicious people to conduct cross-site scripting attacks.
25681ea595b060b55cb34618c513f5b33af63463a393f98cde6da5cfab878b98Secunia Security Advisory - Tan Chew Keong has reported a vulnerability in E-Post Mail Server, which can be exploited by malicious people to disclose sensitive information.
306a8af7ca3a2c7ea45d3702a6b5924db933451cdd14d8e8c2c5336da140a22fSecunia Security Advisory - Some vulnerabilities have been reported in various Bluemoon inc. modules for XOOPS, which can be exploited by malicious people to conduct cross-site scripting attacks.
459ce54eb87d7d41d3173e8215348c96fbd63f4d86aa89c1ff5ce7948537f2f6Secunia Security Advisory - Some vulnerabilities have been reported in ZoneMinder, which potentially can be exploited by malicious users to compromise a vulnerable system.
e501bff5928546fca7a47d4851c096e92914d5e97bec215cf95b6383a3bbe989Secunia Security Advisory - __GiReX__ has reported some vulnerabilities in miniBB, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
a94e18b16a10cd58b649e25afd8d52bf1b6fbc64c4137faf2fe69cc4248e432aSecunia Security Advisory - Red Hat has issued an update for java-1.4.2-bea. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions and potentially compromise a vulnerable system.
dff0cac41dd0d721e9d53f396aab9ca1517546a0b69dadbdfb07164b709845eeSecunia Security Advisory - Red Hat has issued an update for java-1.5.0-bea. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a user's system.
72432a99ed7e586cd41626cb4622d8607a26f63c33aac8d7b75e8ac64f8047f8FluentCMS suffers from a remote SQL injection vulnerability in view.php.
655f801e5c233ac5d46ae836d6eef984de0a0eedfe383bbf814e06ade5ba85b4Content Management System for Phprojekt version 0.6.1 suffers from a file disclosure vulnerability.
8aee4ae5d148d09346bd0ec9dfef5a702efca52e097b5de0f4364b590e32baf9Blind SQL injection exploit for ODFaq version 2.1.0.
861b2537317393d03ef37592bc02ae2ec51b6ab1248646bd38ab82871dd94ec4Blind SQL injection exploit that makes use of the Joomla com_alphacontent component.
5d546153f3378018a3843a7c41125deccca2323975df45d89bdd5df0de74c3a4The Jokes Site Script suffers from a SQL injection vulnerability in jokes.php.
912cbb7b97576517c2ab6ff102f6403e470e1c1ac0bbf5753ace14ca8941d2fbHP Software Update insecure method proof of concept exploit that makes use of Hpufunction.dll version 4.0.0.1.
27cb0c49586c35e2cef8d3827455ad763d9b76be4e0278ef3c538b47bdf99bf5BlueMaho is a graphical user interface for a suite of tools used to test the security of bluetooth devices. It is freeware, open source, written in python, and uses wxPyhon.
8e303c7eccf6783be90dbc8ce4edd951c83e623c1e6313b8db11a31b3c44b4fdMiniBB version 2.2a suffers from a cross site scripting vulnerability.
b0bd6f562b3f8dad731b6cb85f610e957105f05038f82459da8a35c2e09eb387MegaBBS Forum version 2.2 suffers from SQL injection and cross site scripting vulnerabilities.
79eeae701d5f9803bf5c9794d8af68df423590af24a4274456d51df28e9dfa57PHPizabi version 0.848b C1 HFP3 suffers from a database information disclosure vulnerability.
222bd05be1c62e8274c5a16b20183e069ba04a84d4f0df52f1fefc23a6083b9cCore Impulse suffers from a SQL injection vulnerability.
6eea4c5f032ea52df4ea5459a7449e53b0fd2615a1c43f38632b1f04f89475d9Debian Security Advisory 1561-1 - Christian Herzog discovered that within the Linux Terminal Server Project, it was possible to connect to X on any LTSP client from any host on the network, making client windows and keystrokes visible to that host.
7c1b5251834a193362f5581177021f87b6d1a3085067f563d362dd16b8fb66c2Debian Security Advisory 1560-1 - "The-0utl4w" discovered that the Kronolith, calendar component for the Horde Framework, didn't properly sanitize URL input, leading to a cross-site scripting vulnerability in the add event screen.
ddf2a2da5d9b6a9c10c93863aee86deb5776492682d945885c1974b6f96b0f8dDebian Security Advisory 1556-2 - An editorial mistake resulted in DSA-1556-1 not correctly applying the required change, making it ineffective. This DSA has been reissued as DSA-1556-2. It has been discovered that the Perl interpreter may encounter a buffer overflow condition when compiling certain regular expressions containing Unicode characters. This also happens if the offending characters are contained in a variable reference protected by the \Q...\E quoting construct. When encountering this condition, the Perl interpreter typically crashes, but arbitrary code execution cannot be ruled out.
9f8cd3907ab133e5951c8aea4aeeee4cb3b632247703458119918c8db48b9331Debian Security Advisory 1559-1 - It was discovered that phpGedView, an application to provide online access to genealogical data, performed insufficient input sanitising on some parameters, making it vulnerable to cross site scripting.
547376f7ec8b23494a36f211e326d8bd0a29884af1050355766dba347df524d7Debian Security Advisory 1492-2 - The security update DSA 1492-1 fixed the security problem below but introduced a new problem by not removing temporary directories in the ipp backend. This update corrects this.
edba386bcdc10d931bd1d6867df5086613efae03838af9ea9ee09515e8823f78
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed