Bugzilla versions 3.1.1 through 3.2.3 and 3.3.1 through 3.3.4 suffer from an unauthorized bug change vulnerability.
876f9961a769b653d0920a4cfb4e695ca6b68735b26a84cd6a638eb4fcb5b414
Month of Twitter Bugs - Twellow suffered from a reflected cross site scripting vulnerability.
4e86cd7810ff29be5c79806f01a4db208f5d7dfc0a096ee5fbc32af817627926
origami is a Ruby framework designed to parse, analyze, edit, manipulate, forge, exploit PDF files. This is NOT a PDF rendering library. It aims at providing a scripting tool to generate and/or analyze malicious PDF files. As well, it can be used to create on-the-fly customized PDFs, or to inject (evil) code into already existing documents.
7405bfc439b78efdaa51fa0a0e50f65ec3a0fa667d5346b12c0813e56d269d1f
Lotus Sametime suffers from a user enumeration vulnerability. This is based on the time it takes to respond when authenticating credentials. IBM Lotus Instant Messaging and Web Conferencing (Sametime) version 6.5.1 is affected.
cdcae2dc33b38a562b1583b7879b5cbe70a7200ad54c82ce179f4a9c3891f31c
The Pwnie Awards ceremony will return for the third consecutive year to the BlackHat USA conference in Las Vegas. The award ceremony will take place during the BlackHat reception on Wed, July 29. The deadline for nominations is Wednesday, July 15.
d41345c93e4e6fbcbec9cc12b2810b67756a26764da817df33d9d5f20cdbf800
Mandriva Linux Security Advisory 2009-149 - The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests. Fixed a potential Denial-of-Service attack against mod_deflate or other modules, by forcing the server to consume CPU time in compressing a large file after a client disconnects. This update provides fixes for these vulnerabilities.
c6bfbf6ae9b456b47c4d752222f01574101f35126c28e68a785e4b7b9f9da0e4
It appears that more variables in Online Guestbook Pro version 5.1 suffer from cross site scripting issues, not just entry.
d7e4848e7bfbbce89d84411fd670af5198d9a19ee79ab9dd4933a56bac68096a
Statscode suffers from a cross site scripting vulnerability.
13f4fc63d02195d13a0ce7dd1cfee487a1a5655c004cd020b19acc2279348b43
EveryAuction version 1.53 suffers from a cross site scripting vulnerability.
f6653607771766ad6ab3a2a764786aed0145a929aa4aa6043d6b90a089576f9f
Secunia Security Advisory - Core Security Technologies has reported a vulnerability in Awingsoft Winds3D Viewer, which can be exploited by malicious people to compromise a user's system.
1f1a412563bacf606e3944b3f3f362d5b43f5ebed2e1aa58ffd6492c208b48dc
Secunia Security Advisory - A vulnerability has been reported in Adobe ColdFusion, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
179c81d68c79b61c6e7e9a3246bd23e4c3e61a9a0c79c377c257917daf6ecc55
Secunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious users to bypass certain security restrictions.
8b26a25a28307e63fb0aebb4c6c1376c61faf444c342ba83543c018ad23fc541
Secunia Security Advisory - Astaro has issued an update for IPsec. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
c8cc6f3de17af41f928b67824102326f93df65b9abb4153cb0b6d3d73ffb2294
Secunia Security Advisory - A vulnerability has been reported in ClanSphere, which can be exploited by malicious people to conduct cross-site scripting attacks.
a86da3fc5dcf90f4eb72863e6ded8346bd8790111a1b413dc064c0d1d4670843
Secunia Security Advisory - Two vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially compromise a user's system.
7a77b2a9e152dc7d6414d7d5c76ad041531f4b735586f07613e7545a7a6a70a0
Secunia Security Advisory - A vulnerability has been reported in Linea21, which can be exploited by malicious people to conduct cross-site scripting attacks.
1a0f120fad0e57b2794b776502a97523632a633793d43b19c2e5a2c5ac621d1a
Secunia Security Advisory - Moudi has reported a vulnerability in JNM Guestbook, which can be exploited by malicious people to conduct cross-site scripting attacks.
98d002ee8809a1ce1eccc71797ea3e6d131e4ee3d53ec1d1bf4af39512593cd2
Secunia Security Advisory - 599eme Man has reported a vulnerability in Rentventory, which can be exploited by malicious people to conduct cross-site scripting attacks.
74ea74398b58fbe210f41a886406416852857763e5aecae19c23c215c6d36b5b
Secunia Security Advisory - Some vulnerabilities have been reported in Alibaba Clone, which can be exploited by malicious people to conduct SQL injection attacks.
70abfc0b19db5835bae3003e4d5e183c10aa2f91e01c372111ef23cc15e5dc5a
Secunia Security Advisory - A vulnerability has been reported in Online Guestbook Pro, which can be exploited by malicious people to conduct cross-site scripting attacks.
eee5119b3662c0b9e506def3b2415e177a642f290ce709ea05094ff702ae8c86
Secunia Security Advisory - A vulnerability has been reported in eBay Enhanced Picture Services ActiveX control, which can be exploited by malicious people to compromise a user's system.
dea5dac49dd1cea2633c3d4a2af84bf3696662aee64a154cf580f9c66d5415cf
Secunia Security Advisory - A security issue has been reported in the Acajoom GPL component for Joomla!, which can be exploited by malicious people to potentially compromise a vulnerable system.
5473633258eef5e67ec0943310d0ab97b81a53e7f77bddb23f3267f9a09f8a3c
Secunia Security Advisory - Nikolaos Rangos has discovered a vulnerability in MySQL, which can be exploited by malicious users to cause a DoS (Denial of Service).
6ee8956f935553b3f82abb602a44c8380cfe2c0f7b88a3edcd593d1d1f647657
Secunia Security Advisory - A security issue has been reported in the Nodequeue module for Drupal, which can be exploited by malicious users to disclose potentially sensitive information.
96d3ba712cbed38b98b76dcfaec9932535b0845cc31d8734216d490d63efe2df
Secunia Security Advisory - A vulnerability with an unknown impact has been reported in IBM AIX.
dafcb747bb4509af593288e6ba45537bf0450e3435d5db33fb20884c0a11e184