Secunia Security Advisory - Some vulnerabilities have been discovered in LetoDMS, which can be exploited by malicious users and malicious people to disclose sensitive information and by malicious people to conduct cross-site request forgery attacks.
4c7dd7a90d28d1a46f84eb0e07ce60d4bb526597c17fd02f5616a3fd5fe702ffSecunia Security Advisory - Ubuntu has issued an update for pidgin. This fixes some weaknesses and some vulnerabilities, which can be exploited by malicious people to potentially compromise a user's system, cause a DoS (Denial of Service), and disclose sensitive information.
81dfc2034cadc5c6c0e6aa6979cbf26d45e4c11a6f614d3a9ca5a7ae334fee85Secunia Security Advisory - A vulnerability has been reported in MoinMoin, which can be exploited by malicious people to disclose sensitive information.
d9614f1970c05ab4d50bca6412dbdd79d8c2c415d4114edda4e41914505cd487Secunia Security Advisory - A security issue and a vulnerability have been reported in Rockwell Automation MicroLogix controllers, which can be exploited by malicious people to disclose sensitive information or bypass certain security restrictions.
0c77a9c658f93f32272570d17174cfd6040049f24e51e51f6fff113e25bd1ae6Secunia Security Advisory - Some vulnerabilities have been discovered in Thelia, which can be exploited by malicious people to conduct cross-site scripting attacks.
12c94a4cc6b2194ed59eaa5abcbe7086cd67e1512703e970770bfd16a982aeb9Secunia Security Advisory - Some vulnerabilities have been reported in Bits Video Script, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks.
28eea072f1b22ab41a001fe61dcd5db56ee45c3bf7c5083907126bfbf8fbd4eeSecunia Security Advisory - A vulnerability has been discovered in MySmartBB, which can be exploited by malicious people to conduct SQL injection attacks.
d555a683a7cd346d1c4d57ba441ba4123b733f9e26eda438cfac88737595fc49PonVFTP suffers from an insecure cookie handling vulnerability.
9cba9c876b3ed38848c82d82b137fcf54624c66225988b77c815bf7e93b06eccMandriva Linux Security Advisory 2010-014 - Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote attackers to overwrite arbitrary files via a. (dot dot) in a pathname within a.torrent file. The updated packages have been patched to correct this issue.
23df28e11bb44fe8ffca6711696225f393a4868b5f12ee6db077eaf6cf096efeDataLife Engine version 8.3 suffers from a remote file inclusion vulnerability.
e67092bfa2391601c13fe9bf9d28182c27762cbc3dc1fc5b82d25dd825e1d3ebSerials.ws version 1.0.4 PHP Clone Script suffers from a cross site scripting vulnerability.
701d02450b318b9e26e43b2f1d3169aa4baf3246385cd099890e5cc124b3f88aJokes Complete Website suffers from a cross site scripting vulnerability.
499e9974da7191eedaa5ef03b5ce9dbffd33b7f3e10367dfbb5351ebbc554bbaFatwiki version 1.0 suffers from a remote file inclusion vulnerability.
30ae9424d4bdf2305b06c402c6b8023a6eebad3ede08d849ec045faf70784ce3Mobile Chat version 2.0.2 suffers from a cross site scripting vulnerability.
3dda1521a8f752f734c564ac2704aa4e4f1c69984b2c1dd89185e3f7a43f3328vBulletin version 4.0.1 remote SQL injection exploit.
7ca16ed212665bed18d50cbdcc685b2bc7db4a49fb7753ba38ccbff91672dca8Mandriva Linux Security Advisory 2010-013 - Cross-site request forgery (CSRF) vulnerability in Transmission 1.5 before 1.53 and 1.6 before 1.61 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote attackers to overwrite arbitrary files via a. (dot dot) in a pathname within a.torrent file. The updated packages have been patched to correct these issues.
645f6e2956cd21abc6897932877a4cf16624d8a5590ec9be9a0d461297efda51MD5 Encryption / Decryption PHP Script suffers from a cross site scripting vulnerability.
77cc59b654a4442e4b48b54532021d6a3355bb06530cd9d10a61d90aa0fe7e20Soft Direct version 1.05 suffers from cross site scripting and direct access vulnerabilities.
c138f1c164e1b4621e3ac08258ce2cd95a046ce3058117d77f29433c4f41ed06Bits Video Script version 2.05 Gold suffers from cross site scripting, remote file inclusion and shell upload vulnerabilities.
2011448a3de4a2dd5dc864222e5329073dec92c14851debbd6ca2652e47d76dfASP A.ShopKart version 2.0 suffers from a database disclosure vulnerability.
b0eba3fcfb062f1718d6ecbd1301545732dae1281dbfe979242377eee1dbf62eUbuntu Security Notice 887-1 - Tim Starling discovered that LibThai did not correctly handle long strings. A remote attacker could use specially-formed strings to execute arbitrary code with the user's privileges.
c2cde22a1d635d3264a61a1ceca7edc77ee52a9dca43200055108e7ba6abd6b2AOL version 9.5 suffers from an Active-X related heap overflow vulnerability. Proof of concept code included.
2e39eb183962e25692426ca0c855760ff28049b1ab24340b1cebedf6b2e23a83MySmartBB version 1.7.9 suffers from a cross site scripting vulnerability.
597d856ca8eec026742d43d1e41832e49ebbfc40aaaca1e88f0d30541d9d39f3Whitepaper discussing SQL injection. Written in Portuguese.
edaf265484c5491983e11baab3b5fbf2b47295758d381e5f2e0946733f069288EFS Software Easy Chat Server version 2.2 buffer overflow exploit that launches calc.exe.
0c0eb7c2000767d0dd0e33e73ec26ded45b55235f61893b6fc92cdc5a0aaa5d8
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed