B2B Trading Marketplace Script suffers from a remote SQL injection vulnerability.
be27f869b870e2dfab57ba241d2b5d06d121277a2afea8a8c0746dc857f474e7Classified Ads PLUS Scripts suffers from a remote SQL injection vulnerability.
76cd61af88792e5af989b22c00354be0c479d994741324dc700f3c1486c7242eInfoSec Institute security researcher Alec Waters has just released a new article on SLAAC Attacks. The basic premise is to use the default network configuration found on all Windows 7 (as well as Server 2008, Vista) installations to intercept and hijack all network traffic without any user knowledge or interaction.
e1c03a921b59cbcd99bb1635a0ef48f9cb08480612e4b545e77fedf777b7cdabUSBsploit is a proof of concept that will generate Reverse TCP backdoors (x86, x64, all ports) and malicious LNK files. USBsploit works through Meterpreter sessions with a light (27MB) modified version of Metasploit. The interface is a mod of SET. The Meterscript script usbsploit.rb of the USBsploit Framework can otherwise be used with the original Metasploit Framework.
ba0c227eb2deaf5ac82d595316b58bfc05a71b5907e3122397222bd523697a92Dream Vision Technologies suffers from a remote SQL injection vulnerability.
4885d2249869a537eafc5305e6a7810b64a2d4763d1a4b54b36dc88345afd10eTextpattern version 4.2.0 suffers from a cross site scripting vulnerability.
52bfef5da0cb1cc01fe5e2dbbcd79a1e211232d29f39ba407bb8d67d0da9126cStartSite.ir suffers from a cross site scripting vulnerability.
ccd56bf04d9bf394448b8a89f3bf99ab65c99696da0ac27e17f86ba92acd1e26PHPBoost version 3.0 suffers from a shell upload vulnerability.
a0dbdc0f4d9e08ef50aff7d1c3e20ce5bb2cc960f9ed98c3d2f7e60cbb5010d3Eleanor CMS version rc5 suffers from cross site scripting and remote SQL injection vulnerabilities.
db37f1e9ebf70795c241b882f4925b364e0c35e21166955f051d1ce90658e920UseBB version 1.0.11 suffers from cross site request forgery and local file inclusion vulnerabilities.
22c469614fb81d7859d6646dc7cf722803ce132694d10ea863e585e0d4205ac5Secunia Security Advisory - SUSE has issued an update for krb5 and nbd. This fixes two vulnerabilities, which can be exploited by malicious people to potentially compromise a vulnerable system.
9a053476dd04657a7dde3f5cf9e2a73fe1e2ed5151af932c0c800f11ccf898abSecunia Security Advisory - SUSE has acknowledged a vulnerability in the sap-es-tools package for SUSE Linux Enterprise Server 10, which can be exploited by malicious people to compromise a vulnerable system.
97787bd219798690d3aa715b3bfd00f8c22f8a07aee18ec16830f93b45286915Secunia Security Advisory - A vulnerability has been discovered in Rash CMS, which can be exploited by malicious people to conduct SQL injection attacks.
077b63e3833bc7efcdd7c540a903df5b9d1f94180652133cf0a0ce5868b48b9fSecunia Security Advisory - Fedora has issued an update for loggerhead. This fixes a vulnerability, which can be exploited by malicious users to conduct script insertion attacks.
c2eb7154db8b8423985e74f794507fa0e20124b7a6e2fcedd5226e5e35d0528bSecunia Security Advisory - A weakness has been reported in Perl, which can be exploited by malicious people to bypass certain security features.
e73c42da297a7a73ec706cc767cba7bc6b73a39abfa23d67a7b4cab1ad92f6f5Secunia Security Advisory - Debian has issued an update for tiff. This fixes some vulnerabilities, which can be exploited by malicious people to potentially compromise an application using the library.
f26b5e7ed88e9a7fc4e435752cc0a950af75861c81ca72eaf570cca771a17a81Secunia Security Advisory - Debian has issued an update for tgt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
c9aeb530e4329b3ccee488bba36a29889966fcbc00e6f8e9e2038a901963ddfdSecunia Security Advisory - A vulnerability has been discovered in spidaNews, which can be exploited by malicious people to conduct SQL injection attacks.
35507a396b9531d7e0c8f9b794308ec4f9434c8855eaa9a61f87827a25718e5fSecunia Security Advisory - SUSE has issued an update for evince. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
5ccb559126ce3afa9ee61792b22bfe19202d8196f65e98c0fe3879cdfcf75a39Secunia Security Advisory - Gjoko Krstic has discovered a vulnerability in DoceboLMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
974060441fdbba038ea02abba6b8944a6599c6f7d0c62dfb50b59b0032be836dSecunia Security Advisory - Red Hat has issued an update for logrotate. This fixes multiple security issues, which can be exploited by malicious, local users to disclose potentially sensitive information, cause a DoS (Denial of Service), and potentially gain escalated privileges.
48b011ab76f041a9bcf6bae5c61cb5f658e5b93a18f9690ff8ad44573c9b5542Secunia Security Advisory - SUSE has issued an update for php5. This fixes a weakness and some vulnerabilities, where one has unknown impacts and others can be exploited by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service).
75b849eea54d02b23e22e94041fa71d4eea90534dd313043e178a298f138e753Secunia Security Advisory - Fedora has issued an update for php-doctrine-Doctrine. This fixes two vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks.
b75b9c5dad963b35e91406025dc29ac0ab5e06dafdaee2b6ebef1e902a92a737Secunia Security Advisory - A vulnerability has been reported in IBM WebSphere Application Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
3b8a9fe55135d910544fb896fdd73f07cd85820fce27c6e5d67976a9b65794f1Secunia Security Advisory - SUSE has issued an update for otrs. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
108a7230d13d9f1a02734b42f20dcb805eb05a23079717984abb744b9d05b43d
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed