WordPress version 3.4.2 fails to invalidate a user's session upon logout. Although it clears the cookie in the browser, the system will still accept it.
c014ef129a0b5317177cb784c0dcd2c87090fa4bcf013947908df791f86d533aThe HackMiami 2013 Hackers Conference seeks to bring together the brightest minds within the information security industry and the digital underground. This conference will showcase cutting edge tools, techniques, and methodologies that are at the forefront of the global threatscape. The call for papers has been announced. It will take place in Miami, FL, USA in May of 2013.
037e52c6e0c240b15e127427207f01f44080e62a26a0e4f7d45311d25fc31ff7Sony PC Companion version 2.1 suffers from a boundary error in WebServices.dll when handling the value assigned to the 'bstrFile' item in the DownloadURLToFile function and can be exploited to cause a stack-based buffer overflow via an overly long string which may lead to execution of arbitrary code on the affected machine.
1b8f58d27bd44514aecfb7474faee685aaf87184b0f3d5a43bd93fe64016f4b9Topera is a brand new TCP port scanner under IPv6, with the particularity that these scans are not detected by Snort.
591c744698ada00f812cd2bae062173152d060dc4796b746a1157dcf07e16e57LogAnalyzer version 3.6.0 suffers from a cross site scripting vulnerability.
f890d7408490ef8e73e0a6ba7b407973a7e773f86abfa93c95a1a275450e27dbELBA 5 version 5.5.0 R00006 build 0796 suffers from remote SQL injection, unencrypted password storage, default credential use, and buffer overflow vulnerabilities.
c54c52eb248b249e3839005d54ed6fc24cfcb0ceb545a988aa2b640cf7a7f90cUbuntu Security Notice 1678-1 - A flaw was discovered in the Linux kernel's handling of new hot-plugged memory. An unprivileged local user could exploit this flaw to cause a denial of service by crashing the system.
62559927b001f06481765ac7e9c771cf97440110a3dd22f0c4c919628b52f57bUbuntu Security Notice 1677-1 - A flaw was discovered in the Linux kernel's handling of new hot-plugged memory. An unprivileged local user could exploit this flaw to cause a denial of service by crashing the system.
f053bc96da70219f1b99c0984721e7dd77a8eeb7a01f01020630e78647d3c322Ubuntu Security Notice 1679-1 - A flaw was discovered in the Linux kernel's handling of new hot-plugged memory. An unprivileged local user could exploit this flaw to cause a denial of service by crashing the system.
27aff78fdab40a5c82b425af7c841c60f44a428c2a5eeeaa70447276ad850440Banana Dance version B.2.6 suffers from local file inclusion, remote SQL injection, and improper access control vulnerabilities.
7e95cf4e35b826da73323e2068340d1504e654b6cf48268f922653b2f7de6e3aFireFly Mediaserver version 1.0.0.1359 suffers from a denial of service vulnerability that can be triggered by a NULL pointer dereference.
32f710929128a837905de7371632750aecfb1f0c76e6463bedec86ca624602c7Elite Bulletin Board version 2.1.21 suffers from multiple remote SQL injection vulnerabilities.
f6238bc2858a2e64a1c3b85e0997dc653e553e7e8701b8064c8c0e6b3ad71bbbDrupal Context third party module versions 6.x and 7.x suffer from an information disclosure vulnerability.
f06667b228bcba53ad2f30367c79694b35f335e41b9198c4bc20852347027fd1Drupal core versions 6.x and 7.x suffer from access bypass and arbitrary PHP code execution vulnerabilities.
863826bea3efe1f645f1de1e0773a3829b8f2f16709021caf44a55976aa6599fThis Metasploit module exploits a flaw in the SurgeFTP server's web-based administrative console to execute arbitrary commands.
9c5497a6325d67d7f481c7eb716e3d3140096da4260b045df2ab7396b276dad6gdb (GNU debugger) versions 7.5.1 and below ELF anti-debugging / reversing patcher that causes a NULL pointer dereference to trigger.
15210b5f30b75a27a8fe6e678bec4c924fc5aef2e3e9c1327f048ca3f2e13b9f
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed