Software and Script Bug Exploits
Main
Software Alerts
Software and Script Bug ExploitsSoftware Vulnerability
Random Feeds
Archives
| Feb 2009 | Jan 2009 | Dec 2008 | Nov 2008 | Oct 2008 | Sep 2008 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 | Apr 2008 | Mar 2008 | Feb 2008 | Jan 2008 | Dec 2007 | Nov 2007 |Sat, 31 May 08
Digital Smart Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30450/
A vulnerability has been discovered in Digital Smart Software products, which can be exploited by malicious people to compromise a user's system.
Sat, 31 May 08
HiFi Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30447/
A vulnerability has been discovered in various HiFi products, which can be exploited by malicious people to compromise a user's system.
Sat, 31 May 08
Gold Wave Editor NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30446/
A vulnerability has been discovered in Gold Wave Editor, which can be exploited by malicious people to compromise a user's system.
Sat, 31 May 08
Color7 Technology Products NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30459/
A vulnerability has been discovered in various Color7 Technology products, which can be exploited by malicious people to compromise a user's system.
Sat, 31 May 08
Kent Web Mart Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30444/
A vulnerability has been reported in Kent Web Mart, which can be exploited by malicious people to conduct cross-site scripting attacks.
Sat, 31 May 08
DVBBS login.asp SQL Injection Vulnerability
http://secunia.com/advisories/30455/
hackerb has reported a vulnerability in DVBBS, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 31 May 08
Total Audio Capture NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30451/
A vulnerability has been discovered in Total Audio Capture, which can be exploited by malicious people to compromise a user's system.
Sat, 31 May 08
Vista MP3 Recorder NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30439/
A vulnerability has been discovered in Vista MP3 Recorder, which can be exploited by malicious people to compromise a user's system.
Sat, 31 May 08
My Phone Files Media Studio NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30452/
A vulnerability has been discovered in My Phone Files Media Studio, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Total Audio Recorder and Editor NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30453/
A vulnerability has been discovered in Total Audio Recorder and Editor, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Easy Audio Redactor NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30454/
A vulnerability has been discovered in Easy Audio Redactor, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
CMS from Scratch Information Disclosure and File Upload
http://secunia.com/advisories/30448/
Stack has discovered some vulnerabilities in CMS from Scratch, which can be exploited by malicious users to disclose sensitive information and to compromise a vulnerable system.
Fri, 30 May 08
Crystal MP3 Recorder NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30456/
A vulnerability has been discovered in Crystal MP3 Recorder, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Focus Systems Products NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30424/
A vulnerability has been discovered in various Focus Systems products, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Audio Editor Plus NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30458/
A vulnerability has been discovered in Audio Editor Plus, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Powerful Audio Tool NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30457/
A vulnerability has been discovered in Powerful Audio Tool, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Airvae Commerce "pid" SQL Injection Vulnerability
http://secunia.com/advisories/30440/
QTRinux has reported a vulnerability in Airvae Commerce, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 30 May 08
Xerox DocuShare Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30426/
Doz has reported a vulnerability in Xerox DocuShare, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 30 May 08
Gentoo update for mplayer
http://secunia.com/advisories/30412/
Gentoo has issued an update for mplayer. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
RockN Audio NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30406/
A vulnerability has been discovered in RockN Audio, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Gentoo update for samba
http://secunia.com/advisories/30396/
Gentoo has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Fri, 30 May 08
IDrive Online Backup SSL Verification Security Issue
http://secunia.com/advisories/30434/
Heise Security has reported a security issue in IDrive Online Backup, which can be exploited by malicious people to conduct spoofing attacks.
Fri, 30 May 08
4U WMA MP3 Converter NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30418/
A vulnerability has been discovered in 4U WMA MP3 Converter, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Power Audio CD Grabber NCTAudioInformation2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30419/
A vulnerability has been discovered in Power Audio CD Grabber, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Power Audio CD Burner NCTAudioInformation2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30421/
A vulnerability has been discovered in Power Audio CD Burner, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
Alive MP3 WAV Converter NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30445/
A vulnerability has been discovered in Alive MP3 WAV Converter, which can be exploited by malicious people to compromise a user's system.
Fri, 30 May 08
CinematicMP3 NCTAudioInformation2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30395/
A vulnerability has been discovered in CinematicMP3, which can be exploited by malicious people to compromise a user's system.
Thu, 29 May 08
Calcium "CalendarName" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30431/
Marvin Simkin has discovered a vulnerability in Calcium, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 29 May 08
AhsayOBM / AhsayACB SSL Verification Security Issue
http://secunia.com/advisories/30436/
Heise Security has reported a security issue in Ahsay Online Backup Manager and Ahsay A-Click Backup, which can be exploited by malicious people to conduct spoofing attacks.
Thu, 29 May 08
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
http://secunia.com/advisories/30430/
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
Thu, 29 May 08
imlib2 PNM and XPM Buffer Overflow Vulnerabilities
http://secunia.com/advisories/30401/
Secunia Research has discovered two vulnerabilities in imlib2, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
Thu, 29 May 08
SteadyBackup Online Backup Manager SSL Verification Security Issue
http://secunia.com/advisories/30435/
Heise Security has reported a security issue in SteadyBackup Online Backup Manager, which can be exploited by malicious people to conduct spoofing attacks.
Thu, 29 May 08
BullGuard Backup Client SSL Verification Security Issue
http://secunia.com/advisories/30384/
Heise Security has reported a security issue in BullGuard Backup, which can be exploited by malicious people to conduct spoofing attacks.
Thu, 29 May 08
CA Internet Security Suite UmxEventCli.dll ActiveX Control Insecure Method
http://secunia.com/advisories/30420/
A vulnerability has been discovered in CA Internet Security Suite, which can be exploited by malicious people to overwrite arbitrary files.
Thu, 29 May 08
Fedora update for system-config-network
http://secunia.com/advisories/30399/
Fedora has issued an update for system-config-network. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
Thu, 29 May 08
Slackware update for samba
http://secunia.com/advisories/30442/
Slackware has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Thu, 29 May 08
PHPhotoalbum Two SQL Injection Vulnerabilities
http://secunia.com/advisories/30407/
cOndemned has discovered two vulnerabilities in PHPhotoalbum, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 29 May 08
Fedora update for cbrpager
http://secunia.com/advisories/30438/
Fedora has issued an update for cbrpager. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Thu, 29 May 08
rPath update for evolution
http://secunia.com/advisories/30437/
rPath has issued an update for evolution. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Thu, 29 May 08
CiscoWorks Common Services Unspecified Code Execution Vulnerability
http://secunia.com/advisories/30422/
A vulnerability has been reported in various Cisco products, which can be exploited by malicious people to compromise a vulnerable system.
Thu, 29 May 08
Fedora update for stunnel
http://secunia.com/advisories/30425/
Fedora has issued an update for stunnel. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.
Thu, 29 May 08
Debian update for libxslt
http://secunia.com/advisories/30393/
Debian has issued an update for libxslt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system.
Thu, 29 May 08
cbrPager Archive Handling Arbitrary Command Execution
http://secunia.com/advisories/30417/
A vulnerability has been reported in cbrPager, which can be exploited by malicious people to compromise a user's system.
Thu, 29 May 08
Fedora update for libpng10
http://secunia.com/advisories/30402/
Fedora has issued an update for libpng10. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, or potentially compromise an application using the library.
Thu, 29 May 08
Fedora update for kvm
http://secunia.com/advisories/30413/
Fedora has issued an update for kvm. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions or cause a DoS (Denial of Service).
Thu, 29 May 08
Symantec Backup Exec System Recovery Manager Directory Traversal
http://secunia.com/advisories/30432/
A vulnerability has been reported in Symantec Backup Exec System Recovery Manager, which can be exploited by malicious people to disclose potentially sensitive information and potentially compromise a vulnerable system.
Thu, 29 May 08
REVOKED: Adobe Flash Player Unspecified Vulnerability
http://secunia.com/advisories/30404/
A vulnerability has been reported in Adobe Flash Player, which can be exploited by malicious people to compromise a user's system.
Thu, 29 May 08
Samba "receive_smb_raw()" Buffer Overflow Vulnerability
http://secunia.com/advisories/30228/
Secunia Research has discovered a vulnerability in Samba, which can be exploited by malicious people to compromise a vulnerable system.
Thu, 29 May 08
OpenSSL Two Denial of Service Vulnerabilities
http://secunia.com/advisories/30405/
Two vulnerabilities have been reported in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 29 May 08
eMule X-Ray Unspecified Memory Corruption and Buffer Overflow
http://secunia.com/advisories/30292/
Some vulnerabilities have been reported in eMule X-Ray, which have unknown impacts.
Thu, 29 May 08
NCTSoft NCTAudioEditor NCTAudioGrabber2 ActiveX Control Buffer Overflows
http://secunia.com/advisories/30414/
Will Dormann has reported some vulnerabilities in NCTAudioEditor, which can be exploited by malicious people to compromise a user's system.
Thu, 29 May 08
NCTSoft Products NCTAudioInformation2 ActiveX Control Buffer Overflows
http://secunia.com/advisories/30415/
Will Dormann has reported some vulnerabilities in NCTAudioStudio and NCTAudioEditor, which can be exploited by malicious people to compromise a user's system.
Wed, 28 May 08
Debian update for linux-2.6
http://secunia.com/advisories/30368/
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or cause a DoS (Denial of service), and by malicious people to potentially cause a DoS.
Wed, 28 May 08
Creative Software AutoUpdate Engine ActiveX Control Buffer Overflow
http://secunia.com/advisories/30403/
A vulnerability has been reported in Creative Software AutoUpdate Engine ActiveX Control, which can be exploited by malicious people to compromise a user's system.
Wed, 28 May 08
CKGold "category_id" SQL Injection Vulnerability
http://secunia.com/advisories/30392/
Cr@zy_King has discovered a vulnerability in CKGold, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 28 May 08
DT Centrepiece "searchFor" Cross-Site Scripting and SQL Injection
http://secunia.com/advisories/30382/
Russ McRee has reported two vulnerabilities in DT Centrepiece, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Wed, 28 May 08
Slackware update for rdesktop
http://secunia.com/advisories/30380/
Slackware has issued an update for rdesktop. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Wed, 28 May 08
Ortro Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30398/
A vulnerability has been reported in Ortro, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 28 May 08
spamdyke "smtp_filter()" DATA Command Relay Vulnerability
http://secunia.com/advisories/30408/
A vulnerability has been reported in spamdyke, which can be exploited by malicious people to bypass certain security restrictions.
Wed, 28 May 08
Motorola RAZR JPEG Processing Buffer Overflow
http://secunia.com/advisories/30409/
A vulnerability has been reported in Motorola RAZR, which can be exploited by malicious people to compromise a vulnerable device.
Wed, 28 May 08
EMC AlphaStor Multiple Vulnerabilities
http://secunia.com/advisories/30410/
Some vulnerabilities have been reported in EMC AlphaStor, which can be exploited by malicious people to compromise a vulnerable system.
Wed, 28 May 08
rPath update for php
http://secunia.com/advisories/30411/
rPath has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious users to bypass certain security restrictions.
Wed, 28 May 08
rPath update for emacs
http://secunia.com/advisories/30303/
rPath has issued an update for emacs. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Wed, 28 May 08
Gentoo update for roundup
http://secunia.com/advisories/30274/
Gentoo has issued an update for roundup. This fixes some vulnerabilities and a security issue, where some have unknown impacts, while others can be exploited by malicious users to bypass certain security restrictions.
Wed, 28 May 08
MAXSITE "category" SQL Injection Vulnerability
http://secunia.com/advisories/30306/
Tesz has reported a vulnerability in MAXSITE, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 28 May 08
Quate CMS Multiple Vulnerabilities
http://secunia.com/advisories/30377/
Digital Security Research Group have discovered some vulnerabilities in Quate CMS, which can be exploited by malicious users to disclose and manipulate sensitive information, and by malicious people to conduct cross-site scripting attacks, disclose sensitive information, and compromise a vulnerable system.
Wed, 28 May 08
ClassSystem "teacher_id" SQL Injection Vulnerabilities
http://secunia.com/advisories/30365/
unohope has reported two vulnerabilities in ClassSystem, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 27 May 08
Linux Kernel Unspecified Vulnerability
http://secunia.com/advisories/30258/
A vulnerability with an unknown impact has been reported in the Linux Kernel.
Tue, 27 May 08
phpFix Two SQL Injection Vulnerabilities
http://secunia.com/advisories/30397/
unohope has reported two vulnerabilities in phpFix, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 27 May 08
TYPO3 sg_zfelib Extension SQL Injection Vulnerabilities
http://secunia.com/advisories/30400/
Some vulnerabilities have been reported in the sg_zfelib extension for TYPO3, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 27 May 08
TYPO3 kj_imagelightbox2 Extension Cross-Site Scripting
http://secunia.com/advisories/30386/
A vulnerability has been reported in the kj_imagelightbox2 extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 27 May 08
Safari Montage "forgotPW.php" Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30363/
Omer Singer has reported some vulnerabilities in Safari Montage, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 27 May 08
Mini CWB "connector.php" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30390/
CWH Underground has reported a vulnerability in Mini CWB, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 27 May 08
CuteFTP Directory Download Directory Traversal Vulnerability
http://secunia.com/advisories/29760/
Tan Chew Keong has reported a vulnerability in CuteFTP, which can be exploited by malicious people to compromise a user's system.
Tue, 27 May 08
Mambo Multiple Vulnerabilities
http://secunia.com/advisories/30343/
Some vulnerabilities have been reported in Mambo, which can be exploited by malicious people to conduct SQL injection or HTTP response splitting attacks.
Tue, 27 May 08
ThinkVantage System Update Missing SSL Certificate Chain Verification
http://secunia.com/advisories/30379/
Derek Callaway has reported a security issue in ThinkVantage System Update, which can be exploited by malicious people to conduct spoofing attacks.
Tue, 27 May 08
Debian update for mtr
http://secunia.com/advisories/30340/
Debian has issued an update for mtr. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Tue, 27 May 08
Starsgames Control Panel "st" Cross-Site Scripting
http://secunia.com/advisories/30321/
CWH Underground has reported a vulnerability in Starsgames Control Panel, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 27 May 08
phpRaider "pConfig_auth[phpbb_path]" File Inclusion
http://secunia.com/advisories/30375/
KaCaK has discovered a vulnerability in phpRaider, which can be exploited by malicious people to disclose sensitive information and to compromise a vulnerable system.
Tue, 27 May 08
plusPHP Short URL Multi-User Script "_pages_dir" File Inclusion
http://secunia.com/advisories/30373/
DR.TOXIC has reported a vulnerability in plusPHP Short URL Multi-User Script, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 27 May 08
OneCMS "load" Local File Inclusion Vulnerability
http://secunia.com/advisories/30378/
Digital Security Research Group has discovered a vulnerability in OneCMS, which can be exploited by malicious people to disclose sensitive information.
Tue, 27 May 08
encrypt Anubis Plugin Original File Size Weakness
http://secunia.com/advisories/30388/
A weakness has been reported in the Anubis plugin for encrypt, which can be exploited by malicious people to disclose potentially sensitive information.
Mon, 26 May 08
eMule Plus "staticservers.dat" Unspecified Vulnerability
http://secunia.com/advisories/30277/
A vulnerability with an unknown impact has been reported in eMule Plus.
Mon, 26 May 08
Xomol CMS Local File Inclusion and SQL Injection
http://secunia.com/advisories/30374/
DNX has discovered some vulnerabilities in Xomol CMS, which can be exploited by malicious people to disclose potentially sensitive information or conduct SQL injection attacks.
Mon, 26 May 08
SaraB Disclosure of DAR Encryption Ciphers
http://secunia.com/advisories/30394/
A security issue has been reported in SaraB, which can be exploited by malicious, local users to disclose sensitive information.
Mon, 26 May 08
MxBB Portal "page" SQL Injection Vulnerability
http://secunia.com/advisories/30318/
cOndemned has reported a vulnerability in MxBB Portal, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 26 May 08
Core FTP Directory Download Directory Traversal Vulnerability
http://secunia.com/advisories/30389/
Tan Chew Keong has reported a vulnerability in Core FTP, which can be exploited by malicious people to compromise a user's system.
Mon, 26 May 08
EntertainmentScript SQL Injection and Local File Inclusion
http://secunia.com/advisories/30311/
Two vulnerabilities have been reported in EntertainmentScript (ES), which can be exploited by malicious people to conduct SQL injection attacks and disclose sensitive information.
Mon, 26 May 08
libpam-pgsql Authentication Bypass Security Issue
http://secunia.com/advisories/30391/
A security issue has been reported in libpam-pgsql, which can be exploited by malicious people to bypass certain security restrictions.
Mon, 26 May 08
Sun Java System Web Server Advanced Search Cross-Site Scripting
http://secunia.com/advisories/30381/
A vulnerability has been reported in Sun Java System Web Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Mon, 26 May 08
RoomPHPlanning "idresa" SQL Injection Vulnerability
http://secunia.com/advisories/30376/
His0k4 has discovered a vulnerability in RoomPHPlanning, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 26 May 08
Slackware update for php
http://secunia.com/advisories/30387/
Slackware has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Mon, 26 May 08
rPath update for php
http://secunia.com/advisories/30345/
rPath has issued an update for php. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Mon, 26 May 08
Slackware update for mozilla-thunderbird
http://secunia.com/advisories/30370/
Slackware has issued an update for mozilla-thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, or potentially compromise a user's system.
Mon, 26 May 08
PCPIN Chat URL Redirection Script Cross-Site Scripting
http://secunia.com/advisories/30371/
A vulnerability has been reported in PCPIN Chat, which can be exploited by malicious people to conduct cross-site scripting attacks.
Sat, 24 May 08
HP-UX Secure Shell Unauthorized Access Vulnerability
http://secunia.com/advisories/30347/
A vulnerability has been reported in HP-UX, which can be exploited by malicious, local users to bypass certain security restrictions or cause a DoS (Denial of Service).
Sat, 24 May 08
phpFreeForum Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30372/
CWH Underground has reported some vulnerabilities in phpFreeForum, which can be exploited by malicious people to conduct cross-site scripting attacks.
Sat, 24 May 08
Cerberus Helpdesk Information Disclosure Security Issue
http://secunia.com/advisories/30344/
A security issue has been reported in Cerberus Helpdesk, which can be exploited by malicious people to disclose potentially sensitive information.
Fri, 23 May 08
AbleDating "keyword" SQL Injection Vulnerability
http://secunia.com/advisories/30366/
Ali Jasbi has reported a vulnerability in AbleDating, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 23 May 08
Sava CMS Cross-Site Scripting and SQL Injection
http://secunia.com/advisories/30367/
Russ McRee has reported some vulnerabilities in Sava CMS, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks.
Fri, 23 May 08
BMForum Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30369/
CWH Underground has reported some vulnerabilities in BMForum, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 23 May 08
Debian update for xine-lib
http://secunia.com/advisories/30337/
Debian has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Fri, 23 May 08
Fedora update for vsftpd
http://secunia.com/advisories/30354/
Fedora has issued an update for vsftpd. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
Fri, 23 May 08
Xerox WorkCentre Web Server Unspecified Script Insertion
http://secunia.com/advisories/30364/
A vulnerability has been reported in Xerox WorkCentre, which can be exploited by malicious people to conduct script insertion attacks.
Fri, 23 May 08
Apple iCal Memory Corruption Vulnerability
http://secunia.com/advisories/30350/
Rodrigo Carvalho has reported a vulnerability in Apple iCal, which can potentially be exploited by malicious people to compromise a vulnerable system.
Fri, 23 May 08
Barracuda Spam Firewall "email" Cross-Site Scripting
http://secunia.com/advisories/30362/
Mark Crowther has reported a vulnerability in Barracuda Spam Firewall, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 23 May 08
rPath update for gnutls
http://secunia.com/advisories/30355/
rPath has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Fri, 23 May 08
rPath update for mtr
http://secunia.com/advisories/30359/
rPath has issued an update for mtr. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Fri, 23 May 08
Stunnel OCSP Revoked Certificate Security Issue
http://secunia.com/advisories/30335/
A security issue has been reported in Stunnel, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 23 May 08
IBM HTTP Server Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30356/
IBM has acknowledged some vulnerabilities in IBM HTTP Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 23 May 08
Interchange Unspecified HTTP POST Request Denial of Service
http://secunia.com/advisories/30346/
A vulnerability has been reported in Interchange, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 22 May 08
IBM AIX Multiple Vulnerabilities
http://secunia.com/advisories/30349/
Some vulnerabilities have been reported in IBM AIX, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.
Thu, 22 May 08
Sun Solaris STREAMS Administrative Driver Denial of Service
http://secunia.com/advisories/30357/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Thu, 22 May 08
Debian update for libfishsound
http://secunia.com/advisories/30353/
Debian has issued an update for libfishsound. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
Thu, 22 May 08
Debian update for speex
http://secunia.com/advisories/30358/
Debian has issued an update for speex. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
Thu, 22 May 08
Red Hat update for nss_ldap
http://secunia.com/advisories/30352/
Red Hat has issued an update for nss_ldap. This fixes a security issue, which can be exploited by malicious people to manipulate certain data.
Thu, 22 May 08
Snort Fragmented IP Packets TTL Security Bypass
http://secunia.com/advisories/30348/
A vulnerability has been reported in Snort, which can be exploited by malicious people to bypass certain security restrictions.
Thu, 22 May 08
IBM AIX update for OpenSSH
http://secunia.com/advisories/30361/
IBM has acknowledged some vulnerabilities in OpenSSH, which can be exploited by malicious, local users to bypass certain security restrictions or disclose sensitive information.
Thu, 22 May 08
IBM AIX ftpd "quote cwd" Full Path Disclosure Weakness
http://secunia.com/advisories/30360/
A weakness has been reported in IBM AIX, which can be exploited by malicious people to disclose system information.
Thu, 22 May 08
IBM Lotus Sametime Community Services Multiplexer Buffer Overflow
http://secunia.com/advisories/30309/
A vulnerability has been reported in IBM Lotus Sametime, which can be exploited by malicious people to compromise a vulnerable system.
Thu, 22 May 08
Cisco IOS SSH Server Denial of Service
http://secunia.com/advisories/30322/
Some vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 22 May 08
Trillian Multiple Vulnerabilities
http://secunia.com/advisories/30336/
Some vulnerabilities have been reported in Trillian, which can be exploited by malicious people to compromise a user's system.
Thu, 22 May 08
SAP Web Application Server Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30334/
Digital Security Research Group has reported a vulnerability in SAP Web Application Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 22 May 08
Cisco Service Control Engine SSH Server Denial of Service Vulnerabilities
http://secunia.com/advisories/30316/
Some vulnerabilities have been reported in Cisco Service Control Engine, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 22 May 08
Cisco Voice Portal Privilege Escalation Vulnerability
http://secunia.com/advisories/30289/
A vulnerability has been reported in Cisco Voice Portal (CVP), which can be exploited by malicious users to gain escalated privileges.
Thu, 22 May 08
Ubuntu update for gnutls
http://secunia.com/advisories/30331/
Ubuntu has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Thu, 22 May 08
Red Hat update for vsftpd
http://secunia.com/advisories/30341/
Red Hat has issued an update for vsftpd. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
Thu, 22 May 08
Gentoo update for gnutls
http://secunia.com/advisories/30338/
Gentoo has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Thu, 22 May 08
Red Hat update for setroubleshoot
http://secunia.com/advisories/30339/
Red Hat has issued an update for setroubleshoot. This fixes two security issues, which can be exploited by malicious, local users to conduct script insertion attacks and to perform certain actions with escalated privileges.
Thu, 22 May 08
Red Hat update for bind
http://secunia.com/advisories/30313/
Red Hat has issued an update for bind. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions, and a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
Thu, 22 May 08
Red Hat update for dovecot
http://secunia.com/advisories/30342/
Red Hat has issued an update for dovecot. This fixes a weakness and a security issue, which can be exploited by malicious users to bypass certain security restrictions.
Thu, 22 May 08
Red Hat update for mysql
http://secunia.com/advisories/30351/
Red Hat has issued an update for mysql. This fixes some security issues and vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service), bypass certain security restrictions, and gain escalated privileges.
Thu, 22 May 08
Red Hat update for compiz
http://secunia.com/advisories/30329/
Red Hat has issued an update for compiz. This fixes a security issue, which can be exploited by malicious people with physical access to a system to bypass certain security restrictions.
Thu, 22 May 08
Fedora update for gnutls
http://secunia.com/advisories/30302/
Fedora has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Thu, 22 May 08
Fedora update for Django
http://secunia.com/advisories/30291/
Fedora has issued an update for Django. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 22 May 08
FicHive "letter" SQL Injection Vulnerability
http://secunia.com/advisories/30281/
A vulnerability has been discovered in FicHive, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 21 May 08
IBM Lotus Domino Web Server Cross-Site Scripting and Buffer Overflow
http://secunia.com/advisories/30310/
Some vulnerabilities have been reported in IBM Lotus Domino, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially compromise a vulnerable system.
Wed, 21 May 08
IBM Lotus Domino 6 Web Server Cross-Site Scripting and Buffer Overflow
http://secunia.com/advisories/30332/
Some vulnerabilities have been reported in IBM Lotus Domino, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially compromise a vulnerable system.
Wed, 21 May 08
Gentoo Update for Mozilla Products
http://secunia.com/advisories/30327/
Gentoo has issued updates for mozilla-firefox, mozilla-firefox-bin, seamonkey, seamonkey-bin, mozilla-thunderbird, mozilla-thunderbird-bin, and xulrunner. These fix some weaknesses and vulnerabilities, which can be exploited by malicious people to disclose sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, conduct spoofing attacks, or to compromise a user's system.
http://secunia.com/software_inspector/
Wed, 21 May 08
Gentoo update for clamav
http://secunia.com/advisories/30328/
Gentoo has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to cause a DoS (Denial of Service), or to compromise a vulnerable system.
Wed, 21 May 08
ComicShout "comic_id" SQL Injection Vulnerability
http://secunia.com/advisories/30319/
D3m0n has reported a vulnerability in ComicShout, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 21 May 08
Red Hat update for gnutls
http://secunia.com/advisories/30317/
Red Hat has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Wed, 21 May 08
Debian update for gnome-peercast
http://secunia.com/advisories/30325/
Debian has issued an update for gnome-peercast. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Wed, 21 May 08
Gentoo update for perl and libperl
http://secunia.com/advisories/30326/
Gentoo has issued an update for perl and libperl. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
Wed, 21 May 08
PHP-Jokesite "cat_id" SQL Injection Vulnerability
http://secunia.com/advisories/30314/
Cyb3r-1sT has reported a vulnerability in PHP-Jokesite, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 21 May 08
Debian update for gnutls13
http://secunia.com/advisories/30324/
Debian has issued an update for gnutls13. This fixes some vulnerabilities, which can be exploited to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Wed, 21 May 08
Debian update for peercast
http://secunia.com/advisories/30320/
Debian has issued an update for peercast. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Wed, 21 May 08
Debian update for phpgedview
http://secunia.com/advisories/30256/
Debian has issued an update for phpgedview. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Wed, 21 May 08
GnuTLS Multiple Vulnerabilities
http://secunia.com/advisories/30287/
Some vulnerabilities have been reported in GnuTLS, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Wed, 21 May 08
Borland Interbase 2007 Packet Processing Buffer Overflow
http://secunia.com/advisories/30299/
Damian Frizza has reported a vulnerability in Borland Interbase, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Wed, 21 May 08
Avaya CMS Solaris TCP Implementation SYN Flood Denial of Service
http://secunia.com/advisories/30125/
Avaya has acknowledged a vulnerability in CMS, which can be exploited by malicious people to cause a DoS (Denial of Service).
Wed, 21 May 08
Red Hat update for kernel
http://secunia.com/advisories/30294/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).
Wed, 21 May 08
PHP-Fusion Forum Rank System Local File Inclusion
http://secunia.com/advisories/30304/
Matrix86 has reported two vulnerabilities in the Forum Rank System module for PHP-Fusion, which can be exploited by malicious people to disclose sensitive information.
Wed, 21 May 08
Mtr "split_redraw()" Buffer Overflow Vulnerability
http://secunia.com/advisories/30312/
Adam Zabrocki has discovered a vulnerability in Mtr, which potentially can be exploited by malicious people to compromise a user's system.
Wed, 21 May 08
Foxit Reader "util.printf()" Buffer Overflow
http://secunia.com/advisories/29941/
Secunia Research has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user's system.
Tue, 20 May 08
TAGWORX.CMS Two SQL Injection Vulnerabilities
http://secunia.com/advisories/30149/
dun has reported two vulnerabilities in TAGWORX.CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 20 May 08
how2ASP Webboard "qNo" SQL Injection Vulnerability
http://secunia.com/advisories/30295/
CWH Underground has discovered a vulnerability in how2ASP Webboard, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 20 May 08
microSSys CMS "PAGES[]" File Inclusion Vulnerability
http://secunia.com/advisories/30264/
Raz0r has reported a vulnerability in microSSys CMS, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 20 May 08
Nagios CGI Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30283/
A vulnerability has been reported in Nagios, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 20 May 08
CA ARCserve Backup Multiple Vulnerabilities
http://secunia.com/advisories/30300/
Some vulnerabilities have been reported in CA ARCserve Backup, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 20 May 08
HP-UX useradd Security Bypass
http://secunia.com/advisories/30308/
A security issue has been reported in HP-UX, which can be exploited by malicious, local users to bypass certain security restrictions.
Tue, 20 May 08
Stunnel Windows Privilege Escalation Vulnerability
http://secunia.com/advisories/30297/
A vulnerability has been reported in Stunnel, which can be exploited by malicious, local users to gain escalated privileges.
Tue, 20 May 08
FireFTP Extension for Firefox Directory Traversal Vulnerability
http://secunia.com/advisories/30284/
Tan Chew Keong has reported a vulnerability in the FireFTP extension for Firefox, which can be exploited by malicious people to compromise a user's system.
Tue, 20 May 08
PhotoStockPlus Uploader Tool ActiveX Control Buffer Overflows
http://secunia.com/advisories/30305/
Will Dormann has reported some vulnerabilities in PhotoStockPlus Uploader Tool ActiveX control, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 20 May 08
dotCMS "search_query" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30307/
Russ McRee has reported a vulnerability in dotCMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 20 May 08
Multi-Page Comment System "CommentSystemAdmin" Security Bypass
http://secunia.com/advisories/30255/
t0pP8uZz has reported a vulnerability in Multi-Page Comment System, which can be exploited by malicious people to bypass certain security restrictions.
Tue, 20 May 08
bcoos "file" Information Disclosure Vulnerability
http://secunia.com/advisories/30035/
Lostmon has discovered a vulnerability in bcoos, which can be exploited by malicious users to disclose sensitive information.
Mon, 19 May 08
GNU/Gallery "show" Local File Inclusion Vulnerability
http://secunia.com/advisories/30301/
t0pP8uZz has discovered a vulnerability in GNU/Gallery, which can be exploited by malicious people to disclose sensitive information.
Mon, 19 May 08
CMS WebManager-Pro SQL Injection Vulnerabilities
http://secunia.com/advisories/30293/
dun has reported some vulnerabilities in CMS WebManager-Pro, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 19 May 08
testMaker Data Export Disclosure of Sensitive Information
http://secunia.com/advisories/30251/
A vulnerability has been reported in testMaker, which can be exploited by malicious users to disclose potentially sensitive information.
Mon, 19 May 08
Smeego "lang" Local File Inclusion Vulnerability
http://secunia.com/advisories/30138/
0in has discovered a vulnerability in Smeego, which can be exploited by malicious people to disclose sensitive information.
Mon, 19 May 08
Debian update for netpbm-free
http://secunia.com/advisories/30280/
Debian has issued an update for netpbm-free. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system.
Mon, 19 May 08
Debian update for php4
http://secunia.com/advisories/30288/
Debian has issued an update for php4. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, and malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
Mon, 19 May 08
SunShop Shopping Cart "id" SQL Injection Vulnerability
http://secunia.com/advisories/30282/
irvian has reported a vulnerability in SunShop Shopping Cart, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 19 May 08
WR-Meeting "msnum" File Disclosure Vulnerability
http://secunia.com/advisories/30296/
Cr@zy_King has discovered a vulnerability in WR-Meeting, which can be exploited by malicious people to disclose sensitive information.
Mon, 19 May 08
Fedora update for kernel
http://secunia.com/advisories/30252/
Fedora has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Mon, 19 May 08
TYPO3 sr_feuser_register Extension Multiple Vulnerabilities
http://secunia.com/advisories/30275/
Some vulnerabilities have been reported in the sr_feuser_register extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks or compromise a vulnerable system.
Mon, 19 May 08
Freelance Auction Script "pid" SQL Injection Vulnerability
http://secunia.com/advisories/30268/
t0pP8uZz has reported a vulnerability in Freelance Auction Script, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 19 May 08
Aruba Mobility Controller Authentication Bypass and Cross-Site Scripting
http://secunia.com/advisories/30262/
Some vulnerabilities have been reported in Aruba Mobility Controller, which can be exploited by malicious people to bypass certain security restrictions or to conduct cross-site scripting attacks.
Fri, 16 May 08
Model Search "cat" SQL Injection Vulnerability
http://secunia.com/advisories/30196/
cyb3r-1st has reported a vulnerability in Model Search, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 16 May 08
Blender Multiple Temporary File Security Issues
http://secunia.com/advisories/29842/
Some security issues have been discovered in Blender, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges.
Fri, 16 May 08
Kostenloses Linkmanagementscript Multiple Vulnerabilities
http://secunia.com/advisories/30201/
Some vulnerabilities have been discovered in Kostenloses Linkmanagementscript, which can be exploited by malicious people to conduct SQL injection attacks, disclose sensitive information, and to compromise a vulnerable system.
Fri, 16 May 08
Rantx "logininfo" Security Bypass Vulnerability
http://secunia.com/advisories/30279/
t0pP8uZz has discovered a vulnerability in Rantx, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 16 May 08
e107 BLOG Engine Plugin "rid" SQL Injection
http://secunia.com/advisories/30212/
Saime has discovered a vulnerability in the BLOG Engine plugin for e107, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 16 May 08
Pet Grooming Management System "useradded.php" Security Bypass
http://secunia.com/advisories/30254/
t0pP8uZz has discovered a vulnerability in Pet Grooming Management System, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 16 May 08
W1L3D4 Philboard Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/30278/
U238 has reported some vulnerabilities in W1L3D4 Philboard, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 16 May 08
68 Classifieds "cat" SQL Injection Vulnerability
http://secunia.com/advisories/30273/
HaCkeR_EgY has reported a vulnerability in 68 Classifieds, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 16 May 08
Interspire ActiveKB Admin Interface Cookie Security Bypass
http://secunia.com/advisories/30265/
t0pP8uZz has reported a security issue in Interspire ActiveKB, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 16 May 08
GForge Insecure Temporary Files
http://secunia.com/advisories/30088/
A security issue has been reported in GForge, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Fri, 16 May 08
Debian update for gforge
http://secunia.com/advisories/30286/
Debian has issued an update for gforge. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Fri, 16 May 08
Symantec Altiris Deployment Solution Multiple Vulnerabilities
http://secunia.com/advisories/30261/
Some vulnerabilities and security issues have been reported in Symantec Altiris Deployment Solution, which can be exploited by malicious, local users to gain escalated privileges or manipulate certain data, and by malicious people to disclose sensitive information, conduct SQL injection attacks, and to compromise a vulnerable system.
Fri, 16 May 08
Fusebox "FUSEBOX_APPLICATION_PATH" File Inclusion
http://secunia.com/advisories/30178/
MajnOoNxHaCkEr has discovered a vulnerability in Fusebox, which can be exploited by malicious people to disclose sensitive information and to compromise a vulnerable system.
Fri, 16 May 08
phpVID "query" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30152/
Russ McRee has reported a vulnerability in phpVID, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 16 May 08
Drupal Site Documentation Module Information Disclosure
http://secunia.com/advisories/30257/
A vulnerability has been reported in the Site Documentation module for Drupal, which can be exploited by malicious people to disclose sensitive information.
Fri, 16 May 08
LANAI CMS Multiple File Extensions Vulnerability
http://secunia.com/advisories/30263/
EgiX has discovered a vulnerability in LANAI CMS, which can be exploited by malicious people to compromise a vulnerable system.
Fri, 16 May 08
Oracle Application Server Portal Authentication Bypass
http://secunia.com/advisories/30140/
Deniz Cevik has reported a vulnerability in Oracle Application Server, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 16 May 08
AustinSmoke GasTracker "gastracker_admin" Security Bypass
http://secunia.com/advisories/30266/
t0pP8uZz has discovered a vulnerability in AustinSmoke GasTracker (AS-GasTracker), which can be exploited by malicious people to bypass certain security restrictions.
Fri, 16 May 08
Cisco Unified Communications Manager Multiple Denial of Service
http://secunia.com/advisories/30238/
Some vulnerabilities have been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 16 May 08
Fedora update for blender
http://secunia.com/advisories/30272/
Fedora has issued an update for blender. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Fri, 16 May 08
Feedback and Rating Script "listingid" SQL Injection
http://secunia.com/advisories/30267/
t0pP8uZz has reported a vulnerability in Feedback and Rating Script, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 16 May 08
PHP Classifieds Script "fatherID" SQL Injection Vulnerabilities
http://secunia.com/advisories/30209/
Cyb3r-1sT has reported some vulnerabilities in PHP Classifieds Script, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 16 May 08
Fedora update for clamav
http://secunia.com/advisories/30253/
Fedora has issued an update for clamav. which can be exploited by malicious people to cause a DoS (Denial of Service), or to compromise a vulnerable system.
Fri, 16 May 08
AJ Article "artid" SQL Injection Vulnerability
http://secunia.com/advisories/30215/
t0pP8uZz has reported a vulnerability in AJ Article, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 16 May 08
Linux Kernel Multiple Vulnerabilities
http://secunia.com/advisories/30241/
Some vulnerabilities have been reported in the Linux kernel, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to potentially cause a DoS (Denial of Service).
Wed, 14 May 08
Internet Explorer "Print Table of Links" Cross-Zone Scripting
http://secunia.com/advisories/30141/
Aviv Raff has discovered a vulnerability in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
Wed, 14 May 08
Advanced Image Hosting "t" SQL Injection Vulnerability
http://secunia.com/advisories/30207/
Stack-Terrorist has reported a vulnerability in Advanced Image Hosting (AIH), which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 14 May 08
Gentoo update for chicken
http://secunia.com/advisories/30219/
Gentoo has issued an update for chicken. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Wed, 14 May 08
Chicken PCRE Buffer Overflow Vulnerability
http://secunia.com/advisories/30155/
A vulnerability been reported in Chicken, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Wed, 14 May 08
Admidio "file" Information Disclosure
http://secunia.com/advisories/30170/
n3v3rh00d has reported a vulnerability in Admidio, which can be exploited by malicious people to disclose sensitive information.
Wed, 14 May 08
Net-snmp Perl Module "__snprint_value()" Buffer Overflow
http://secunia.com/advisories/30187/
A vulnerability has been reported in Net-snmp, which potentially can be exploited by malicious people to compromise a vulnerable system.
Wed, 14 May 08
UUDeview Insecure Temporary File Creation
http://secunia.com/advisories/30171/
Marco d'Itri has reported a vulnerability in UUDeview, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Wed, 14 May 08
Cisco Building Broadband Service Manager "msg" Cross-Site Scripting
http://secunia.com/advisories/30222/
Brad Antoniewicz has reported a vulnerability in Cisco Building Broadband Service Manager (BBSM), which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 14 May 08
PhotoStore Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/30194/
Some vulnerabilities have been reported in PhotoStore, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 14 May 08
Debian update for openssh
http://secunia.com/advisories/30249/
Debian has issued an update for openssh. This fixes a vulnerability, which can be exploited by malicious, local users to disclose potentially sensitive information and a security issue, which can lead to weak cryptographic key material.
Wed, 14 May 08
Ubuntu update for ssl-cert
http://secunia.com/advisories/30231/
Ubuntu has issued an update for ssl-cert. This fixes a security issue, which can lead to weak cryptographic key material.
Wed, 14 May 08
WordNet Multiple Buffer Overflow Vulnerabilities
http://secunia.com/advisories/30242/
Some vulnerabilities have been reported in WordNet, which potentially can be exploited by malicious people to compromise a vulnerable system.
Wed, 14 May 08
Django Login Form Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30250/
A vulnerability has been reported in Django, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 14 May 08
Meto Forum Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/30233/
U238 has reported some vulnerabilities in Meto Forum, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 14 May 08
e107 ZoGo-Shop Plugin "cat" SQL Injection Vulnerability
http://secunia.com/advisories/30232/
Cr@zy_King has discovered a vulnerability in the ZoGo-Shop plugin for e107, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 14 May 08
EQdkp "eqdkp_data" SQL Injection Vulnerability
http://secunia.com/advisories/30206/
A vulnerability has been discovered in EQdkp, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 14 May 08
AJ E-Commerce "cid" SQL Injection Vulnerability
http://secunia.com/advisories/30180/
t0pP8uZz has reported a vulnerability in AJ E-Commerce, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 14 May 08
Red Hat update for libvorbis
http://secunia.com/advisories/30237/
Red Hat has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library.
Wed, 14 May 08
Red Hat update for libvorbis
http://secunia.com/advisories/30247/
Red Hat has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library.
Wed, 14 May 08
libvorbis Multiple Vulnerabilities
http://secunia.com/advisories/30234/
Some vulnerabilities have been reported in libvorbis, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library.
Wed, 14 May 08
The Real Estate Script "docID" SQL Injection Vulnerability
http://secunia.com/advisories/30244/
HaCkeR_EgY has reported a vulnerability in The Real Estate Script, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 14 May 08
Automated Link Exchange Portal "cat_id" SQL Injection
http://secunia.com/advisories/30243/
HaCkeR_EgY has reported a vulnerability in Automated Link Exchange Portal, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 14 May 08
IDAutomation Barcode ActiveX Controls Insecure Methods
http://secunia.com/advisories/30246/
shinnai has discovered some vulnerabilities in various IDAutomation Barcode ActiveX controls, which can be exploited by malicious people to overwrite arbitrary files.
Wed, 14 May 08
Fedora update for libid3tag
http://secunia.com/advisories/30173/
Fedora has issued an update for libid3tag. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Wed, 14 May 08
CMS Made Simple Multiple File Extensions Vulnerability
http://secunia.com/advisories/30208/
EgiX has discovered a vulnerability in CMS Made Simple, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 13 May 08
Microsoft Publisher Object Handler Validation Vulnerability
http://secunia.com/advisories/30150/
A vulnerability has been reported in Microsoft Publisher, which can be exploited by malicious people to compromise a user's system.
Tue, 13 May 08
Microsoft Malware Protection Engine File Parsing Denial of Service
http://secunia.com/advisories/30172/
Two vulnerabilities have been reported in various Microsoft products, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 13 May 08
Ubuntu update for openssl
http://secunia.com/advisories/30221/
Ubuntu has issued an update for openssl. This fixes a security issue, which can lead to weak cryptographic key material.
Tue, 13 May 08
Debian OpenSSL Predictable Random Number Generator and Update
http://secunia.com/advisories/30220/
Debian has issued an update for OpenSSL. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system, and a security issue, which can lead to weak cryptographic key material.
Tue, 13 May 08
Build A Niche Store "q" Cross-Site Scripting
http://secunia.com/advisories/30153/
Russ McRee has reported a vulnerability in Build A Niche Store (BANS), which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 13 May 08
ZyXEL ZyWALL 100 "Referer" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30142/
Deniz Cevik has reported a vulnerability in ZyXEL ZyWALL 100, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 13 May 08
cPanel Cross-Site Scripting and Request Forgery Vulnerabilities
http://secunia.com/advisories/30166/
Matteo Carli has reported some vulnerabilities in cPanel, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
Tue, 13 May 08
Citrix Access Gateway Unspecified Authentication Bypass
http://secunia.com/advisories/30175/
A security issue has been reported in Citrix Access Gateway, which can be exploited by malicious people to bypass certain security restrictions.
Tue, 13 May 08
Novell Client Login Long Username/Context Buffer Overflow
http://secunia.com/advisories/30126/
laurent gaffié has discovered a vulnerability in Novell Client, which can be exploited by malicious people with physical access to cause a DoS (Denial of Service) or compromise a vulnerable system.
Tue, 13 May 08
wterm X11 Display Security Issue
http://secunia.com/advisories/30226/
A security issue has been reported in wterm, which can be exploited by malicious, local users to gain escalated privileges.
Tue, 13 May 08
rxvt-unicode X11 Display Security Issue
http://secunia.com/advisories/30224/
A security issue has been reported in rxvt-unicode, which can be exploited by malicious, local users to gain escalated privileges.
Tue, 13 May 08
aterm X11 Display Security Issue
http://secunia.com/advisories/30225/
A security issue has been reported in aterm, which can be exploited by malicious, local users to gain escalated privileges.
Tue, 13 May 08
Gentoo update for aterm, eterm, rxvt, mrxvt, multi-aterm, wterm, and rxvt-unicode
http://secunia.com/advisories/30229/
Gentoo has issued an update for aterm, eterm, rxvt, mrxvt, multi-aterm, wterm, and rxvt-unicode. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
Tue, 13 May 08
mrxvt X11 Display Security Issue
http://secunia.com/advisories/30227/
A security issue has been reported in mrxvt, which can be exploited by malicious, local users to gain escalated privileges.
Tue, 13 May 08
GNU Emacs "fast-lock-mode" File Processing Vulnerability
http://secunia.com/advisories/30199/
Morten Welinder has reported a vulnerability in GNU Emacs, which can be exploited by malicious people to compromise a user's system.
Tue, 13 May 08
Gentoo update for ptex
http://secunia.com/advisories/30168/
Gentoo has acknowledged some vulnerabilities in ptex, which can be exploited by malicious, local users to manipulate certain data and malicious people to compromise a user's system.
Tue, 13 May 08
Gentoo update for blender
http://secunia.com/advisories/30151/
Gentoo has issued an update for blender. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Tue, 13 May 08
Debian update for kernel
http://secunia.com/advisories/30164/
Debian has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Tue, 13 May 08
YABSoft Mega File Hosting Script "fid" SQL Injection Vulnerability
http://secunia.com/advisories/30210/
TurkishWarriorr has reported a vulnerability in YABSoft Mega File Hosting Script, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 13 May 08
Battle.net Clan Script "showmember" SQL Injection Vulnerability
http://secunia.com/advisories/30211/
Stack-Terrorist has discovered a vulnerability in Battle.net Clan Script, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 13 May 08
Kmita Mail "file" File Inclusion Vulnerability
http://secunia.com/advisories/30087/
M.Hasran Addahroni has reported a vulnerability in Kmita Mail, which can be exploited by malicious users to compromise a vulnerable system.
Tue, 13 May 08
BlogPHP Script Insertion and Cross-Site Scripting
http://secunia.com/advisories/30165/
David Sopas Ferreira has discovered two vulnerabilities in BlogPHP, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
Tue, 13 May 08
BIGACE Web CMS Multiple File Inclusion Vulnerabilities
http://secunia.com/advisories/30183/
BiNgZa has discovered some vulnerabilities in BIGACE Web CMS, which can be exploited by malicious people to disclose sensitive information and to compromise a vulnerable system.
Tue, 13 May 08
RakNet Autopatcher Server Unspecified SQL Injection Vulnerabilities
http://secunia.com/advisories/30200/
Some vulnerabilities have been reported in RakNet, which can potentially be exploited by malicious people to conduct SQL injection attacks.
Tue, 13 May 08
ActualAnalyzer "language" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30205/
David Vieira-Kurz has reported a vulnerability in ActualAnalyzer, which can be exploited by malicious people to conduct cross-site scripting attacks.
Mon, 12 May 08
Fedora update for cups
http://secunia.com/advisories/30190/
Fedora has issued an update for cups. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Mon, 12 May 08
SUSE Update for Multiple Packages
http://secunia.com/advisories/30202/
SUSE has issued updates for multiple packages. These fix some vulnerabilities, which can be exploited by malicious, local users to disclose and manipulate sensitive information, cause a DoS (Denial of Service), and gain escalated privileges, malicious users to cause a DoS and compromise a vulnerable system, and malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, cause a DoS, and compromise a vulnerable system.
http://secunia.com/software_inspector/
Mon, 12 May 08
Sarg Multiple Unspecified Buffer Overflows
http://secunia.com/advisories/30156/
Some vulnerabilities with unknown impacts have been reported in Sarg.
Mon, 12 May 08
Microsoft Windows CE Image Processing Vulnerabilities
http://secunia.com/advisories/30197/
Some vulnerabilities have been reported in Microsoft Windows CE, which potentially can be exploited by malicious people to compromise a vulnerable system.
Mon, 12 May 08
Fedora update for audacity
http://secunia.com/advisories/30191/
Fedora has issued an update for audacity. This fixes a security issue, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to delete arbitrary files and directories.
Mon, 12 May 08
Sun Solaris Print Service Unspecified Vulnerabilities
http://secunia.com/advisories/30184/
Some vulnerabilities have been reported in Sun Solaris, which potentially can be exploited by malicious people to compromise a vulnerable system.
Mon, 12 May 08
Gentoo update for inspircd
http://secunia.com/advisories/30163/
Gentoo has issued an update for inspircd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Mon, 12 May 08
Gentoo update for pngcrush
http://secunia.com/advisories/30174/
Gentoo has issued an update for pngcrush. This fixes a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information or potentially compromise a user's system.
Mon, 12 May 08
Pngcrush libpng Unknown Chunk Processing Uninitialized Memory Access
http://secunia.com/advisories/30157/
A vulnerability has been reported in Pngcrush, which can be exploited by malicious people to disclose potentially sensitive information or potentially compromise a user's system.
Mon, 12 May 08
Fedora update for bugzilla
http://secunia.com/advisories/30167/
Fedora has issued an update for bugzilla. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions or by malicious people to conduct cross-site scripting attacks.
Mon, 12 May 08
Fedora Directory Server Regular Expression Handler Buffer Overflow
http://secunia.com/advisories/30185/
A vulnerability has been reported in Fedora Directory Server, which can be exploited by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Mon, 12 May 08
Red Hat Directory Server Regular Expression Handler Buffer Overflow
http://secunia.com/advisories/30181/
A vulnerability has been reported in Red Hat Directory Server, which can be exploited by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Mon, 12 May 08
Gentoo update for firebird
http://secunia.com/advisories/30162/
Gentoo has acknowledged a security issue in firebird, which can be exploited by malicious people to bypass certain security restrictions.
Mon, 12 May 08
Internet Explorer "DisableCachingOfSSLPages" Weakness
http://secunia.com/advisories/30145/
A weakness has been reported in Internet Explorer, which may result in potentially sensitive information being inadvertently saved on a system.
Mon, 12 May 08
Debian update for php5
http://secunia.com/advisories/30158/
Debian has issued an update for php5. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, malicious users to bypass certain security restrictions, and malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Mon, 12 May 08
Debian update for rdesktop
http://secunia.com/advisories/30159/
Debian has issued an update for rdesktop. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Mon, 12 May 08
Gentoo update for moinmoin
http://secunia.com/advisories/30160/
Gentoo has issued an update for moinmoin. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
Sat, 10 May 08
Cyberfolio "rep" File Inclusion Vulnerability
http://secunia.com/advisories/30154/
RoMaNcYxHaCkEr has reported a vulnerability in Cyberfolio, which can be exploited by malicious people to compromise a vulnerable system.
Sat, 10 May 08
Yahoo! Assistant yNotifier.dll ActiveX Control Code Execution
http://secunia.com/advisories/30115/
Sowhat has reported a vulnerability in Yahoo! Assistant, which can be exploited by malicious people to compromise a user's system.
Sat, 10 May 08
Zarafa Script Insertion Vulnerabilities
http://secunia.com/advisories/30102/
Some vulnerabilities have been reported in Zarafa, which can be exploited by malicious people to conduct script insertion attacks.
Sat, 10 May 08
Slackware update for thunderbird
http://secunia.com/advisories/30094/
Slackware has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, or potentially compromise a user's system.
Sat, 10 May 08
Slackware update for php
http://secunia.com/advisories/30083/
Slackware has issued an update for php. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Sat, 10 May 08
Maian Search Cross-Site Scripting and SQL Injection Vulnerabilities
http://secunia.com/advisories/30072/
Khashayar Fereidani has discovered some vulnerabilities in Maian Search, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Sat, 10 May 08
SazCart Multiple File Inclusion Vulnerabilities
http://secunia.com/advisories/30148/
RoMaNcYxHaCkEr has discovered some vulnerabilities in SazCart, which can be exploited by malicious people to compromise a vulnerable system.
Sat, 10 May 08
Maian Recipe Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30067/
Khashayar Fereidani has reported some vulnerabilities in Maian Recipe, which can be exploited by malicious people to conduct cross-site scripting attacks.
Sat, 10 May 08
Maian Guestbook footer.php Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30071/
Khashayar Fereidani has discovered some vulnerabilities in Maian Guestbook, which can be exploited by malicious people to conduct cross-site scripting attacks.
Sat, 10 May 08
InfoBiz Server "keywords" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30120/
Russ McRee has reported a vulnerability in InfoBiz Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 9 May 08
Maian Uploader Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30096/
Khashayar Fereidani has discovered some vulnerabilities in Maian Uploader, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 9 May 08
vShare YouTube Clone "tid" SQL Injection Vulnerability
http://secunia.com/advisories/30144/
Saime has reported a vulnerability in vShare YouTube Clone, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 9 May 08
Maian Music Cross-Site Scripting and SQL Injection
http://secunia.com/advisories/30066/
Khashayar Fereidani has reported some vulnerabilities in Maian Music, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Fri, 9 May 08
TFTP Server SP Long Error Message Buffer Overflow
http://secunia.com/advisories/30147/
tixxDZ has discovered a vulnerability in TFTP Server SP, which can be exploited by malicious people to cause a DoS or compromise a vulnerable system.
Fri, 9 May 08
Ubuntu update for vorbis-tools
http://secunia.com/advisories/30119/
Ubuntu has issued an update for vorbis-tools. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system.
Fri, 9 May 08
OpenKM Document Export Security Issue
http://secunia.com/advisories/30137/
A security issue has been reported in OpenKM, which can be exploited by malicious users to disclose potentially sensitive information.
Fri, 9 May 08
Ubuntu update for gst-plugins-good0.10
http://secunia.com/advisories/30117/
Ubuntu has issued an update for gst-plugins-good0.10. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise an application using the library.
Fri, 9 May 08
Ubuntu update for speex
http://secunia.com/advisories/30104/
Ubuntu has issued an update for speex. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise an application using the library.
Fri, 9 May 08
Maian Links Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30065/
Khashayar Fereidani has discovered some vulnerabilities in Maian Links, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 9 May 08
SAP Internet Transaction Server wgate.dll Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30128/
A vulnerability has been reported in SAP Internet Transaction Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 9 May 08
Maian Greetings Cross-Site Scripting and SQL Injection Vulnerabilities
http://secunia.com/advisories/30069/
Khashayar Fereidani has reported some vulnerabilities in Maian Greetings, which can be exploited by malicious people to conduct cross-site scripting or SQL injection attacks.
Fri, 9 May 08
PostcardMentor "cat_fldAuto" SQL Injection Vulnerability
http://secunia.com/advisories/30127/
InjEctOr5 has reported a vulnerability in PostcardMentor, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 9 May 08
Maian Support Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30068/
Khashayar Fereidani has discovered some vulnerabilities in Maian Support, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 9 May 08
Maian Gallery "keywords" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30070/
Khashayar Fereidani has reported a vulnerability in Maian Gallery, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 9 May 08
Galleristic "cat" SQL Injection Vulnerability
http://secunia.com/advisories/30123/
cOndemned has discovered a vulnerability in Galleristic, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 9 May 08
MySQL MyISAM Table Privilege Check Bypass
http://secunia.com/advisories/30134/
A security issue has been reported in MySQL, which can be exploited by malicious, local users to bypass certain security restrictions.
Fri, 9 May 08
fipsCMS "lg" SQL Injection Vulnerability
http://secunia.com/advisories/30103/
InjEctOr has reported a vulnerability in fipsCMS, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 9 May 08
Red Hat update for gpdf
http://secunia.com/advisories/30019/
Red Hat has issued an update for gpdf. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Fri, 9 May 08
NetBSD update for OpenSSL
http://secunia.com/advisories/30124/
NetBSD has issued an update for OpenSSL. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
Fri, 9 May 08
Sphider Suggestion Feature "query" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30082/
Christian Holler has reported a vulnerability in Sphider, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 9 May 08
Sun Ray Server Software Kiosk Mode Vulnerability
http://secunia.com/advisories/30130/
A vulnerability has been reported in Sun Ray Server Software, which can be exploited by malicious users to compromise a vulnerable system.
Fri, 9 May 08
Tux CMS Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30121/
Hadi Kiamarsi has discovered some vulnerabilities in Tux CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 9 May 08
Sun Solaris TCP Implementation SYN Flood Denial of Service
http://secunia.com/advisories/30131/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 9 May 08
QEMU "drive_init()" Disk Format Security Bypass
http://secunia.com/advisories/30111/
A vulnerability has been reported in QEMU, which can be exploited by malicious, local users to bypass certain security restrictions.
Fri, 9 May 08
Sun Solaris Tk GIF Processing Buffer Overflow Vulnerabilities
http://secunia.com/advisories/30129/
Sun has acknowledged some vulnerabilities in the Tcl GUI Toolkit Library included in Solaris, which can be exploited by malicious people to compromise an application using the library.
Thu, 8 May 08
Sun Java System Web Server / Application Server JSP Information Disclosure
http://secunia.com/advisories/30122/
Sun has acknowledged a vulnerability in Sun Java System Web Server and Sun Java System Application Server, which can be exploited by malicious people to disclose certain sensitive information.
Thu, 8 May 08
Sun Java System Web Server Search Module Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30133/
Sun has acknowledged a vulnerability in Sun Java System Web Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 8 May 08
CMS Faethon "what" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30098/
RoMaNcYxHaCkEr has discovered a vulnerability in CMS Faethon, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 8 May 08
mvnForum "QuickReply" Script Insertion Vulnerability
http://secunia.com/advisories/30091/
Christian Holler has reported a vulnerability in mvnForum, which can be exploited by malicious users to conduct script insertion attacks.
Thu, 8 May 08
rdesktop Multiple Vulnerabilities
http://secunia.com/advisories/30118/
Some vulnerabilities have been reported in rdesktop, which can be exploited by malicious people to compromise a user's system.
Thu, 8 May 08
Musicbox "artistId" SQL Injection Vulnerability
http://secunia.com/advisories/30107/
HaCkeR-EgY has reported a vulnerability in Musicbox, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 8 May 08
Gentoo update for egroupware
http://secunia.com/advisories/30073/
Gentoo has issued an update for egroupware. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
Thu, 8 May 08
Gentoo update for wireshark
http://secunia.com/advisories/29971/
Gentoo has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 8 May 08
rPath update for kernel
http://secunia.com/advisories/30077/
rPath has issued an update for the kernel. This can be exploited by malicious, local users to cause a DoS (Denial of Service).
Wed, 7 May 08
Maian Weblog Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30060/
Khashayar Fereidani has discovered some vulnerabilities in Maian Weblog, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 7 May 08
Red Hat update for kernel
http://secunia.com/advisories/30110/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or gain escalated privileges.
Wed, 7 May 08
Red Hat update for kernel
http://secunia.com/advisories/30112/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), and by malicious, local users to cause a DoS, disclose potentially sensitive information, or gain escalated privileges.
Wed, 7 May 08
Red Hat update for kernel
http://secunia.com/advisories/30116/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or gain escalated privileges.
Wed, 7 May 08
Linux Kernel "fcntl_setlk()" SMP Reordered Access Vulnerability
http://secunia.com/advisories/30101/
A vulnerability has been reported in the Linux kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Wed, 7 May 08
Linux Kernel Multiple Vulnerabilities
http://secunia.com/advisories/30108/
Some vulnerabilities have been reported in the Linux kernel, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
Wed, 7 May 08
Nuke ET Security Bypass and Script Insertion Vulnerabilities
http://secunia.com/advisories/30061/
mrzayas has reported some vulnerabilities in Nuke ET, which can be exploited by malicious people to bypass certain security restrictions or conduct script insertion attacks.
Wed, 7 May 08
PHPEasyData "cat_id" SQL Injection Vulnerability
http://secunia.com/advisories/30076/
InjEctOr and ToTaL have discovered a vulnerability in PHPEasyData, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 7 May 08
Sun Solaris SSH X11 Forwarding Vulnerability
http://secunia.com/advisories/30086/
Sun has acknowledged a vulnerability in SSH included in Sun Solaris, which can be exploited by malicious, local users to disclose sensitive information or potentially perform actions with escalated privileges.
Wed, 7 May 08
Debian update for kazehakase
http://secunia.com/advisories/30106/
Debian has issued an update for kazehakase. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, and compromise a user's system.
Wed, 7 May 08
HP-UX update for Netscape Directory Server
http://secunia.com/advisories/30114/
HP-UX has issued an update for Netscape Directory Server (NDS). This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
Wed, 7 May 08
Ubuntu update for thunderbird
http://secunia.com/advisories/30105/
Ubuntu has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, or potentially compromise a user's system.
Wed, 7 May 08
Ubuntu update for openoffice.org
http://secunia.com/advisories/30100/
Ubuntu has issued an update for openoffice.org. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Wed, 7 May 08
Ubuntu update for emacs
http://secunia.com/advisories/30109/
Ubuntu has issued an update for emacs. This fixes some security issues, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Wed, 7 May 08
Ubuntu update for kdelibs
http://secunia.com/advisories/30113/
Ubuntu has issued an update for kdelibs. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
Wed, 7 May 08
Ubuntu update for ldm
http://secunia.com/advisories/30099/
Ubuntu has issued an update for ldm. This fixes a security issue, which can be exploited by malicious people to disclose sensitive information.
Wed, 7 May 08
HP-UX update for Apache with PHP
http://secunia.com/advisories/30040/
HP-UX has issued an update for Apache with PHP. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to bypass certain security restrictions, gain escalated privileges, or cause a DoS (Denial of Service).
Wed, 7 May 08
LifeType "newBlogUserName" Cross-Site Scripting
http://secunia.com/advisories/30092/
Khashayar Fereidani has discovered a vulnerability in LifeType, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 7 May 08
DeluxeBB SQL Injection and PHP Code Execution
http://secunia.com/advisories/30084/
EgiX has discovered two vulnerabilities in DeluxeBB, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct SQL injection attacks.
Wed, 7 May 08
ITCms Arbitrary PHP Code Execution Vulnerability
http://secunia.com/advisories/30059/
Cod3rZ has reported a vulnerability in ITCms, which can be exploited by malicious people to compromise a vulnerable system.
Wed, 7 May 08
Call of Duty 4: Modern Warfare Denial of Service
http://secunia.com/advisories/30050/
Luigi Auriemma has reported a vulnerability in Call of Duty 4: Modern Warfare, which can be exploited by malicious people to cause a DoS (Denial of Service).
Wed, 7 May 08
Online Rental Property Script "pid" SQL Injection
http://secunia.com/advisories/30090/
M.Hasran Addahroni has reported a vulnerability in Online Rental Property Script, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 7 May 08
Miniweb "historymonth" SQL Injection Vulnerability
http://secunia.com/advisories/30085/
HaCkeR-EgY has reported a vulnerability in Miniweb, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 6 May 08
Debian update for cacti
http://secunia.com/advisories/30045/
Debian has issued an update for cacti. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks.
Tue, 6 May 08
Gentoo update for horde
http://secunia.com/advisories/30047/
Gentoo has issued an update for horde. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, and by malicious users to disclose sensitive information and potentially compromise a vulnerable system.
Tue, 6 May 08
Invensys Wonderware InTouch SuiteLink Service Denial of Service
http://secunia.com/advisories/30063/
Core Security Technologies has reported a vulnerability in Invensys Wonderware InTouch, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 6 May 08
Ubuntu update for cups
http://secunia.com/advisories/30078/
Ubuntu has issued an update for cups. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
Tue, 6 May 08
Gentoo update for phpmyadmin
http://secunia.com/advisories/30034/
Gentoo has issued an update for phpmyadmin. This fixes a vulnerability, which can be exploited by malicious users to disclose sensitive information.
Tue, 6 May 08
cpLinks Cross-Site Scripting and SQL Injection Vulnerabilities
http://secunia.com/advisories/30024/
InjEctOr has reported some vulnerabilities in cpLinks, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Mon, 5 May 08
TYPO3 powermail Extension Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30079/
A vulnerability has been reported in the powermail extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.
Mon, 5 May 08
Zomplog "catname" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30062/
Khashayar Fereidani has discovered a vulnerability in Zomplog, which can be exploited by malicious people to conduct cross-site scripting attacks.
Mon, 5 May 08
SMartBlog Multiple Vulnerabilities
http://secunia.com/advisories/30057/
Some vulnerabilities have been discovered in SMartBlog, which can be exploited by malicious people to disclose potentially sensitive information and conduct SQL injection attacks.
Mon, 5 May 08
Bugzilla Security Bypass and Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30064/
Some vulnerabilities have been reported in Bugzilla, which can be exploited by malicious users to bypass certain security restrictions or by malicious people to conduct cross-site scripting attacks.
Mon, 5 May 08
Sun Solaris SCTP Denial of Service Vulnerabilities
http://secunia.com/advisories/29973/
Some vulnerabilities have been reported in Sun Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
Mon, 5 May 08
phpDirectorySource SQL Injection Vulnerabilities
http://secunia.com/advisories/30056/
InjEctOr and FishEr762 have discovered two vulnerabilities in phpDirectorySource, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 5 May 08
ChiCoMaS "q" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30080/
Hadi Kiamarsi has discovered a vulnerability in ChiCoMaS, which can be exploited by malicious people to conduct cross site scripting attacks.
Mon, 5 May 08
SysAid "searchField" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30074/
Yogesh Kulkarni has discovered a vulnerability in SysAid, which can be exploited by malicious people to conduct cross-site scripting attacks.
Mon, 5 May 08
LifeType "searchTerms" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30075/
IRCRASH has reported a vulnerability in LifeType, which can be exploited by malicious people to conduct cross-site scripting attacks.
Mon, 5 May 08
Debian update for cpio
http://secunia.com/advisories/29968/
Debian has issued an update for cpio. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Mon, 5 May 08
BlogMe PHP "id" SQL Injection Vulnerability
http://secunia.com/advisories/30058/
His0k4 has discovered a vulnerability in BlogMe PHP, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 5 May 08
rPath update for kernel
http://secunia.com/advisories/30017/
rPath has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
Mon, 5 May 08
Licq Multiple Connections Handling Vulnerability
http://secunia.com/advisories/30055/
A vulnerability has been reported in Licq, which can be exploited by malicious people to cause a DoS (Denial of Service).
Mon, 5 May 08
IBM Rational Build Forge Denial of Service
http://secunia.com/advisories/30081/
A vulnerability has been reported in IBM Rational Build Forge, which can be exploited by malicious people to cause a DoS (Denial of Service).
Sat, 3 May 08
Animal Shelter Manager Multiple Security Bypass Vulnerabilities
http://secunia.com/advisories/30041/
Some vulnerabilities have been reported in Animal Shelter Manager (ASM), which can be exploited by malicious users to bypass certain security restrictions.
Sat, 3 May 08
angelo-emlak Cross-Site Scripting and SQL Injection Vulnerabilities
http://secunia.com/advisories/29998/
U238 has discovered some vulnerabilities in angelo-emlak, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting and SQL injection attacks.
Sat, 3 May 08
AstroCam "picfile" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30039/
A vulnerability has been reported in AstroCam, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 2 May 08
WebGUI Data Form List View Unspecified Vulnerability
http://secunia.com/advisories/29985/
A vulnerability with an unknown impact has been reported in WebGUI.
Fri, 2 May 08
Novell GroupWise WebAccess Script Insertion
http://secunia.com/advisories/29969/
Juan Pablo Lopez Yacubian has reported a vulnerability in Novell GroupWise, which can be exploited by malicious people to conduct script insertion attacks.
Fri, 2 May 08
Mjguest "level" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30049/
IRCRASH has discovered a vulnerability in Mjguest, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 2 May 08
GraphicsMagick Insecure File Extension Processing
http://secunia.com/advisories/30008/
A security issue has been reported in GraphicsMagick, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 2 May 08
Linux Kernel Multiple Vulnerabilities
http://secunia.com/advisories/30044/
Some vulnerabilities have been reported in the Linux kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
Fri, 2 May 08
Debian update for kernel
http://secunia.com/advisories/30018/
Debian has issued an update for the kernel. This fixes some vulnerabilities and security issues, which can be exploited by malicious, local users to bypass certain security restrictions, cause a DoS (Denial of Service), or to potentially gain escalated privileges.
Fri, 2 May 08
vlbook Cross-Site Scripting and Local File Inclusion
http://secunia.com/advisories/30046/
IRCRASH has reported two vulnerabilities in vlbook, which can be exploited by malicious people to conduct cross-site scripting attacks or disclose sensitive information.
Fri, 2 May 08
ActualAnalyzer Lite "style" Local File Inclusion
http://secunia.com/advisories/30052/
IRCRASH has discovered a vulnerability in ActualAnalyzer, which can be exploited by malicious people to disclose sensitive information.
Fri, 2 May 08
PHP Multiple Vulnerabilities
http://secunia.com/advisories/30048/
Some vulnerabilities have been reported in PHP, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Fri, 2 May 08
Debian update for wordpress
http://secunia.com/advisories/30013/
Debian has issued an update for wordpress. This fixes a vulnerability, which can potentially be exploited by malicious people to disclose sensitive information.
Fri, 2 May 08
Harris WapChat Multiple File Inclusion Vulnerabilities
http://secunia.com/advisories/30022/
k1n9k0ng has discovered some vulnerabilities in Harris WapChat, which can be exploited by malicious people to compromise a vulnerable system.
Fri, 2 May 08
ALAXALA Networks AX Series BGP UPDATE Message Processing Denial of Service
http://secunia.com/advisories/30054/
A vulnerability has been reported in ALAXALA Networks AX series, which can be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 2 May 08
Robocode AWT Event Queue Security Bypass
http://secunia.com/advisories/30043/
A security issue has been reported in Robocode, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 2 May 08
Hitachi GR Series BGP UPDATE Message Processing Denial of Service
http://secunia.com/advisories/30028/
A vulnerability has been reported in Hitachi GR series routers, which can be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 2 May 08
IBM WebSphere Application Server Java Plugin Security Bypass
http://secunia.com/advisories/29976/
A vulnerability has been reported in IBM WebSphere Application Server, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 2 May 08
Nortel Multimedia Communication Server PC Client Buffer Overflow
http://secunia.com/advisories/30038/
A vulnerability has been reported in Nortel Multimedia Communication Server (MCS), which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 1 May 08
Project-Based Calendaring System File Disclosure Vulnerabilities
http://secunia.com/advisories/30015/
GoLd_M has discovered some vulnerabilities in Project-Based Calendaring System, which can be exploited by malicious people to disclose sensitive information.
Thu, 1 May 08
cPanel Cross-Site Request Forgery Vulnerabilities
http://secunia.com/advisories/30027/
Some vulnerabilities have been reported in cPanel, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Thu, 1 May 08
Red Hat update for thunderbird
http://secunia.com/advisories/30029/
Red Hat has issued an update for thunderbird. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system.
Thu, 1 May 08
Debian update for asterisk
http://secunia.com/advisories/30042/
Debian has issued an update for asterisk. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 1 May 08
SNMPc "SNMP TRAP" Packet Buffer Overflow Vulnerability
http://secunia.com/advisories/30036/
Wade Alcorn and John Heasman have reported a vulnerability in SNMPc, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Thu, 1 May 08
Akamai Download Manager Code Execution Vulnerability
http://secunia.com/advisories/30037/
A vulnerability has been reported in Akamai Download Manager, which can be exploited by malicious people to compromise a user's system.
Thu, 1 May 08
GNOME PeerCast "HTTP::getAuthUserPass()" Buffer Overflow Vulnerability
http://secunia.com/advisories/30020/
Nico Golde has reported a vulnerability in GNOME PeerCast, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.