Software and Script Bug Exploits
Main
Software Alerts
Software and Script Bug ExploitsSoftware Vulnerability
Random Feeds
Archives
| Feb 2009 | Jan 2009 | Dec 2008 | Nov 2008 | Oct 2008 | Sep 2008 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 | Apr 2008 | Mar 2008 | Feb 2008 | Jan 2008 | Dec 2007 | Nov 2007 |Wed, 31 Dec 08
OpenEdit DAM Multiple Vulnerabilities
http://secunia.com/Advisories/33339/
Some vulnerabilities have been reported in OpenEdit DAM, which can be exploited by malicious people to conduct script-insertion and cross-site request forgery attacks.
Wed, 31 Dec 08
OpenEdit "catalogid" Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33296/
A vulnerability has been reported in OpenEdit, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 31 Dec 08
ViArt Shop Cross-Site Request Forgery Vulnerability
http://secunia.com/Advisories/33340/
Xia Shing Zee has reported a vulnerability in ViArt Shop, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Wed, 31 Dec 08
ThePortal2 File Upload Vulnerability
http://secunia.com/Advisories/33321/
siurek22 has discovered a vulnerability in ThePortal2, which can be exploited by malicious users to compromise a vulnerable system.
Wed, 31 Dec 08
FlexPHPDirectory Multiple Vulnerabilities
http://secunia.com/Advisories/33353/
Some vulnerabilities have been discovered in FlexPHPDirectory, which can be exploited by malicious people to conduct SQL injection attacks and compromise a vulnerable system.
Wed, 31 Dec 08
FlexPHPSite SQL Injection Vulnerabilities
http://secunia.com/Advisories/33347/
Some vulnerabilities have been reported in FlexPHPSite, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 31 Dec 08
Sepcity Shopping Mall "ID" SQL Injection Vulnerability
http://secunia.com/Advisories/33358/
Osmanizim has discovered a vulnerability in Sepcity Shopping Mall, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 31 Dec 08
Sepcity Faculty Portal "ID" SQL Injection Vulnerability
http://secunia.com/Advisories/33357/
Osmanizim has discovered a vulnerability in Sepcity Faculty Portal, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 31 Dec 08
Sepcity Classified Ads "ID" SQL Injection Vulnerability
http://secunia.com/Advisories/33354/
S.W.A.T. has discovered a vulnerability in Sepcity Classified Ads, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 31 Dec 08
RealNetworks Helix Server Multiple Vulnerabilities
http://secunia.com/Advisories/33360/
Some vulnerabilities have been reported in RealNetworks Helix Server, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Wed, 31 Dec 08
xterm DECRQSS Escape Sequence Vulnerability
http://secunia.com/Advisories/33318/
A vulnerability has been discovered in xterm, which can be exploited by malicious people to compromise a user's system.
Tue, 30 Dec 08
PHP-Fusion SQL Injection and Cross-Site Scripting
http://secunia.com/Advisories/33295/
Some vulnerabilities have been reported in PHP-Fusion, which can be exploited by malicious people to conduct cross-site scripting attacks, and malicious people to conduct SQL injection attacks.
Tue, 30 Dec 08
SPIP Multiple Vulnerabilities
http://secunia.com/Advisories/33307/
A vulnerability has been reported in SPIP, which can be exploited by malicious people to conduct SQL injection attacks. Two additional vulnerabilities with unknown impacts have also been reported.
Tue, 30 Dec 08
Hex Workshop Color Map Buffer Overflow Vulnerability
http://secunia.com/Advisories/33327/
Encrypt3d.M!nd has discovered a vulnerability in Hex Workshop, which potentially can be exploited by malicious people to compromise a user's system.
Tue, 30 Dec 08
MWP Blog System "id" SQL Injection Vulnerability
http://secunia.com/Advisories/33345/
A vulnerability has been discovered in MWP Blog System for PHP-Fusion, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 30 Dec 08
ForumApp Database Disclosure
http://secunia.com/Advisories/33344/
Cyber.Zer0 has discovered a security issue in ForumApp, which can be exploited by malicious people to disclose sensitive information.
Tue, 30 Dec 08
FlexPHPLink Pro File Upload Vulnerability
http://secunia.com/Advisories/33343/
Osirys has discovered a vulnerability in FlexPHPLink Pro, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 30 Dec 08
Joomla PaxGallery Component "gid" SQL Injection Vulnerability
http://secunia.com/Advisories/33352/
XaDoS has reported a vulnerability in the PaxGallery component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 30 Dec 08
DeluxeBB "delete*" SQL Injection Vulnerability
http://secunia.com/Advisories/33351/
StAkeR has discovered a vulnerability in DeluxeBB, which can be exploited by malicious users to conduct SQL injection attacks.
Tue, 30 Dec 08
Ultimate PHP Board "User-Agent" Script Insertion
http://secunia.com/Advisories/33329/
A vulnerability has been discovered in Ultimate PHP Board, which can be exploited by malicious people to conduct script insertion attacks.
Tue, 30 Dec 08
Perl Nopaste "language" Script Insertion Vulnerability
http://secunia.com/Advisories/33251/
A vulnerability has been discovered in Perl Nopaste, which can be exploited by malicious people to conduct script insertion attacks.
Tue, 30 Dec 08
eDNews File Inclusion and SQL Injection Vulnerabilities
http://secunia.com/Advisories/33336/
Some vulnerabilities have been discovered in eDNews, which can be exploited by malicious people to disclose sensitive information or conduct SQL injection attacks.
Tue, 30 Dec 08
eDContainer "lg" File Inclusion Vulnerability
http://secunia.com/Advisories/33335/
GoLd_M has reported a vulnerability in eDContainer, which can be exploited by malicious people to disclose sensitive information.
Tue, 30 Dec 08
webClassifieds SQL Injection Vulnerability
http://secunia.com/Advisories/33337/
AnGeL25dZ has reported a vulnerability in webClassifieds, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 29 Dec 08
Slackware update for seamonkey
http://secunia.com/Advisories/33298/
Slackware has issued an update for seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Mon, 29 Dec 08
PHPmotion Cross-Site Request Forgery Vulnerability
http://secunia.com/Advisories/33309/
Ausome1 has discovered a vulnerability in PHPmotion, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Mon, 29 Dec 08
Debian update for php-xajax
http://secunia.com/Advisories/33265/
Debian has issued an update for php-xajax. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
Mon, 29 Dec 08
Debian update for phppgadmin
http://secunia.com/Advisories/33263/
Debian has issued an update for phppgadmin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information.
Sat, 27 Dec 08
BloofoxCMS Local File Inclusion Vulnerabilities
http://secunia.com/Advisories/33135/
fuzion has discovered some vulnerabilities in BloofoxCMS, which can be exploited by malicious people to disclose sensitive information.
Sat, 27 Dec 08
Joomla Live Ticker Component "tid" SQL Injection Vulnerability
http://secunia.com/Advisories/33312/
boom3rang has discovered a vulnerability in the Live Ticker component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 27 Dec 08
phpEmployment File Upload Vulnerability
http://secunia.com/Advisories/33268/
ahmadbady has discovered a vulnerability in phpEmployment, which can be exploited by malicious people to compromise a vulnerable system.
Sat, 27 Dec 08
Joomla mDigg Component "category" SQL Injection Vulnerability
http://secunia.com/Advisories/33306/
A vulnerability has been reported in the mDigg component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 26 Dec 08
BlackJumboDog Authentication Bypass Vulnerability
http://secunia.com/Advisories/33334/
A vulnerability has been reported in BlackJumboDog, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 26 Dec 08
phpGreetCards File Upload and Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/33304/
ahmadbady has discovered some vulnerabilities in phpGreetCards, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a vulnerable system.
Fri, 26 Dec 08
BulletProof FTP Client Server Name Handling Buffer Overflow
http://secunia.com/Advisories/33322/
His0k4 has discovered a vulnerability in BulletProof FTP Client, which can be exploited by malicious people to compromise a user's system.
Fri, 26 Dec 08
Mayaa Error Page Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33333/
A vulnerability has been reported in Mayaa, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 26 Dec 08
phpAdBoard File Upload Vulnerability
http://secunia.com/Advisories/33300/
ahmadbady has discovered a vulnerability in phpAdBoard, which can be exploited by malicious people to compromise a vulnerable system.
Fri, 26 Dec 08
Fedora update for kvm
http://secunia.com/Advisories/33350/
Fedora has issued an update for kvm. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions and cause a DoS (Denial of Service) or by malicious users to cause a DoS.
Fri, 26 Dec 08
FreeBSD ftpd Long Command Processing Vulnerability
http://secunia.com/Advisories/33341/
FreeBSD has acknowledged a vulnerability in ftpd, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Fri, 26 Dec 08
Sun SNMP Management Agent Insecure Temporary Files
http://secunia.com/Advisories/33328/
A security issue has been reported in Sun SNMP Management Agent, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Fri, 26 Dec 08
Avaya CMS Solaris "libICE" Denial of Service Vulnerability
http://secunia.com/Advisories/33325/
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 26 Dec 08
Avaya CMS Solaris Kerberos Credential Renewal Denial of Service
http://secunia.com/Advisories/33313/
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Fri, 26 Dec 08
Avaya CMS Solaris SSH CBC Mode Plaintext Recovery Vulnerability
http://secunia.com/Advisories/33308/
Avaya has acknowledged a vulnerability in Avaya CMS, which potentially can be exploited by malicious people to disclose sensitive information.
Fri, 26 Dec 08
Fedora update for kernel
http://secunia.com/Advisories/33348/
Fedora has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Fri, 26 Dec 08
Fedora update for mediawiki
http://secunia.com/Advisories/33349/
Fedora has issued an update for mediawiki. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting and request forgery attacks.
Fri, 26 Dec 08
IBM Tivoli Netcool/Webtop Tomcat Vulnerability
http://secunia.com/Advisories/33330/
A vulnerability has been reported in IBM Tivoli Netcool/Webtop, which can be exploited by malicious people to disclose sensitive information.
Thu, 25 Dec 08
PGP Desktop PGPwded.sys Driver Denial of Service
http://secunia.com/Advisories/33310/
A vulnerability has been discovered in PGP Desktop, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 25 Dec 08
Psi File Transfer Service Packet Parsing Vulnerabilities
http://secunia.com/Advisories/33311/
sha0 has discovered some vulnerabilities in Psi, which can be exploited by malicious people to cause a DoS (Denial of Service).
Wed, 24 Dec 08
Gentoo update for imlib2
http://secunia.com/Advisories/33323/
Gentoo has issued an update for imlib2. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.
Wed, 24 Dec 08
Ubuntu update for perl
http://secunia.com/Advisories/33314/
Ubuntu has issued an update for perl. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
Wed, 24 Dec 08
Gentoo update for ampache
http://secunia.com/Advisories/33316/
Gentoo has issued an update for ampache. This fixes a security issue, which can be exploited by malicious local users to perform certain actions with escalated privileges.
Wed, 24 Dec 08
Ubuntu update for nagios2
http://secunia.com/Advisories/33320/
Ubuntu has issued an update for nagios2. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions or by malicious people to conduct cross-site request forgery attacks.
Wed, 24 Dec 08
Gentoo update for vlc
http://secunia.com/Advisories/33315/
Gentoo has issued an update for vlc. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Wed, 24 Dec 08
Gentoo update for clamav
http://secunia.com/Advisories/33317/
Gentoo has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Wed, 24 Dec 08
Yourplace Security Issue and Multiple Vulnerabilities
http://secunia.com/Advisories/33272/
Some vulnerabilities and a security issue have been discovered in Yourplace, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a vulnerable system.
Wed, 24 Dec 08
FreeBSD netgraph / bluetooth Sockets Privilege Escalation
http://secunia.com/Advisories/33209/
FreeBSD has acknowledged a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
Wed, 24 Dec 08
REDPEACH CMS "zv" SQL Injection Vulnerabilities
http://secunia.com/Advisories/33248/
Lidloses_Auge has reported some vulnerabilities in REDPEACH CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 24 Dec 08
Joomla Volunteer Management System Component "job_id" SQL Injection
http://secunia.com/Advisories/33271/
boom3rang has reported a vulnerability in the Volunteer Management System component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 24 Dec 08
MySQL Calendar "username" SQL Injection Vulnerability
http://secunia.com/Advisories/33266/
StAkeR has discovered a vulnerability in MySQL Calendar, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 24 Dec 08
TYPO3 phpMyAdmin Extension Cross-Site Request Forgery
http://secunia.com/Advisories/33246/
A vulnerability has been reported in the phpMyAdmin (phpmyadmin) extension for TYPO3, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Wed, 24 Dec 08
TYPO3 Simple File Browser Extension Information Disclosure
http://secunia.com/Advisories/33301/
A vulnerability has been reported in the Simple File Browser (simplefilebrowser) extension for TYPO3, which can be exploited by malicious people to disclose sensitive information.
Wed, 24 Dec 08
KVM VNC "protocol_client_msg()" Denial of Service
http://secunia.com/Advisories/33303/
A security issue has been reported in KVM, which can be exploited by malicious users to cause a DoS (Denial of Service).
Wed, 24 Dec 08
QEMU VNC "protocol_client_msg()" Denial of Service
http://secunia.com/Advisories/33293/
A security issue has been reported in QEMU, which can be exploited by malicious users to cause a DoS (Denial of Service).
Tue, 23 Dec 08
SolarCMS Forum Component "cat" SQL Injection Vulnerability
http://secunia.com/Advisories/33269/
athos has discovered a vulnerability in the Forum component for SolarCMS, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 23 Dec 08
Ubuntu update for nagios3
http://secunia.com/Advisories/33234/
Ubuntu has issued an update for nagios3. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions or by malicious people to conduct cross-site request forgery attacks.
Tue, 23 Dec 08
Ubuntu update for nagios-common
http://secunia.com/Advisories/33207/
Ubuntu has issued an update for nagios-common. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
Tue, 23 Dec 08
Wordpress Page Flip Image Gallery Plugin "book_id" File Disclosure
http://secunia.com/Advisories/33274/
GoLd_M has discovered a vulnerability in the Page Flip Image Gallery plugin for Wordpress, which can be exploited by malicious people to disclose sensitive information.
Tue, 23 Dec 08
Text Lines Rearrange Script "filename" File Disclosure Vulnerability
http://secunia.com/Advisories/33276/
SirGod has discovered a vulnerability in Text Lines Rearrange Script, which can be exploited by malicious people to disclose sensitive information.
Tue, 23 Dec 08
rPath update for dovecot
http://secunia.com/Advisories/33299/
rPath has issued an update for dovecot. This fixes a security issue, which can be exploited by malicious users to bypass certain security restrictions.
Tue, 23 Dec 08
Ubuntu update for imlib2
http://secunia.com/Advisories/33241/
Ubuntu has issued an update for imlib2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
Tue, 23 Dec 08
Trend Micro HouseCall ActiveX Control Arbitrary Code Execution
http://secunia.com/Advisories/31337/
Secunia Research has discovered a vulnerability in Trend Micro HouseCall, which can be exploited by malicious people to compromise a user's system.
Tue, 23 Dec 08
KafooeyBlog "lib/image_upload.php" Security Bypass Vulnerability
http://secunia.com/Advisories/33223/
Piker has discovered a vulnerability in KafooeyBlog, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 23 Dec 08
Ubuntu update for blender
http://secunia.com/Advisories/33243/
Ubuntu has issued an update for blender. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to compromise a vulnerable system.
Tue, 23 Dec 08
Joomla Hotel Booking System Component Multiple SQL Injection
http://secunia.com/Advisories/33215/
boom3rang has reported some vulnerabilities in the Hotel Booking System component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 23 Dec 08
KnowledgeTree Cross-Site Scripting and Privilege Escalation
http://secunia.com/Advisories/33277/
Some vulnerabilities have been reported in KnowledgeTree, which can be exploited by malicious users to gain escalated privileges and by malicious people to conduct cross-site scripting attacks.
Tue, 23 Dec 08
Constructr CMS "show_page" SQL Injection Vulnerability
http://secunia.com/Advisories/33250/
A vulnerability has been discovered in Constructr CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 23 Dec 08
PowerStrip "pstrip.sys" IOCTL Handling Privilege Escalation
http://secunia.com/Advisories/33249/
alex has discovered a vulnerability in PowerStrip, which can be exploited by malicious, local users to gain escalated privileges.
Tue, 23 Dec 08
K&S Shop File Upload Vulnerability
http://secunia.com/Advisories/33212/
mNt has reported a vulnerability in K&S Shop, which can be exploited by malicious people to compromise a vulnerable system.
Mon, 22 Dec 08
Emefa Guestbook Database Disclosure
http://secunia.com/Advisories/33245/
Cyber.Zer0 has discovered a security issue in Emefa Guestbook, which cab be exploited by malicious people to disclose sensitive information.
Mon, 22 Dec 08
Fedora update for rsyslog
http://secunia.com/Advisories/33287/
Fedora has issued an update for rsyslog. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
Mon, 22 Dec 08
Fedora update for drupal-views
http://secunia.com/Advisories/33289/
Fedora has issued an update for drupal-views. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks.
Mon, 22 Dec 08
Debian update for courier-authlib
http://secunia.com/Advisories/33259/
Debian has issued an update for courier-authlib. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 22 Dec 08
Red Hat update for flash-plugin
http://secunia.com/Advisories/33267/
Red Hat has issued an update for flash-plugin. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Mon, 22 Dec 08
Fedora update for libvirt
http://secunia.com/Advisories/33292/
Fedora has issued an update for libvirt. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
Mon, 22 Dec 08
webcamXP Directory Traversal Vulnerability
http://secunia.com/Advisories/33257/
nicx0 has discovered a vulnerability in webcamXP, which can be exploited by malicious people to disclose sensitive information.
Mon, 22 Dec 08
ReVou Twitter Clone Multiple Vulnerabilities
http://secunia.com/Advisories/33247/
Some vulnerabilities have been reported in ReVou Twitter Clone, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to potentially compromise a vulnerable system.
Mon, 22 Dec 08
Debian update for avahi
http://secunia.com/Advisories/33279/
Debian has issued an update for avahi. This fixes a security issue and a vulnerability, which can be exploited by malicious, local users and by malicious people to cause a DoS (Denial of Service).
Mon, 22 Dec 08
SUSE update for flash-player
http://secunia.com/Advisories/33294/
SUSE has issued an update for flash-player. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Mon, 22 Dec 08
myPHPscripts Login Session Cross-Site Scripting and Information Disclosure
http://secunia.com/Advisories/33253/
Osirys has discovered a security issue and some vulnerabilities in myPHPscripts Login Session, which can be exploited by malicious people to conduct cross-site scripting attacks or disclose sensitive information.
Mon, 22 Dec 08
Debian update for proftpd-dfsg
http://secunia.com/Advisories/33261/
Debian has issued an update for proftpd-dfsg. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Mon, 22 Dec 08
rPath update for cups
http://secunia.com/Advisories/33260/
rPath has issued an update for cups. This fixes some vulnerabilities, which can potentially be exploited by malicious people to compromise a vulnerable system.
Mon, 22 Dec 08
Merak Mail Server Web Mail "IMG" HTML Tag Script Insertion
http://secunia.com/Advisories/32770/
Nenad Vijatov has discovered a vulnerability in Merak Mail Server, which can be exploited by malicious people to conduct script insertion attacks.
Mon, 22 Dec 08
Gentoo update for pdns
http://secunia.com/Advisories/33264/
Gentoo has issued an update for pdns. This fixes a weakness and a vulnerability, which can be exploited by malicious people to conduct spoofing attacks or cause a DoS (Denial of Service).
Sun, 21 Dec 08
Trend Micro HouseCall ActiveX Control "notifyOnLoadNative()" Vulnerability
http://secunia.com/Advisories/31583/
Secunia Research has discovered a vulnerability in Trend Micro HouseCall, which can be exploited by malicious people to compromise a user's system.
Sat, 20 Dec 08
ClaSS "ftype" Information Disclosure Vulnerability
http://secunia.com/Advisories/33222/
A vulnerability has been reported in ClaSS, which can be exploited by malicious people to disclose sensitive information.
Sat, 20 Dec 08
Fujitsu-Siemens WebTransactions Command Injection Vulnerability
http://secunia.com/Advisories/33168/
SEC Consult has reported a vulnerability in Fujitsu-Siemens WebTransactions, which can be exploited by malicious people to compromise a vulnerable system.
Sat, 20 Dec 08
Aiyoota! CMS SQL Injection Vulnerability
http://secunia.com/Advisories/33131/
Lidloses_Auge has reported a vulnerability in Aiyoota! CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 20 Dec 08
Courier Authentication Library Postgres SQL Injection Vulnerability
http://secunia.com/Advisories/33235/
A vulnerability has been reported in the Courier Authentication Library, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 20 Dec 08
SUSE update for MozillaFirefox and seamonkey
http://secunia.com/Advisories/33226/
SUSE has issued an update for MozillaFirefox and seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Sat, 20 Dec 08
Umer Inc. Songs Portal "id" SQL Injection Vulnerability
http://secunia.com/Advisories/33129/
Fisher has reported a vulnerability in Umer Inc. Songs Portal, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 20 Dec 08
ARB Insecure Temporary File Security Issue
http://secunia.com/Advisories/33191/
A security issue has been discovered in ARB, which can be exploited by malicious people to perform certain actions with escalated privileges.
Sat, 20 Dec 08
Sun Solaris "nscd" Security Bypass Vulnerability
http://secunia.com/Advisories/33218/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to bypass certain security restrictions and gain escalated privileges.
Sat, 20 Dec 08
I-Rater Basic "idp" SQL Injection Vulnerability
http://secunia.com/Advisories/33213/
boom3rang has reported a vulnerability in I-Rater Basic, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 20 Dec 08
Netatalk papd "popen()" Command Injection Vulnerability
http://secunia.com/Advisories/33227/
A vulnerability has been reported in Netatalk, which potentially can be exploited by malicious users to compromise a vulnerable system.
Sat, 20 Dec 08
Novell Identity Manager Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/33228/
Some vulnerabilities have been reported in Novell Identity Manager, which can be exploited by malicious people to conduct cross-site scripting attacks.
Sat, 20 Dec 08
Gobbl CMS "auth" Insecure Cookie Handling Vulnerability
http://secunia.com/Advisories/33190/
A vulnerability has been reported in Gobbl CMS, which can be exploited by malicious people to bypass certain security restrictions.
Sat, 20 Dec 08
Sophos Anti-Virus Products CAB Archive Processing Vulnerability
http://secunia.com/Advisories/33177/
A vulnerability has been reported in various Sophos Anti-Virus products, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Sat, 20 Dec 08
BitDefender Antivirus Scanner for Unices PE File Parsing Integer Overflows
http://secunia.com/Advisories/33240/
Some vulnerabilities have been reported in BitDefender, which potentially can be exploited by malicious people to compromise a vulnerable system.
Sat, 20 Dec 08
Phpclanwebsite Multiple Vulnerabilities
http://secunia.com/Advisories/33211/
s4avrd0w has discovered some vulnerabilities in Phpclanwebsite, which can be exploited by malicious people to disclose sensitive information or conduct SQL injection and cross-site scripting attacks.
Fri, 19 Dec 08
MyPHPsite "mod" Local File Inclusion Vulnerability
http://secunia.com/Advisories/33171/
Piker has discovered a vulnerability in MyPHPsite, which can be exploited by malicious people to disclose sensitive information.
Fri, 19 Dec 08
ESET Smart Security "epfw.sys" IOCTL Handler Privilege Escalation
http://secunia.com/Advisories/33210/
alex has discovered a vulnerability in ESET Smart Security, which can be exploited by malicious, local users to gain escalated privileges.
Fri, 19 Dec 08
Slackware update for mozilla-firefox
http://secunia.com/Advisories/33230/
Slackware has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Fri, 19 Dec 08
Red Hat update for java-1.4.2-bea
http://secunia.com/Advisories/33236/
Red Hat has issued an update for java-1.4.2-bea. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
Fri, 19 Dec 08
Red Hat update for java-1.5.0-bea
http://secunia.com/Advisories/33237/
Red Hat has issued an update for java-1.5.0-bea. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a vulnerable system.
Fri, 19 Dec 08
Red Hat update for java-1.6.0-bea
http://secunia.com/Advisories/33238/
Red Hat has issued an update for java-1.6.0-bea. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose system information or potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
Fri, 19 Dec 08
Ubuntu update for libvirt
http://secunia.com/Advisories/33217/
Ubuntu has issued an update for libvirt. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
Fri, 19 Dec 08
libvirt Security Bypass Issue
http://secunia.com/Advisories/33198/
A security issue has been reported in libvirt, which can be exploited by malicious, local users to bypass certain security restrictions.
Fri, 19 Dec 08
Rematic CMS "id" SQL Injection Vulnerabilities
http://secunia.com/Advisories/33208/
Lidloses_Auge has reported some vulnerabilities in Rematic CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 19 Dec 08
PreProjects Products Database Disclosure Security Issue
http://secunia.com/Advisories/33197/
Pouya_Server has reported a security issue in multiple PreProjects products, which can be exploited by malicious people to disclose sensitive information.
Fri, 19 Dec 08
Irrlicht B3D Loader Buffer Overflow Vulnerability
http://secunia.com/Advisories/33192/
A vulnerability has been reported in Irrlicht, which can be exploited by malicious people to potentially compromise a vulnerable system.
Fri, 19 Dec 08
Sun Solaris IP Tunnel SIOCGTUNPARAM IOCTL Vulnerability
http://secunia.com/Advisories/33160/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
Fri, 19 Dec 08
Drupal Views Module Unspecified SQL Injection Vulnerabilities
http://secunia.com/Advisories/33225/
Some vulnerabilities have been reported in the Views module for Drupal, which can be exploited by malicious users to conduct SQL injection attacks.
Thu, 18 Dec 08
Ubuntu update for lcms
http://secunia.com/Advisories/33219/
Ubuntu has issued an update for lcms. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Thu, 18 Dec 08
betaparticle blog Database Disclosure
http://secunia.com/Advisories/33233/
A security issue has been reported in betaparticle blog, which can be exploited by malicious people to disclose sensitive information.
Thu, 18 Dec 08
ADbNewsSender Multiple Vulnerabilities
http://secunia.com/Advisories/33224/
Some vulnerabilities have been reported in ADbNewsSender, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Thu, 18 Dec 08
Ubuntu update for firefox
http://secunia.com/Advisories/33232/
Ubuntu has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Thu, 18 Dec 08
Ubuntu update for firefox
http://secunia.com/Advisories/33231/
Ubuntu has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Thu, 18 Dec 08
Ubuntu update for firefox-3.0 and xulrunner-1.9
http://secunia.com/Advisories/33216/
Ubuntu has issued an update for firefox-3.0 and xulrunner-1.9. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Thu, 18 Dec 08
Adobe Flash Player for Linux SWF Processing Vulnerability
http://secunia.com/Advisories/33221/
A vulnerability has been reported in Adobe Flash Player, which potentially can be exploited by malicious people to compromise a user's system.
Thu, 18 Dec 08
TmaxSoft JEUS Script Source Disclosure Vulnerability
http://secunia.com/Advisories/33123/
Simon Ryeo has reported a vulnerability in TmaxSoft JEUS, which can be exploited by malicious people to disclose sensitive information.
Thu, 18 Dec 08
Interstage HTTP Server Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33200/
Fujitsu has acknowledged some vulnerabilities in Interstage HTTP Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 18 Dec 08
RSMScript Security Bypass and Script Insertion Vulnerabilities
http://secunia.com/Advisories/33150/
Cyber.Zer0 has discovered some vulnerabilities in RSMScript, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to perform script insertion attacks.
Thu, 18 Dec 08
EvimGibi Pro Resim Galerisi "kat_id" SQL Injection
http://secunia.com/Advisories/33199/
ZoRLu has discovered a vulnerability in EvimGibi Pro Resim Galerisi, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 18 Dec 08
TangoCMS Unspecified Cross-Site Request Forgery Vulnerabilities
http://secunia.com/Advisories/33206/
Some vulnerabilities have been reported in TangoCMS, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Thu, 18 Dec 08
Nukedit "dbsite.mdb" Database Disclose Security Issue
http://secunia.com/Advisories/33165/
Cyber.Zer0 has discovered a security issue in Nukedit, which can be exploited by malicious people to disclose sensitive information.
Wed, 17 Dec 08
Red Hat update for seamonkey
http://secunia.com/Advisories/33189/
Red Hat has issued an update for seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Wed, 17 Dec 08
Red Hat update for firefox
http://secunia.com/Advisories/33188/
Red Hat has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Wed, 17 Dec 08
Mozilla Thunderbird Multiple Vulnerabilities
http://secunia.com/Advisories/33205/
Some vulnerabilities have been reported in Mozilla Thunderbird, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Wed, 17 Dec 08
Mozilla SeaMonkey Multiple Vulnerabilities
http://secunia.com/Advisories/33204/
Some vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Wed, 17 Dec 08
Mozilla Firefox 3 Multiple Vulnerabilities
http://secunia.com/Advisories/33203/
Some vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Wed, 17 Dec 08
Mozilla Firefox 2 Multiple Vulnerabilities
http://secunia.com/Advisories/33184/
Some vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Wed, 17 Dec 08
Red Hat update for kernel
http://secunia.com/Advisories/33201/
Red Hat has issued an update for the kernel. This fixes a security issue and some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges, and by malicious people to cause a DoS.
Wed, 17 Dec 08
Gnews Publisher "authorID" SQL Injection Vulnerability
http://secunia.com/Advisories/33118/
AlpHaNiX has reported a vulnerability in Gnews Publisher, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 17 Dec 08
Gentoo update for jasper
http://secunia.com/Advisories/33173/
Gentoo has issued an update for jasper. This fixes some vulnerabilities, which can be exploited by malicious people to compromise an application using the library.
Wed, 17 Dec 08
Gentoo update for ruby
http://secunia.com/Advisories/33178/
Gentoo has issued an update for ruby. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), conduct spoofing attacks, and potentially compromise a vulnerable system.
Wed, 17 Dec 08
Ubuntu update for ruby1.9
http://secunia.com/Advisories/33185/
Ubuntu has issued an update for ruby1.9. This fixes a vulnerability, which can potentially be exploited by malicious people to cause a DoS (Denial of Service).
Wed, 17 Dec 08
Red Hat update for enscript
http://secunia.com/Advisories/33181/
Red Hat has issued an update for enscript. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
Wed, 17 Dec 08
FlatnuX CMS Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/33175/
gmda has discovered some vulnerabilities in FlatnuX CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 17 Dec 08
Barracuda Products Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/33164/
Dr. Marian Ventuneac has reported some vulnerabilities in various Barracuda products, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 17 Dec 08
SUSE update for clamav
http://secunia.com/Advisories/33195/
SUSE has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 16 Dec 08
Debian update for linux-2.6
http://secunia.com/Advisories/33180/
Debian has issued an update for linux-2.6. This fixes a weakness and some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and cause a DoS (Denial of Service), and by malicious people to cause a DoS.
Tue, 16 Dec 08
Injader SQL Injection and Script Insertion
http://secunia.com/Advisories/33161/
Some vulnerabilities have been reported in Injader, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct SQL injection attacks.
Tue, 16 Dec 08
GeekiGeeki Arbitrary File Disclosure Vulnerabilities
http://secunia.com/Advisories/33162/
Two vulnerabilities have been reported in GeekiGeeki, which can be exploited by malicious people to disclose sensitive information.
Tue, 16 Dec 08
Simple Text-File Login Script Multiple Vulnerabilities
http://secunia.com/Advisories/33110/
Osirys has discovered a vulnerability and a security issue in Simple Text-File Login Script, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
Tue, 16 Dec 08
Citrix Application Gateway Broadcast Server SQL Injection Vulnerability
http://secunia.com/Advisories/33127/
A vulnerability has been reported in Citrix Application Gateway for Cisco, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 16 Dec 08
Gentoo update for povray
http://secunia.com/Advisories/33137/
Gentoo has issued an update for povray. This fixes a some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system.
Tue, 16 Dec 08
MediaWiki Multiple Vulnerabilities
http://secunia.com/Advisories/33133/
Some vulnerabilities have been reported in MediaWiki, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting and request forgery attacks.
Tue, 16 Dec 08
phpBB Account Re-activation Security Bypass
http://secunia.com/Advisories/33166/
A security issue has been reported in phpBB, which can be exploited by malicious users to bypass certain security restrictions.
Tue, 16 Dec 08
HTMPL "help" Command Injection Vulnerability
http://secunia.com/Advisories/33099/
ZeN has discovered a vulnerability in HTMPL, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 16 Dec 08
cmus "cmus-status-display" Insecure Temporary Files
http://secunia.com/Advisories/33113/
A security issue has been reported in cmus, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Tue, 16 Dec 08
Mediatheka "lang" Local File Inclusion Vulnerability
http://secunia.com/Advisories/33176/
Osirys has discovered a vulnerability in Mediatheka, which can be exploited by malicious people to disclose sensitive information.
Tue, 16 Dec 08
Red Hat update for cups
http://secunia.com/Advisories/33101/
Red Hat has issued an update for cups. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
Tue, 16 Dec 08
Red Hat update for pidgin
http://secunia.com/Advisories/33102/
Red Hat has issued an update for pidgin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, to cause a DoS (Denial of Service), and potentially to compromise a user's system.
Tue, 16 Dec 08
Red Hat update for enscript
http://secunia.com/Advisories/33109/
Red Hat has issued an update for enscript. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 16 Dec 08
Free Links Directory Script Multiple SQL Injection Vulnerabilities
http://secunia.com/Advisories/33075/
Some vulnerabilities have been discovered in Free Links Directory Script, which can be exploited by malicious users and people to conduct SQL injection attacks.
Mon, 15 Dec 08
ASP-DEv XM Events Diary "cat" SQL Injection Vulnerabilities
http://secunia.com/Advisories/33152/
Some vulnerabilities have been discovered in ASP-DEv XM Events Diary, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 15 Dec 08
ASPired2Blog SQL Injection and Database Disclosure
http://secunia.com/Advisories/33134/
Pouya_Server has reported a vulnerability and a security issue in ASPired2Blog, which can be exploited by malicious people to conduct SQL injection attacks and disclose sensitive information.
Mon, 15 Dec 08
Gentoo update for aview
http://secunia.com/Advisories/33139/
Gentoo has issued an update for aview. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Mon, 15 Dec 08
Fedora update for gallery2
http://secunia.com/Advisories/33144/
Fedora has issued an update for gallery2. This fixes some vulnerabilities, can be exploited by malicious users to disclose sensitive information and conduct script insertion attacks.
Mon, 15 Dec 08
Gentoo update for honeyd
http://secunia.com/Advisories/33141/
Gentoo has issued an update for honeyd. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Mon, 15 Dec 08
Fedora update for phpMyAdmin
http://secunia.com/Advisories/33146/
Fedora has issued an update for phpMyAdmin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Mon, 15 Dec 08
Fedora update for drupal
http://secunia.com/Advisories/33147/
Fedora has issued an update for drupal. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery and cross-site scripting attacks.
Sat, 13 Dec 08
Analysis of High-Performance Access CGI Security Issue
http://secunia.com/Advisories/33107/
A security issue has been reported in futomi's CGI Cafe Analysis of High-Performance Access CGI, which can be exploited by malicious people to hijack a user session
Sat, 13 Dec 08
IBM WebSphere Portal Unspecified Security Bypass Vulnerability
http://secunia.com/Advisories/33132/
IBM has acknowledged a vulnerability in WebSphere Portal, which can be exploited by malicious people to bypass certain security restrictions.
Sat, 13 Dec 08
Social Groupie "id" SQL Injection Vulnerability
http://secunia.com/Advisories/33125/
Cyb3r-1sT has reported a vulnerability in Social Groupie, which can be exploited by malicious users to conduct SQL injection attacks.
Sat, 13 Dec 08
Sun Solaris Kerberos Credential Renewal Denial of Service
http://secunia.com/Advisories/33042/
Sun has acknowledged a vulnerability in Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Sat, 13 Dec 08
ASP-CMS "cha" SQL Injection Vulnerability
http://secunia.com/Advisories/33128/
Sina Yazdanmehr has discovered a vulnerability in ASP-CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 13 Dec 08
phpAddEdit "addedit" Cookie Security Bypass Vulnerability
http://secunia.com/Advisories/33124/
x0r has discovered a vulnerability in phpAddEdit, which can be exploited by malicious people to bypass certain security restrictions.
Sat, 13 Dec 08
Xpoze "menu" SQL Injection Vulnerability
http://secunia.com/Advisories/33126/
XaDoS has reported a vulnerability in Xpoze, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 13 Dec 08
The Net Guys Multiple Product Database Disclosure
http://secunia.com/Advisories/33130/
AlpHaNiX has reported a security issue in multiple The Net Guys products, which can be exploited by malicious people to disclose sensitive information
Sat, 13 Dec 08
Ad Server Solutions Multiple Products "pass" SQL Injection
http://secunia.com/Advisories/33072/
R3d D3v!L has reported a vulnerability in multiple Ad Server Solutions products, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 13 Dec 08
MailScanner Multiple Insecure Temporary Files
http://secunia.com/Advisories/33117/
Some security issues have been reported in MailScanner, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Sat, 13 Dec 08
rPath update for wireshark
http://secunia.com/Advisories/33045/
rPath has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
Sat, 13 Dec 08
PayPal eStores "settings.php" Security Bypass Vulnerability
http://secunia.com/Advisories/33036/
G4N0K has reported a vulnerability in PayPal eStores, which can be exploited by malicious people to bypass certain security restrictions.
Sat, 13 Dec 08
Livebox TP Router HTTP Processing Denial of Service
http://secunia.com/Advisories/33026/
0in has reported a vulnerability in Livebox TP Router, which can be exploited by malicious people to cause a DoS (Denial of Service).
Sat, 13 Dec 08
HP-UX DCE Unspecified Denial of Service Vulnerability
http://secunia.com/Advisories/33104/
A vulnerability has been reported in HP-UX, which can be exploited by malicious people to cause a DoS (Denial of Service).
Sat, 13 Dec 08
Pro Chat Rooms Cross-Site Scripting and Script Insertion
http://secunia.com/Advisories/33088/
ZynbER has reported some vulnerabilities in Pro Chat Rooms, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
Thu, 11 Dec 08
Gentoo update for Archive-Tar
http://secunia.com/Advisories/33116/
Gentoo has issued an update for Archive-Tar. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Thu, 11 Dec 08
CF_Forum "categorynbr" SQL Injection Vulnerability
http://secunia.com/Advisories/33064/
AlpHaNiX has reported a vulnerability in CF_Forum, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 11 Dec 08
Gentoo update for opensc
http://secunia.com/Advisories/33115/
Gentoo has issued an update for opensc. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.
Thu, 11 Dec 08
CF_Calendar "calid" SQL Injection Vulnerability
http://secunia.com/Advisories/33074/
AlpHaNiX has reported a vulnerability in CF_Calendar, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 11 Dec 08
Gentoo update for cups
http://secunia.com/Advisories/33111/
Gentoo has issued an update for cups. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system.
Thu, 11 Dec 08
Moodle Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33079/
A vulnerability has been reported in Moodle, which can be exploited by malicious users to conduct cross-site scripting attacks.
Thu, 11 Dec 08
IPN Pro 3 "settings.php" Security Bypass Vulnerability
http://secunia.com/Advisories/33039/
G4N0K has reported a vulnerability in IPN Pro 3, which can be exploited by malicious people to bypass certain security restrictions.
Thu, 11 Dec 08
DL PayCart "settings.php" Security Bypass Vulnerability
http://secunia.com/Advisories/33038/
G4N0K has reported a vulnerability in DL PayCart, which can be exploited by malicious people to bypass certain security restrictions.
Thu, 11 Dec 08
Bonza Cart "ad_settings.php" Security Bypass Vulnerability
http://secunia.com/Advisories/33037/
G4N0K has reported a vulnerability in Bonza Cart, which can be exploited by malicious people to bypass certain security restrictions.
Thu, 11 Dec 08
MDaemon WorldClient "IMG" HTML Tag Script Insertion
http://secunia.com/Advisories/32885/
Nenad Vijatov has discovered a vulnerability in MDaemon, which can be exploited by malicious people to conduct script insertion attacks.
Thu, 11 Dec 08
Peel "rubid" SQL Injection vulnerability
http://secunia.com/Advisories/33073/
SuB-ZeRo has reported a vulnerability in Peel, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 11 Dec 08
Avaya Messaging Storage Server CUPS Multiple Vulnerabilities
http://secunia.com/Advisories/33085/
Avaya has acknowledged some vulnerabilities in Messaging Storage Server, which potentially can be exploited by malicious people to compromise a vulnerable system.
Thu, 11 Dec 08
Avaya Products Net-snmp GETBULK Denial of Service
http://secunia.com/Advisories/33095/
Avaya has acknowledged a vulnerability in various Avaya products, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 11 Dec 08
Debian update for lcms
http://secunia.com/Advisories/33066/
Debian has issued an update for lcms. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
Thu, 11 Dec 08
SUSE update for pdns
http://secunia.com/Advisories/33094/
SUSE has issued an update for pdns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Wed, 10 Dec 08
PostEcards "cid" SQL Injection and Database Disclosure
http://secunia.com/Advisories/33067/
AlpHaNiX has reported a vulnerability and a security issue in PostEcards, which can be exploited by malicious people to conduct SQL injection attacks and disclose sensitive information.
Wed, 10 Dec 08
phpMyAdmin Cross-Site Request Forgery Vulnerability
http://secunia.com/Advisories/33076/
A vulnerability has been reported in phpMyAdmin, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Wed, 10 Dec 08
SUSE Update for Multiple Packages
http://secunia.com/Advisories/33087/
SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and bypass certain security restrictions, and malicious people to conduct SQL injection attacks.
Wed, 10 Dec 08
SUSE update for gnutls
http://secunia.com/Advisories/33091/
SUSE has issued an update for gnutls. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
Wed, 10 Dec 08
SUSE update for samba
http://secunia.com/Advisories/33092/
SUSE has issued an update for samba. This fixes a vulnerability, which potentially can be exploited by malicious people to disclose sensitive information.
Wed, 10 Dec 08
SUSE update for squirrelmail
http://secunia.com/Advisories/33093/
SUSE has issued an update for squirrelmail. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks.
Wed, 10 Dec 08
PHP Multiple Newsletters File Inclusion and Cross-Site Scripting
http://secunia.com/Advisories/33065/
Ahmadbady has discovered some vulnerabilities in PHP Multiple Newsletters, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information.
Wed, 10 Dec 08
Ubuntu update for vinagre
http://secunia.com/Advisories/33082/
Ubuntu has issued an update for vinagre. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Wed, 10 Dec 08
rPath update for kernel
http://secunia.com/Advisories/33083/
rPath has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Wed, 10 Dec 08
Microsoft Windows WordPad Text Converter Vulnerability
http://secunia.com/Advisories/32997/
A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
Wed, 10 Dec 08
Microsoft Windows GDI Image Parsing Vulnerabilities
http://secunia.com/Advisories/33020/
Some vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious people to potentially compromise a vulnerable system.
Wed, 10 Dec 08
Microsoft Windows Media Products Two Vulnerabilities
http://secunia.com/Advisories/33058/
Two vulnerabilities have been reported in several Microsoft Windows Media products, which can be exploited by malicious people to bypass certain security restrictions or compromise a vulnerable system.
Wed, 10 Dec 08
Microsoft Windows Explorer Search Handling Vulnerabilities
http://secunia.com/Advisories/33053/
Some vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious people to potentially compromise a vulnerable system.
Wed, 10 Dec 08
Microsoft Office SharePoint Server Security Bypass Vulnerability
http://secunia.com/Advisories/33063/
A vulnerability has been reported in Microsoft Office SharePoint Server, which can be exploited by malicious people to bypass certain security restrictions.
Wed, 10 Dec 08
Microsoft Internet Explorer Multiple Vulnerabilities
http://secunia.com/Advisories/33035/
Some vulnerabilities have been reported in Microsoft Internet Explorer, which can be exploited by malicious people to compromise a user's system.
Tue, 9 Dec 08
Compiz Fusion Expo Plugin Security Bypass
http://secunia.com/Advisories/33077/
A security issue has been reported in Compiz Fusion, which can be exploited by malicious people with physical access to a system to bypass certain security restrictions.
Tue, 9 Dec 08
Ubuntu update for compiz-fusion-plugins-main
http://secunia.com/Advisories/33081/
Ubuntu has issued an update for compiz-fusion-plugins-main. This fixes a security issue, which can be exploited by malicious people with physical access to a system to bypass certain security restrictions.
Tue, 9 Dec 08
eXPert PDF EditorX ActiveX Control "extractPagesToFile()" Insecure Method
http://secunia.com/Advisories/32990/
Marco Torti has discovered a vulnerability in eXPert PDF EditorX ActiveX Control, which can be exploited by malicious people to overwrite arbitrary files.
Tue, 9 Dec 08
w3blabor CMS Multiple Vulnerabilities
http://secunia.com/Advisories/33033/
DNX has discovered a vulnerability and a security issue in w3blabor CMS, which can be exploited by malicious people to compromise a vulnerable system and disclose sensitive information.
Tue, 9 Dec 08
Google Gears Cross-Site Scripting Weakness
http://secunia.com/Advisories/33062/
Yair Amit has reported a weakness in Google Gears, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 9 Dec 08
Debian update for squirrelmail
http://secunia.com/Advisories/33071/
Debian has issued an update for squirrelmail. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks.
Tue, 9 Dec 08
Aruba Mobility Controller EAP Frame Denial of Service
http://secunia.com/Advisories/33057/
A vulnerability has been reported in Aruba Mobility Controller, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 9 Dec 08
Debian update for streamripper
http://secunia.com/Advisories/33061/
Debian has issued an update for streamripper. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Tue, 9 Dec 08
XOOPS Script Insertion and Local File Inclusion
http://secunia.com/Advisories/33048/
Some vulnerabilities have been reported in XOOPS, which can be exploited by malicious users to conduct script insertion attacks and malicious people to disclose sensitive information.
Tue, 9 Dec 08
Ikon AdManager "ikonBAnner_AdManager.mdb" Database Disclosure
http://secunia.com/Advisories/33029/
Ghost Hacker has discovered a security issue in Ikon AdManager, which can be exploited by malicious people to disclose sensitive information.
Tue, 9 Dec 08
BPowerHouse Multiple Products "page" and "admin" Local File Inclusion
http://secunia.com/Advisories/33024/
cOndemned has discovered some vulnerabilities in multiple BPowerHouse products, which can be exploited by malicious people to disclose sensitive information.
Tue, 9 Dec 08
Vinagre "vinagre_utils_show_error()" Format String Vulnerability
http://secunia.com/Advisories/33041/
A vulnerability has been discovered in Vinagre, which can be exploited by malicious people to compromise a user's system.
Tue, 9 Dec 08
Fedora update for vinagre
http://secunia.com/Advisories/33046/
Fedora has issued an update for vinagre. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Tue, 9 Dec 08
Red Hat update for tomcat
http://secunia.com/Advisories/33052/
Red Hat has issued an update for tomcat. This fixes a security issue and some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, or disclose sensitive information.
Tue, 9 Dec 08
DesignWorks Professional ".cct" Buffer Overflow Vulnerability
http://secunia.com/Advisories/33043/
Cn4phux has discovered a vulnerability in DesignWorks Professional, which potentially can be exploited by malicious people to compromise a user's system.
Mon, 8 Dec 08
Sun Solaris OpenSSL PKCS#11 Denial of Service Vulnerability
http://secunia.com/Advisories/33050/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
Mon, 8 Dec 08
D-Bus Default Configuration Security Bypass
http://secunia.com/Advisories/33047/
A security issue has been reported in D-Bus, which can be exploited by malicious, local users to bypass certain security restrictions.
Mon, 8 Dec 08
Fedora update for dbus
http://secunia.com/Advisories/33055/
Fedora has issued an update for dbus. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
Mon, 8 Dec 08
Fedora update for java-1.6.0-openjdk
http://secunia.com/Advisories/33056/
Fedora has issued an update for java-1.6.0-openjdk. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, cause a DoS (Denial of service), or compromise a vulnerable system.
Mon, 8 Dec 08
Orb Networks Orb HTTP Processing Denial of Service
http://secunia.com/Advisories/33017/
A vulnerability has been reported in Orb Networks Orb, which can be exploited by malicious people to cause a DoS (Denial of Service).
Sat, 6 Dec 08
Novell Netware ApacheAdmin Console Security Bypass
http://secunia.com/Advisories/32989/
A vulnerability has been reported in Novell Netware, which can be exploited by malicious people to bypass certain security restrictions.
Sat, 6 Dec 08
Webboard Street SQL Injection and Information Disclosure
http://secunia.com/Advisories/32994/
CWH Underground has discovered a vulnerability and a security issue in Webboard Street, which can be exploited by malicious people to conduct SQL injection attacks and disclose sensitive information.
Sat, 6 Dec 08
Null FTP Server "SITE" Parameters Command Injection Vulnerability
http://secunia.com/Advisories/32999/
Tan Chew Keong has reported a vulnerability in Null FTP Server, which can be exploited by malicious users to compromise a vulnerable system.
Sat, 6 Dec 08
User Engine Lite ASP Database Disclosure
http://secunia.com/Advisories/32993/
AlpHaNiX has discovered a vulnerability in User Engine Lite, which can be exploited by malicious people to disclose sensitive information.
Sat, 6 Dec 08
Merlix Template Creature "mcatid" SQL Injection Vulnerability
http://secunia.com/Advisories/32992/
z0rlu has reported a vulnerability in Merlix Template Creature, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 6 Dec 08
CcTiddly Multiple File Inclusion Vulnerabilities
http://secunia.com/Advisories/32995/
cOndemned has discovered some vulnerabilities in CcTiddly, which can be exploited by malicious people to compromise a vulnerable system.
Sat, 6 Dec 08
Tor Two Weaknesses
http://secunia.com/Advisories/33025/
Two weaknesses have been reported in Tor, which can be exploited by malicious, local users to potentially perform certain actions with escalated privileges or by malicious people to bypass certain security restrictions.
Sat, 6 Dec 08
Tribiq CMS "cID" SQL Injection Vulnerability
http://secunia.com/Advisories/33021/
M4ck-h@cK has discovered a vulnerability in Tribiq CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 6 Dec 08
Gravity GTD File Inclusion and PHP Code Injection
http://secunia.com/Advisories/32982/
dun has discovered some vulnerabilities in Gravity GTD, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
Fri, 5 Dec 08
Trillian Multiple Vulnerabilities
http://secunia.com/Advisories/33001/
Some vulnerabilities have been reported in Trillian, which can be exploited by malicious people to compromise a user's system.
Fri, 5 Dec 08
Avaya Products ed "strip_escapes()" Buffer Overflow Security Issue
http://secunia.com/Advisories/33005/
Avaya has acknowledged a security issue in various Avaya products, which can be exploited by malicious people to compromise a vulnerable system.
Fri, 5 Dec 08
ImpressCMS "rank_title" Script Insertion Vulnerability
http://secunia.com/Advisories/33023/
Muhaimin Dzulfakar has discovered a vulnerability in ImpressCMS, which can be exploited by malicious people to conduct script insertion attacks.
Fri, 5 Dec 08
Debian update for linux-2.6.24
http://secunia.com/Advisories/32998/
Debian has issued an update for linux-2.6.24. This fixes a weakness and some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and cause a DoS (Denial of Service) and malicious people to cause a DoS and potentially compromise a vulnerable system.
Fri, 5 Dec 08
Ubuntu update for nfs-utils
http://secunia.com/Advisories/33006/
Ubuntu has issued an update for nfs-utils. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 5 Dec 08
Debian update for clamav
http://secunia.com/Advisories/33016/
Debian has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Fri, 5 Dec 08
Red Hat update for ruby
http://secunia.com/Advisories/33013/
Red Hat has issued an update for ruby. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 5 Dec 08
SUSE update for kernel
http://secunia.com/Advisories/33010/
SUSE has issued an update for the kernel. This fixes a security issue and some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and cause a DoS (Denial of Service) and malicious people to cause a DoS or potentially compromise a vulnerable system.
Fri, 5 Dec 08
BNCwi "newlanguage" File Inclusion Vulnerability
http://secunia.com/Advisories/32981/
dun has discovered a vulnerability in BNCwi, which can be exploited by malicious people to disclose sensitive information.
Fri, 5 Dec 08
Red Hat update for java-1.5.0-sun / java-1.6.0-sun
http://secunia.com/Advisories/33015/
Red Hat has issued an update for java-1.5.0-sun and java-1.6.0-sun. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, cause a DoS (Denial of service), or compromise a vulnerable system.
Fri, 5 Dec 08
My Simple Forum "action" Local File Inclusion Vulnerability
http://secunia.com/Advisories/32984/
cOndemned has discovered a vulnerability in My Simple Forum, which can be exploited by malicious people to disclose sensitive information.
Fri, 5 Dec 08
Linux Kernel PARISC "parisc_show_stack()" Denial of Service
http://secunia.com/Advisories/32933/
A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Fri, 5 Dec 08
IBM HMC HTTP TRACE Response Cross-Site Scripting Weakness
http://secunia.com/Advisories/32977/
IBM has acknowledged a weakness in IBM HMC, which potentially can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 5 Dec 08
PHP ZipArchive::extractTo() Directory Traversal Vulnerability
http://secunia.com/Advisories/32964/
Stefan Esser has reported a vulnerability in PHP, which can be exploited by malicious people to compromise a vulnerable system.
Fri, 5 Dec 08
RSyslog "AllowedSender" Security Bypass Vulnerability
http://secunia.com/Advisories/32857/
A vulnerability has been reported in RSyslog, which can be exploited by malicious people to bypass certain security restrictions.
Thu, 4 Dec 08
Gallery MX "ID" SQL Injection Vulnerability
http://secunia.com/Advisories/32976/
R3d D3v!L has reported a vulnerability in Gallery MX, which can be exploited by malicious users to conduct SQL injection attacks.
Thu, 4 Dec 08
Debian update for perl
http://secunia.com/Advisories/32980/
Debian has issued an update for perl. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges.
Thu, 4 Dec 08
mvnForum Unspecified Cross-Site Scripting and Request Forgery
http://secunia.com/Advisories/32931/
Some vulnerabilities have been reported in mvnForum, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
Thu, 4 Dec 08
Debian update for awstats
http://secunia.com/Advisories/32939/
Debian has issued an update for awstats. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 4 Dec 08
Kolab Server ClamAV Multiple Vulnerabilities
http://secunia.com/Advisories/32917/
Some vulnerabilities have been reported in Kolab Server, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Thu, 4 Dec 08
Movable Type Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/32935/
A vulnerability has been reported in Movable Type, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 4 Dec 08
Sunbyte e-Flower "id" SQL Injection Vulnerability
http://secunia.com/Advisories/32923/
W4RL0CK has reported a vulnerability in Sunbyte e-Flower, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 4 Dec 08
SUSE update for kernel
http://secunia.com/Advisories/32953/
SUSE has issued an update for the kernel. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
Thu, 4 Dec 08
HP-UX Unspecified Local Denial of Service Vulnerability
http://secunia.com/Advisories/32969/
A vulnerability has been reported in HP-UX, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Wed, 3 Dec 08
WebGUI Executable Attachments Vulnerability
http://secunia.com/Advisories/32934/
A vulnerability has been reported in WebGUI, which can be exploited by malicious people to compromise a vulnerable system.
Wed, 3 Dec 08
SquirrelMail Malformed HTML Mail Message Script Insertion
http://secunia.com/Advisories/32143/
Ivan Markovic has discovered a vulnerability in SquirrelMail, which can be exploited by malicious people to conduct script insertion attacks.
Wed, 3 Dec 08
VMware ESX Server update for bzip2
http://secunia.com/Advisories/32952/
VMware has issued an update for VMware ESX Server. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Wed, 3 Dec 08
VMware ESX / ESXi Virtual Hardware Memory Corruption Vulnerability
http://secunia.com/Advisories/32965/
A vulnerability has been reported in VMware ESX / ESXi, which can be exploited by malicious, local users to bypass certain security restrictions.
Wed, 3 Dec 08
Fedora update for lynx
http://secunia.com/Advisories/32967/
Fedora has issued an update for lynx. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Wed, 3 Dec 08
Gentoo update for optipng
http://secunia.com/Advisories/32962/
Gentoo has issued an update for optipng. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Wed, 3 Dec 08
Fedora update for wordpress
http://secunia.com/Advisories/32966/
Fedora has issued an update for wordpress. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks.
Wed, 3 Dec 08
Gentoo update for ipsec-tools
http://secunia.com/Advisories/32971/
Gentoo has issued an update for ipsec-tools. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service).
Wed, 3 Dec 08
iNet Orkut Clone "id" SQL Injection and Cross-Site Scripting
http://secunia.com/Advisories/32937/
d3b4g has reported some vulnerabilities in iNet Orkut Clone, which can be exploited by malicious users to conduct SQL injection attacks and malicious people to conduct cross-site scripting attacks.
Wed, 3 Dec 08
Gentoo update for lighttpd
http://secunia.com/Advisories/32972/
Gentoo has issued an update for lighttpd. This fixes a weakness and two vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, and cause a DoS (Denial of Service).
Wed, 3 Dec 08
Gentoo update for enscript
http://secunia.com/Advisories/32970/
Gentoo has issued an update for enscript. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
Wed, 3 Dec 08
Ocean12 Mailing List Manager Gold Multiple Vulnerabilities
http://secunia.com/Advisories/32929/
Pouya_Server has reported some vulnerabilities in Ocean12 Mailing List Manager Gold, which can be exploited by malicious users and people to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks and disclose sensitive information.
Wed, 3 Dec 08
Gentoo update for libxml2
http://secunia.com/Advisories/32974/
Gentoo has issued an update to libxml2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
Wed, 3 Dec 08
Gentoo update for mantisbt
http://secunia.com/Advisories/32975/
Gentoo has issued an update for mantisbt. This fixes a security issue and a vulnerability, which can be exploited by malicious users to disclose potentially sensitive information and compromise a vulnerable system.
Wed, 3 Dec 08
Ubuntu update for clamav
http://secunia.com/Advisories/32936/
Ubuntu has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 2 Dec 08
Ubuntu update for imagemagick
http://secunia.com/Advisories/32945/
Ubuntu has issued an update for imagemagick. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Tue, 2 Dec 08
Ubuntu update for libvorbis
http://secunia.com/Advisories/32946/
Ubuntu has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library.
Tue, 2 Dec 08
Debian update for phpmyadmin
http://secunia.com/Advisories/32954/
Debian has issued an update for phpmyadmin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 2 Dec 08
ClamAV "cli_check_jpeg_exploit()" Denial of Service Vulnerability
http://secunia.com/Advisories/32926/
A vulnerability has been reported in ClamAV, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 2 Dec 08
RakhiSoftware Shopping Cart Multiple Vulnerabilities
http://secunia.com/Advisories/32950/
Charalambous Glafkos has reported some vulnerabilities in RakhiSoftware Shopping Cart, which can be exploited by malicious people to disclose system information, or to conduct SQL injection and cross-site scripting attacks.
Tue, 2 Dec 08
Lito Lite CMS "cid" SQL Injection Vulnerability
http://secunia.com/Advisories/32910/
CWH Underground has discovered a vulnerability in Lito Lite CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 2 Dec 08
Basic PHP CMS "id" SQL Injection Vulnerability
http://secunia.com/Advisories/32938/
CWH Underground has discovered a vulnerability in Basic PHP CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 2 Dec 08
Microsoft Office Communications Server SIP INVITE Denial of Service
http://secunia.com/Advisories/32940/
A vulnerability has been reported in Microsoft Office Communications Server, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 2 Dec 08
Bluo CMS "id" SQL Injection Vulnerability
http://secunia.com/Advisories/32932/
The_5p3ctrum has reported a vulnerability in Bluo CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 2 Dec 08
Active eWebquiz "useremail" and "password" SQL Injection Vulnerabilities
http://secunia.com/Advisories/32927/
R3d D3v!L has reported some vulnerabilities in Active eWebquiz, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 2 Dec 08
Minimal Ablog Multiple Vulnerabilities
http://secunia.com/Advisories/32886/
NoGe has discovered some vulnerabilities in Minimal Ablog, which can be exploited by malicious people to conduct SQL injection attacks, bypass certain security restrictions, or compromise a vulnerable system.
Tue, 2 Dec 08
Active Newsletter "email" and "password" SQL Injection Vulnerabilities
http://secunia.com/Advisories/32908/
R3d D3v!L has reported some vulnerabilities in Active Newsletter, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 2 Dec 08
Ocean12 FAQ Manager Pro "ID" SQL Injection Vulnerability
http://secunia.com/Advisories/32930/
Stack has reported a vulnerability in Ocean12 FAQ Manager Pro, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 2 Dec 08
Active Photo Gallery "username" and "password" SQL Injection
http://secunia.com/Advisories/32901/
R3d D3v!L has reported some vulnerabilities in Active Photo Gallery, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 2 Dec 08
Slackware update for ruby
http://secunia.com/Advisories/32948/
Slackware has issued an update for ruby. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Mon, 1 Dec 08
jailer "updatejail" Insecure Temporary Files
http://secunia.com/Advisories/32943/
A security issue has been reported in jailer, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Mon, 1 Dec 08
Debian update for jailer
http://secunia.com/Advisories/32959/
Debian has issued an update for jailer. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Mon, 1 Dec 08
VLC Media Player Real Demuxer Integer Overflow Vulnerability
http://secunia.com/Advisories/32942/
A vulnerability has been reported in VLC Media Player, which potentially can be exploited by malicious people to compromise a user's system.
Mon, 1 Dec 08
cpCommerce _functions.php Variable Overwrite Vulnerability
http://secunia.com/Advisories/32849/
A vulnerability has been reported in cpCommerce, which can be exploited by malicious people to bypass certain security restrictions.
Mon, 1 Dec 08
Slackware update for samba
http://secunia.com/Advisories/32951/
Slackware has issued an update for samba. This fixes a vulnerability, which potentially can be exploited by malicious people to disclose sensitive information.
Mon, 1 Dec 08
Debian update for imlib2
http://secunia.com/Advisories/32949/
Debian has issued an update for imlib2. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.
Mon, 1 Dec 08
Cain & Abel RDP Processing Buffer Overflow Vulnerability
http://secunia.com/Advisories/32794/
Encrypt3d.M!nd has discovered a vulnerability in Cain & Abel, which can be exploited by malicious people to compromise a user's system.