Software and Script Bug Exploits
Main
Software Alerts
Software and Script Bug ExploitsSoftware Vulnerability
Random Feeds
Archives
| Feb 2009 | Jan 2009 | Dec 2008 | Nov 2008 | Oct 2008 | Sep 2008 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 | Apr 2008 | Mar 2008 | Feb 2008 | Jan 2008 | Dec 2007 | Nov 2007 |Sat, 31 Jan 09
WebSphere Application Server Unspecified Information Disclosure
http://secunia.com/Advisories/33729/
A vulnerability has been reported in WebSphere Application Server, which can potentially be exploited by malicious people to disclose sensitive information.
Sat, 31 Jan 09
Profense Web Application Firewall Cross-Site Scripting and Cross-Site Request Forgery
http://secunia.com/Advisories/33739/
Michael Brooks has discovered some vulnerabilities in Profense Web Application Firewall, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
Sat, 31 Jan 09
ManageEngine Firewall Analyzer Cross-Site Request Forgery Vulnerability
http://secunia.com/Advisories/33740/
A vulnerability has been discovered in ManageEngine Firewall Analyzer, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Sat, 31 Jan 09
IBM AIX "rmsock" and "rmsock64" Log File Privilege Escalation
http://secunia.com/Advisories/33773/
IBM has acknowledged a security issue in IBM AIX, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Sat, 31 Jan 09
SUSE update for kernel
http://secunia.com/Advisories/33704/
SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to cause a DoS or to potentially compromise a vulnerable system.
Fri, 30 Jan 09
Coppermine Photo Gallery Variable Overwrite Vulnerability
http://secunia.com/Advisories/33748/
Michael Brooks has discovered a vulnerability in Coppermine Photo Gallery, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
Fri, 30 Jan 09
Fedora update for gedit
http://secunia.com/Advisories/33769/
Fedora has issued an update for gedit. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
Fri, 30 Jan 09
GNOME gedit Insecure Python Module Search Path Vulnerability
http://secunia.com/Advisories/33759/
A vulnerability has been reported in gedit, which can be exploited by malicious, local users to gain escalated privileges.
Fri, 30 Jan 09
Sun Solaris OpenSSL "EVP_VerifyFinal()" Spoofing Vulnerability
http://secunia.com/Advisories/33765/
Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious people to conduct spoofing attacks.
Fri, 30 Jan 09
Fedora update for glpi
http://secunia.com/Advisories/33760/
Fedora has issued an update for glpi. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks.
Fri, 30 Jan 09
Ubuntu update for linux
http://secunia.com/Advisories/33756/
Ubuntu has issued an update for linux. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Fri, 30 Jan 09
Ubuntu update for moinmoin
http://secunia.com/Advisories/33755/
Ubuntu has issued an update for moinmoin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass security restrictions, manipulate certain data, or potentially compromise a vulnerable system.
Fri, 30 Jan 09
Sun Java System Application Server Information Disclosure
http://secunia.com/Advisories/33725/
Sun has acknowledged a security issue in Sun Java System Application Server, which can be exploited by malicious people to disclose sensitive information.
Fri, 30 Jan 09
SUSE update for IBMJava5-JRE and java-1_5_0-ibm
http://secunia.com/Advisories/33710/
SUSE has issued an update for IBMJava5-JRE and java-1_5_0-ibm. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, cause a DoS (Denial of service), or compromise a vulnerable system.
Fri, 30 Jan 09
Debian update for moin
http://secunia.com/Advisories/33716/
Debian has issued an update for moin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
Fri, 30 Jan 09
Sun Solaris mod_perl Denial of Service Vulnerability
http://secunia.com/Advisories/33723/
Sun has acknowledged a vulnerability in Sun Solaris, which can potentially be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 30 Jan 09
Sun Solaris mod_perl Denial of Service Vulnerability
http://secunia.com/Advisories/33720/
Sun has acknowledged a vulnerability in Sun Solaris, which can potentially be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 30 Jan 09
Max.Blog "username" SQL Injection Vulnerability
http://secunia.com/Advisories/33658/
A vulnerability has been discovered in Max.Blog, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 30 Jan 09
Sony Ericsson Phones WAP Push Denial of Service Vulnerability
http://secunia.com/Advisories/33616/
A vulnerability has been reported in various Sony Ericsson phones, which can be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 30 Jan 09
Avaya CMS Solaris "libxml2" XML Processing Vulnerability
http://secunia.com/Advisories/33715/
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
Thu, 29 Jan 09
FFmpeg 4xm Processing Memory Corruption Vulnerability
http://secunia.com/Advisories/33711/
Tobias Klein has reported a vulnerability in FFmpeg, which potentially can be exploited by malicious people to compromise an application using the library.
Thu, 29 Jan 09
Sun Fire X2100 / X2200 Embedded Lights Out Manager Security Bypass
http://secunia.com/Advisories/33726/
A vulnerability has been reported in Sun Fire X2100 and X2200 M2 Server, which can be exploited by malicious people to bypass certain security restrictions.
Thu, 29 Jan 09
Sun Solaris "libxml2" XML Processing Vulnerability
http://secunia.com/Advisories/33722/
Sun has acknowledged a vulnerability in libxml2 in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
Thu, 29 Jan 09
Sun Solaris Samba "receive_smb_raw()" Buffer Overflow Vulnerability
http://secunia.com/Advisories/33696/
Sun has acknowledged a vulnerability in Samba in Solaris, which can be exploited by malicious people to compromise a vulnerable system.
Thu, 29 Jan 09
No-IP Dynamic Update Client Information Disclosure
http://secunia.com/Advisories/33687/
A security issue has been reported in No-IP Dynamic Update Client, which can be exploited by malicious people to disclose sensitive information.
Thu, 29 Jan 09
Ubuntu update for kernel
http://secunia.com/Advisories/33706/
Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).
Thu, 29 Jan 09
HP Select Access Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33713/
A vulnerability has been reported in HP Select Access, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 29 Jan 09
HP MPE/iX DNS Cache Poisoning Vulnerability
http://secunia.com/Advisories/33714/
HP has acknowledged a vulnerability in MPE/iX, which can be exploited by malicious people to poison the DNS cache.
Thu, 29 Jan 09
Debian update for rt2400, rt2500, and rt2570
http://secunia.com/Advisories/33699/
Debian has issued an update for rt2400, rt2500, and rt2570. This fixes a vulnerability, which can be exploited to cause a DoS (Denial of Service) or compromise a vulnerable system.
Thu, 29 Jan 09
Ubuntu update for openjdk-6
http://secunia.com/Advisories/33709/
Ubuntu has issued an update for openjdk-6. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, cause a DoS (Denial of service), or compromise a vulnerable system.
Thu, 29 Jan 09
Pixie CMS Multiple Local File Inclusion Vulnerabilities
http://secunia.com/Advisories/33690/
DSecRG has discovered some vulnerabilities in Pixie CMS, which can be exploited by malicious people to disclose sensitive information.
Thu, 29 Jan 09
Domain Technologie Control Multiple SQL Injection Vulnerabilities
http://secunia.com/Advisories/33698/
Some vulnerabilities have been reported in Domain Technologie Control, which can be exploited by malicious users to conduct SQL injection attacks.
Thu, 29 Jan 09
GraphicsMagick DIB and BMP Denial of Service Vulnerabilities
http://secunia.com/Advisories/33697/
Some vulnerabilities have been reported in GraphicsMagick, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 29 Jan 09
Sun Java System Access Manager User Enumeration Weakness
http://secunia.com/Advisories/33688/
A weakness has been reported in Sun Java System Access Manager, which can be exploited by malicious people to identify valid user accounts.
Thu, 29 Jan 09
Sun Solaris BIND "EVP_VerifyFinal()" and "DSA_do_verify()" Spoofing Vulnerability
http://secunia.com/Advisories/33683/
Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious people to conduct spoofing attacks.
Wed, 28 Jan 09
Gazelle CMS "template" Local File Inclusion Vulnerability
http://secunia.com/Advisories/33686/
fuzion has discovered a vulnerability in Gazelle CMS, which can be exploited by malicious people to disclose sensitive information.
Wed, 28 Jan 09
Simple Machines Forum "packages.xml" Cross-Site Scripting
http://secunia.com/Advisories/33670/
Xianur0 has discovered a vulnerability in Simple Machines Forum, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 28 Jan 09
GameScript Cross-Site Scripting and SQL Injection
http://secunia.com/Advisories/33669/
Encrypt3d.M!nd has reported some vulnerabilities in GameScript, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Wed, 28 Jan 09
osCommerce Cross-Site Request Forgery Vulnerability
http://secunia.com/Advisories/33446/
A vulnerability has been discovered in osCommerce, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Wed, 28 Jan 09
Ubuntu update for vim
http://secunia.com/Advisories/33636/
Ubuntu has issued an update for vim. This fixes a weakness and a vulnerability, which can be exploited by malicious people to compromise a user's system.
Wed, 28 Jan 09
Piggydb Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33657/
A vulnerability has been reported in Piggydb, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 28 Jan 09
VirtueMart Multiple SQL Injection Vulnerabilities
http://secunia.com/Advisories/33671/
Some vulnerabilities have been discovered in VirtueMart, which can be exploited by malicious people and users to conduct SQL injection attacks.
Wed, 28 Jan 09
OpenX Multiple Vulnerabilities
http://secunia.com/Advisories/32197/
Multiple vulnerabilities have been discovered in OpenX, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, and file inclusion attacks and by malicious users to conduct script insertion and SQL injection attacks.
Wed, 28 Jan 09
Microsoft Windows Mobile Bluetooth Stack OBEX Directory Traversal
http://secunia.com/Advisories/33598/
Alberto Moreno Tablado has reported a vulnerability in Microsoft Windows Mobile, which can be exploited by malicious users to disclose sensitive information and bypass certain security restrictions.
Wed, 28 Jan 09
SAP NetWeaver Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33685/
A vulnerability has been reported in SAP NetWeaver, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 28 Jan 09
Fedora update for dia
http://secunia.com/Advisories/33703/
Fedora has issued an update for dia. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
Wed, 28 Jan 09
Dia Insecure Python Module Search Path Vulnerability
http://secunia.com/Advisories/33672/
A vulnerability has been reported in Dia, which can be exploited by malicious, local users to gain escalated privileges.
Wed, 28 Jan 09
ITLPoll "id" SQL Injection Vulnerability
http://secunia.com/Advisories/33666/
fuzion has discovered a vulnerability in ITLPoll, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 28 Jan 09
ClickAuction "txtEmail" and "txtPassword" SQL Injection Vulnerabilities
http://secunia.com/Advisories/33647/
R3d D3v!L has reported some vulnerabilities in ClickAuction, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 28 Jan 09
Joomla Flash Magazine Deluxe Component "mag_id" SQL Injection
http://secunia.com/Advisories/33646/
TurkGuvenligi has reported a vulnerability in the Flash Magazine Deluxe component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 27 Jan 09
Script Toko Online "cat_id" SQL Injection Vulnerability
http://secunia.com/Advisories/33661/
k1n9k0ng has reported a vulnerability in Script Toko Online, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 27 Jan 09
MW6 Technologies Barcode ActiveX "Supplement" Buffer Overflow
http://secunia.com/Advisories/33663/
Houssamix has discovered a vulnerability in the MW6 Technologies Barcode ActiveX control, which can be exploited by malicious people to compromise a user's system.
Tue, 27 Jan 09
FlexCell Grid ActiveX Control "SaveFile()" and "ExportToXML()" Insecure Methods
http://secunia.com/Advisories/33664/
Houssamix has discovered two vulnerabilities in the FlexCell Grid ActiveX control, which can be exploited by malicious people to overwrite arbitrary files.
Tue, 27 Jan 09
Fedora update for kernel
http://secunia.com/Advisories/33674/
Fedora has issued an update for the kernel. This fixes a security issue, which can be exploited by malicious, local users to potentially cause a DoS (Denial of Service) or gain escalated privileges.
Tue, 27 Jan 09
Ubuntu update for ktorrent
http://secunia.com/Advisories/33675/
Ubuntu has issued an update for ktorrent. This fixes some vulnerabilities, which can be exploited by malicious users to compromise a vulnerable system and malicious people to bypass certain security restrictions.
Tue, 27 Jan 09
Debian update for typo3-src
http://secunia.com/Advisories/33679/
Debian has issued an update for typo3-src. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and session fixation attacks, and compromise a vulnerable system.
Tue, 27 Jan 09
Fedora update for vnc
http://secunia.com/Advisories/33689/
Fedora has issued an update for vnc. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system.
Tue, 27 Jan 09
WB News "config[installdir]" Multiple File Inclusion Vulnerabilities
http://secunia.com/Advisories/33691/
HACKERS PAL has discovered some vulnerabilities in WB News, which can be exploited by malicious people to compromise a vulnerable system.
Tue, 27 Jan 09
GLPI SQL Injection Vulnerabilities
http://secunia.com/Advisories/33680/
Some vulnerabilities have been reported in GLPI, which can be exploited by malicious users to conduct SQL injection attacks.
Tue, 27 Jan 09
Ubuntu update for xine-lib
http://secunia.com/Advisories/33676/
Ubuntu has issued an update for xine-lib. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Tue, 27 Jan 09
Sun Solaris IPv6 Denial of Service Vulnerability
http://secunia.com/Advisories/33605/
Kingcope has discovered a vulnerability in Sun Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 27 Jan 09
Flax Article Manager "cat_id" SQL Injection Vulnerability
http://secunia.com/Advisories/33625/
jiko has reported a vulnerability in Flax Article Manager, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 27 Jan 09
Merak Media Player ToolTip Buffer Overflow Vulnerability
http://secunia.com/Advisories/33645/
Houssamix has discovered a vulnerability in Merak Media Player, which can be exploited by malicious people to compromise a user's system.
Tue, 27 Jan 09
Web Help Desk Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33651/
A vulnerability has been reported in Web Help Desk, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 27 Jan 09
VooDoo cIRCle OpenSSL DSA / ECDSA "EVP_VerifyFinal()" Vulnerability
http://secunia.com/Advisories/33673/
A vulnerability has been reported in VooDoo cIRCle, which can be exploited by malicious people to conduct spoofing attacks.
Mon, 26 Jan 09
Web-Calendar Lite Multiple SQL Injection Vulnerabilities
http://secunia.com/Advisories/33629/
ByALBAYX has reported some vulnerabilities in Web-Calendar Lite, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 26 Jan 09
KEEP Toolkit "patUser.php" SQL Injection Vulnerability
http://secunia.com/Advisories/33652/
A vulnerability has been reported in KEEP Toolkit, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 26 Jan 09
Debian update for ganglia-monitor-core
http://secunia.com/Advisories/33653/
Debian has issued an update for ganglia-monitor-core. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Mon, 26 Jan 09
SUSE update for openssl
http://secunia.com/Advisories/33659/
SUSE has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Mon, 26 Jan 09
EMC AutoStart Backbone Engine Code Execution Vulnerability
http://secunia.com/Advisories/33667/
A vulnerability has been reported in EMC AutoStart, which can be exploited by malicious people to compromise a vulnerable system.
Mon, 26 Jan 09
CA Products Apache Tomcat Multiple Vulnerabilities
http://secunia.com/Advisories/33668/
CA has acknowledged some vulnerabilities in various CA products, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, cause a DoS (Denial of Service).
Mon, 26 Jan 09
Fedora update for tor
http://secunia.com/Advisories/33677/
Fedora has issued an update for tor. This fixes a vulnerability with an unknown impact.
Mon, 26 Jan 09
Fedora update for ntp
http://secunia.com/Advisories/33678/
Fedora has issued an update for ntp. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Mon, 26 Jan 09
MemHT Portal Avatar File Upload Vulnerability
http://secunia.com/Advisories/33626/
A vulnerability has been discovered in MemHT Portal, which can be exploited by malicious users to compromise a vulnerable system.
Sat, 24 Jan 09
FTPShell Server License Key Buffer Overflow Vulnerability
http://secunia.com/Advisories/33597/
Gjoko 'LiquidWorm' Krstic has discovered a vulnerability in FTPShell Server, which can be exploited by malicious people to compromise a user's system.
Sat, 24 Jan 09
mod-auth-mysql SQL Injection Vulnerability
http://secunia.com/Advisories/33627/
A vulnerability has been reported in mod-auth-mysql, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 24 Jan 09
Sun Solaris VNCViewer Vulnerability
http://secunia.com/Advisories/33068/
Sun has acknowledged a vulnerability in Sun Solaris, which can potentially be exploited by malicious people to compromise a user's system.
Sat, 24 Jan 09
GStreamer Good Plug-ins QuickTime Processing Vulnerabilities
http://secunia.com/Advisories/33650/
Tobias Klein has reported some vulnerabilities in GStreamer Good Plug-ins, which can potentially be exploited by malicious people to compromise a vulnerable system.
Sat, 24 Jan 09
Futomi's CGI Cafe Search CGI Password Reset Vulnerability
http://secunia.com/Advisories/33643/
A vulnerability has been reported in Futomi's CGI Cafe Search CGI, which can be exploited by malicious people to bypass certain security restrictions.
Sat, 24 Jan 09
Ralink Wireless Drivers Probe Request Processing Vulnerability
http://secunia.com/Advisories/33592/
A vulnerability has been reported in Ralink Technology Wireless Drivers, which can be exploited to cause a DoS (Denial of Service) or compromise a vulnerable system.
Fri, 23 Jan 09
AXIS Camera Control "image_pan_tilt" Property Buffer Overflow
http://secunia.com/Advisories/33444/
Secunia Research has discovered a vulnerability in AXIS Camera Control, which can be exploited by malicious people to compromise a user's system.
Fri, 23 Jan 09
Red Hat update for kernel
http://secunia.com/Advisories/33586/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, potentially gain escalated privileges, and cause a DoS (Denial of Service).
Fri, 23 Jan 09
Cisco Security Manager Security Bypass Vulnerability
http://secunia.com/Advisories/33633/
A vulnerability has been reported in Cisco Security Manager, which can be exploited by malicious people to bypass certain security restrictions.
Fri, 23 Jan 09
SUSE update for bind
http://secunia.com/Advisories/33600/
SUSE has issued an update for bind. This fixes a vulnerability, which potentially can be exploited by malicious people to conduct spoofing attacks.
Fri, 23 Jan 09
Cisco Unified Communications Manager CAPF Denial of Service
http://secunia.com/Advisories/33588/
A vulnerability has been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 22 Jan 09
Tor Unspecified Memory Corruption Vulnerability
http://secunia.com/Advisories/33635/
A vulnerability with an unknown impact has been reported in Tor.
Thu, 22 Jan 09
AXIS 70U Network Document Server File Inclusion and Cross-Site Scripting
http://secunia.com/Advisories/33603/
Some vulnerabilities have been reported in AXIS 70U Network Document Server, which can be exploited by malicious users to gain escalated privileges and by malicious people to conduct cross-site scripting attacks.
Thu, 22 Jan 09
Fedora update for moodle
http://secunia.com/Advisories/33639/
Fedora has issued an update for moodle. This fixes some security issues, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Thu, 22 Jan 09
Joomla BazaarBuilder Shopping Cart Component "cid" SQL Injection
http://secunia.com/Advisories/33612/
XaDoS has reported a vulnerability in the BazaarBuilder Shopping Cart component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 22 Jan 09
Fedora update for DevIL
http://secunia.com/Advisories/33637/
Fedora has issued an update for DevIL. This fixes some vulnerabilities, which can be exploited by malicious people to compromise an application using the library.
Thu, 22 Jan 09
SUSE update for kernel
http://secunia.com/Advisories/33641/
SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), and by malicious people to cause a DoS and potentially compromise a vulnerable system.
Thu, 22 Jan 09
Apple QuickTime MPEG-2 Playback Component Input Validation Vulnerability
http://secunia.com/Advisories/33642/
A vulnerability has been reported in the Apple QuickTime MPEG-2 Playback component, which can potentially be exploited by malicious people to compromise a user's system.
Thu, 22 Jan 09
Apple QuickTime Multiple Vulnerabilities
http://secunia.com/Advisories/33632/
Some vulnerabilities have been reported in Apple QuickTime, which can be exploited by malicious people to compromise a user's system.
Thu, 22 Jan 09
Sun SPARC Enterprise M4000 / M5000 Server XSCFU Security Bypass
http://secunia.com/Advisories/33585/
A vulnerability has been reported in Sun SPARC M4000 / M5000 Server, which can be exploited by malicious people to bypass certain security restrictions and potentially compromise a vulnerable system.
Thu, 22 Jan 09
Avaya CMS Solaris "rpc.metad" Denial of Service Vulnerability
http://secunia.com/Advisories/33628/
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 22 Jan 09
Gentoo update for net-snmp
http://secunia.com/Advisories/33631/
Gentoo has issued an update for net-snmp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 22 Jan 09
Fedora update for uw-imap
http://secunia.com/Advisories/33638/
Fedora has issued an update for uw-imap. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 22 Jan 09
Fedora update for amarok
http://secunia.com/Advisories/33640/
Fedora has issued an update for amarok. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Thu, 22 Jan 09
Gentoo update for scilab
http://secunia.com/Advisories/33630/
Gentoo has issued an update for scilab. This fixes some security issues, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Thu, 22 Jan 09
MoinMoin Multiple Cross Site Scripting Vulnerabilities
http://secunia.com/Advisories/33593/
sasquatch has reported some vulnerabilities in MoinMoin, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 21 Jan 09
Typo3 Multiple Vulnerabilities
http://secunia.com/Advisories/33617/
Some vulnerabilities have been reported in Typo3, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and session fixation attacks, and compromise a vulnerable system.
Wed, 21 Jan 09
rPath update for perl
http://secunia.com/Advisories/33621/
rPath has issued an update for perl. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
Wed, 21 Jan 09
rPath update for bind
http://secunia.com/Advisories/33620/
rPath has issued an update for bind. This fixes a vulnerability, which can potentially be exploited by malicious people to conduct spoofing attacks.
Wed, 21 Jan 09
FhImage PHP Code Execution Vulnerability
http://secunia.com/Advisories/33606/
Osirys has discovered a vulnerability in FhImage, which can be exploited by malicious users to compromise a vulnerable system.
Wed, 21 Jan 09
Horde Products Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33521/
A vulnerability has been reported in various Horde products, which can potentially be exploited to conduct cross-site scripting attacks.
Wed, 21 Jan 09
RoundCube Webmail Script Insertion Vulnerability
http://secunia.com/Advisories/33622/
Julien Cayssol has reported a vulnerability in RoundCube Webmail, which can be exploited by malicious people to conduct script insertion attacks.
Wed, 21 Jan 09
SUSE update for kernel
http://secunia.com/Advisories/33615/
SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions, and potentially gain escalated privileges, and by malicious people to cause a DoS and potentially compromise a vulnerable system.
Wed, 21 Jan 09
rPath update for openssl
http://secunia.com/Advisories/33618/
rPath has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Wed, 21 Jan 09
rPath update for ntp
http://secunia.com/Advisories/33619/
rPath has issued an update for ntp. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Wed, 21 Jan 09
Red Hat update for dovecot
http://secunia.com/Advisories/33624/
Red Hat has issued an update for dovecot. This fixes a security issue, which can be exploited by malicious users to bypass certain security restrictions.
Wed, 21 Jan 09
Red Hat update for kernel
http://secunia.com/Advisories/33623/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Wed, 21 Jan 09
Gentoo update for pidgin
http://secunia.com/Advisories/33614/
Gentoo has issued an update for pidgin. This fixes some vulnerabilities, which potentially can be exploited by malicious people to conduct spoofing attacks and compromise a user's system.
Wed, 21 Jan 09
OpenSG "HDRImageFileType::checkHDR()" Buffer Overflow
http://secunia.com/Advisories/33466/
Secunia Research has discovered a vulnerability in OpenSG, which can be exploited by malicious people to compromise an application using the library.
Wed, 21 Jan 09
EasyHDR Pro Buffer Overflow Vulnerabilities
http://secunia.com/Advisories/33468/
Some vulnerabilities have been discovered in EasyHDR Pro, which can be exploited by malicious people to compromise a user's system.
Wed, 21 Jan 09
Streber Unspecified Vulnerabilities
http://secunia.com/Advisories/33514/
Some vulnerabilities with unknown impact have been reported in Streber.
Tue, 20 Jan 09
Fujitsu SystemcastWizard Lite Multiple Vulnerabilities
http://secunia.com/Advisories/33594/
Some vulnerabilities have been reported in Fujitsu SystemcastWizard Lite, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
Tue, 20 Jan 09
Ninja Blog "cat" File Inclusion Vulnerability
http://secunia.com/Advisories/33573/
Danny Moules has discovered a vulnerability in Ninja Blog, which can be exploited by malicious people to disclose sensitive information.
Tue, 20 Jan 09
Red Hat update for squirrelmail
http://secunia.com/Advisories/33611/
Red Hat has issued an update for squirrelmail. This fixes a vulnerability, which can be exploited by malicious people to conduct session fixation attacks.
Tue, 20 Jan 09
WowWee Rovio Security Bypass and Information Disclosure
http://secunia.com/Advisories/33538/
Brian Dowling has reported some vulnerabilities in WowWee Rovio, which can be exploited by malicious people to bypass certain security restrictions and disclose sensitive information.
Tue, 20 Jan 09
SUSE Update for Multiple Packages
http://secunia.com/Advisories/33568/
SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to potentially gain escalated privileges, bypass certain security restrictions, or cause a DoS (Denial of Service), and by malicious people to compromise a user's system.
Tue, 20 Jan 09
BibCiter Multiple SQL Injection Vulnerabilities
http://secunia.com/Advisories/33555/
nuclear has discovered some vulnerabilities in BibCiter, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 20 Jan 09
Linux Kernel "keyctl_join_session_keyring()" Denial of Service
http://secunia.com/Advisories/33569/
A vulnerability has been reported in the Linux Kernel, which potentially can be exploited by malicious, local users to cause a DoS (Denial of Service).
Tue, 20 Jan 09
BlogIt! Multiple Vulnerabilities
http://secunia.com/Advisories/33572/
Some vulnerabilities have been discovered in BlogIt!, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks.
Tue, 20 Jan 09
cwRsync OpenSSL DSA / ECDSA "EVP_VerifyFinal()" Spoofing Vulnerability
http://secunia.com/Advisories/33604/
A vulnerability has been reported in cwRsync, which can be exploited by malicious people to conduct spoofing attacks.
Tue, 20 Jan 09
ActionCalendar "pass" SQL Injection Vulnerability
http://secunia.com/Advisories/33596/
A vulnerability has been reported in ActionCalendar, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 20 Jan 09
Ping IP "txtUserName" and "txtPassword" SQL Injection
http://secunia.com/Advisories/33575/
ByALBAYX has reported two vulnerabilities in Ping IP, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 19 Jan 09
Blog Manager SQL Injection and Cross Site Scripting
http://secunia.com/Advisories/33601/
Pouya_Server has reported some vulnerabilities in Blog Manager, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks.
Mon, 19 Jan 09
AV Book Library Multiple SQL Injection Vulnerabilities
http://secunia.com/Advisories/33583/
Some vulnerabilities have been reported in AV Book Library, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 19 Jan 09
DKIM-MILTER "p" Revoked Keys Denial of Service
http://secunia.com/Advisories/33581/
A vulnerability has been reported in DKIM-MILTER, which can be exploited by malicious people to conduct DoS (Denial of Service) attacks.
Mon, 19 Jan 09
eFAQ "str_Login" and "str_Password" SQL Injection
http://secunia.com/Advisories/33579/
ByALBAYX has reported some vulnerabilities in eFAQ, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 19 Jan 09
eReservations "Login" and "Password" SQL Injection
http://secunia.com/Advisories/33578/
ByALBAYX has reported some vulnerabilities in eReservations, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 19 Jan 09
MKPortal Multiple Vulnerabilities
http://secunia.com/Advisories/33560/
Some vulnerabilities have been discovered in MKPortal, which can be exploited by malicious people to conduct cross-site scripting attacks, and malicious users to conduct SQL injection and script insertion attacks, and compromise a vulnerable system.
Mon, 19 Jan 09
MetaProducts MetaTreeX ActiveX Control Insecure Methods
http://secunia.com/Advisories/33574/
Houssamix has discovered two vulnerabilities in MetaProducts MetaTreeX Control, which can be exploited by malicious people to overwrite arbitrary files and compromise a user's system.
Mon, 19 Jan 09
Digital Sales IPN Database Disclosure Vulnerability
http://secunia.com/Advisories/33602/
Moudi has discovered a vulnerability in Digital Sales IPN, which can be exploited by malicious people to disclose sensitive information.
Mon, 19 Jan 09
SCMS Simple Content Management System "p" Local File Inclusion
http://secunia.com/Advisories/33608/
A vulnerability has been discovered in SCMS Simple Content Management System, which can be exploited by malicious people to disclose potentially sensitive information.
Mon, 19 Jan 09
Sophos Anti-Virus RMS Denial of Service Vulnerability
http://secunia.com/Advisories/33552/
A vulnerability has been reported in Sophos Anti-Virus, which can be exploited by malicious people to cause a DoS (Denial of Service).
Mon, 19 Jan 09
Gentoo update for noip-updater
http://secunia.com/Advisories/33610/
Gentoo has issued an update for noip-updater. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
Mon, 19 Jan 09
Fedora update for drupal
http://secunia.com/Advisories/33599/
Fedora has issued an update for drupal. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
Sat, 17 Jan 09
Silentum Uploader File Deletion Vulnerability
http://secunia.com/Advisories/33472/
Danny Moules has reported a vulnerability in Silentum Uploader, which can be exploited by malicious people to manipulate data.
Sat, 17 Jan 09
LemonLDAP::NG User Enumeration and Cross-Site Scripting
http://secunia.com/Advisories/33565/
A weakness and a vulnerability have been reported in LemonLDAP::NG, which can be exploited by malicious people to identify valid user accounts and conduct cross-site scripting attacks.
Sat, 17 Jan 09
Joomla Eventing Component "catid" SQL Injection Vulnerability
http://secunia.com/Advisories/33563/
Cyb3R-1st has reported a vulnerability in the Eventing component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 17 Jan 09
Joomla RD-Autos Component "id" SQL Injection Vulnerability
http://secunia.com/Advisories/33562/
H!tm@N has discovered a vulnerability in the RD-Autos component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 17 Jan 09
Ganglia "process_path()" Buffer Overflow Vulnerability
http://secunia.com/Advisories/33506/
Spike Spiegel has discovered a vulnerability in Ganglia, which can be exploited by malicious people to compromise a vulnerable system.
Sat, 17 Jan 09
Fedora update for xine-lib
http://secunia.com/Advisories/33544/
Fedora has issued an update for xine-lib. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Sat, 17 Jan 09
GNUBoard "g4_path" File Inclusion Vulnerability
http://secunia.com/Advisories/33564/
flyh4t has discovered a vulnerability in GNUBoard, which can be exploited by malicious people to disclose sensitive information or compromise a vulnerable system.
Sat, 17 Jan 09
Syslserve UDP Request Denial of Service Vulnerability
http://secunia.com/Advisories/33566/
Rob Kraus has reported a vulnerability in Syslserve, which can be exploited by malicious people to cause a DoS (Denial of Service).
Sat, 17 Jan 09
Simple Machines Forum Mod Seo4SMF Multiple Vulnerabilities
http://secunia.com/Advisories/33481/
Some vulnerabilities have been reported in the Seo4SMF mod for Simple Machines Forum, which can be exploited by malicious people to conduct SQL injection, cross-site request forgery, and cross-site scripting attacks.
Fri, 16 Jan 09
Symantec AppStream Client LaunchObj ActiveX Control Insecure Methods
http://secunia.com/Advisories/33582/
A vulnerability has been reported in Symantec AppStream Client, which can be exploited by malicious people to compromise a user's system.
Fri, 16 Jan 09
Drupal Node Access API SQL Injection Security Issue
http://secunia.com/Advisories/33500/
A security issue has been reported in Drupal, which can potentially be exploited by malicious people to conduct SQL injection attacks.
Fri, 16 Jan 09
phoSheezy Multiple Vulnerabilities
http://secunia.com/Advisories/33531/
Osirys has discovered some vulnerabilities in phoSheezy, which can be exploited by malicious people to disclose sensitive information and by malicious users to compromise a vulnerable system.
Fri, 16 Jan 09
Visuplay CMS SQL Injection Vulnerabilities
http://secunia.com/Advisories/33532/
Some vulnerabilities have been reported in Visuplay CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 16 Jan 09
Ubuntu update for tar
http://secunia.com/Advisories/33567/
Ubuntu has issued an update for tar. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 16 Jan 09
Apple Safari RSS Feed URL Handling Information Disclosure
http://secunia.com/Advisories/33458/
Brian Mastenbrook has reported a vulnerability in Apple Safari, which can be exploited by malicious people to disclose potentially sensitive information.
Fri, 16 Jan 09
Debian update for amarok
http://secunia.com/Advisories/33522/
Debian has issued an update for amarok. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Fri, 16 Jan 09
Debian update for iceweasel
http://secunia.com/Advisories/33523/
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Fri, 16 Jan 09
Debian update for netatalk
http://secunia.com/Advisories/33548/
Debian has issued an update for netatalk. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable system.
Fri, 16 Jan 09
OpenBSD update for named
http://secunia.com/Advisories/33551/
OpenBSD has issued an update for named. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Fri, 16 Jan 09
Drupal Content Translation Module Security Bypass Vulnerability
http://secunia.com/Advisories/33550/
A vulnerability has been reported in the Content Translation module for Drupal, which can be exploited by malicious users to bypass certain security restrictions.
Fri, 16 Jan 09
Drupal Internationalization (i18n) Translation Module Security Bypass
http://secunia.com/Advisories/33549/
A vulnerability has been reported in the Internationalization (i18n) Translation module for Drupal, which can be exploited by malicious users to bypass certain security restrictions.
Fri, 16 Jan 09
Drupal Notify Module Privilege Escalation Security Issue
http://secunia.com/Advisories/33542/
A security issue has been reported in the Notify module for Drupal, which can be exploited by malicious users to gain escalated privileges.
Fri, 16 Jan 09
libmikmod Denial of Service Vulnerabilities
http://secunia.com/Advisories/33485/
Some vulnerabilities have been reported in libmikmod, which can be exploited by malicious people to cause a DoS (Denial of Service).
Fri, 16 Jan 09
IBM HMC Unspecified Vulnerability
http://secunia.com/Advisories/33518/
A vulnerability with an unknown impact has been reported in IBM Hardware Management Console (HMC).
Thu, 15 Jan 09
FreeBSD update for bind
http://secunia.com/Advisories/33494/
FreeBSD has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Thu, 15 Jan 09
Sun Solaris "lpadmin" and "ppdmgr" Denial of Service Vulnerabilities
http://secunia.com/Advisories/33488/
Some vulnerabilities have been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Thu, 15 Jan 09
Cisco IronPort Products Multiple Vulnerabilities
http://secunia.com/Advisories/33479/
Some vulnerabilities have been reported in Cisco IronPort products, which can be exploited by malicious people to disclose sensitive information or conduct cross-site request forgery attacks.
Thu, 15 Jan 09
Cisco ONS Products Denial of Service Vulnerability
http://secunia.com/Advisories/33464/
A vulnerability has been reported in several Cisco ONS products, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 15 Jan 09
Members Area Manager "cid" SQL Injection Vulnerability
http://secunia.com/Advisories/33487/
ajann has reported a vulnerability in Members Area Manager, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 15 Jan 09
Linux Kernel 64bit ABI System Call Parameter Sign Extension Security Issue
http://secunia.com/Advisories/33477/
A security issue has been reported in the Linux Kernel, which can be exploited by malicious, local users to potentially cause a DoS (Denial of Service) or gain escalated privileges.
Thu, 15 Jan 09
phpMDJ "id_animateur" SQL Injection Vulnerability
http://secunia.com/Advisories/33480/
darkjoker has discovered a vulnerability in phpMDJ, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 15 Jan 09
SUSE Update for Mozilla Products
http://secunia.com/Advisories/33493/
SUSE has issued an update for MozillaFirefox, MozillaThunderbird, and mozilla. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Thu, 15 Jan 09
rPath update for samba, samba-client, and samba-server
http://secunia.com/Advisories/33527/
rPath has issued an update for samba, samba-client, and samba-server. This fixes a vulnerability, which can potentially be exploited by malicious people to disclose sensitive information.
Thu, 15 Jan 09
Fast Guest Book Two SQL Injection Vulnerabilities
http://secunia.com/Advisories/33484/
Moudi has discovered two vulnerabilities in Fast Guest Book, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 15 Jan 09
Weight Loss Recipe Book Two SQL Injection Vulnerabilities
http://secunia.com/Advisories/33476/
x0r has discovered two vulnerabilities in Weight Loss Recipe Book, which can be exploited by malicious people to conduct SQL injection attacks.
Thu, 15 Jan 09
IBM DB2 Denial of Service Vulnerabilities
http://secunia.com/Advisories/33529/
Some vulnerabilities have been reported in IBM DB2, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 15 Jan 09
Oracle BEA WebLogic Portal Security Bypass Vulnerability
http://secunia.com/Advisories/33535/
A vulnerability has been reported in Oracle BEA WebLogic Portal, which can be exploited by malicious people to bypass certain security restrictions.
Thu, 15 Jan 09
Oracle BEA WebLogic Server Multiple Vulnerabilities
http://secunia.com/Advisories/33526/
Some vulnerabilities have been reported in Oracle BEA WebLogic Server, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
Thu, 15 Jan 09
Oracle Products Multiple Vulnerabilities
http://secunia.com/Advisories/33525/
Some vulnerabilities have been reported in various Oracle products. Some have unknown impact while others can be exploited by malicious users to conduct SQL injection attacks or manipulate certain data, and by malicious people to conduct cross-site scripting attacks or to compromise a vulnerable system.
Wed, 14 Jan 09
Interspire Shopping Cart "ProcessLogin()" Authentication Bypass
http://secunia.com/Advisories/33423/
A vulnerability has been reported in Interspire Shopping Cart, which can be exploited by malicious people to bypass certain security restrictions.
Wed, 14 Jan 09
Joomla Fantasy Tournament Component Multiple SQL Injection
http://secunia.com/Advisories/33459/
H!tm@N has reported some vulnerabilities in the Fantasy Tournament Component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 14 Jan 09
Realtor 747 "INC_DIR" File Inclusion Vulnerability
http://secunia.com/Advisories/33465/
ahmadbady has discovered a vulnerability in Realtor 747, which can be exploited by malicious people to compromise a vulnerable system.
Wed, 14 Jan 09
rPath update for samba
http://secunia.com/Advisories/33492/
rPath has issued an update for samba. This fixes a vulnerability, which potentially can be exploited by malicious people to disclose sensitive information.
Wed, 14 Jan 09
Ubuntu hplip Privilege Escalation Security Issue
http://secunia.com/Advisories/33539/
Ubuntu has acknowledged a security issue in hplip, which can be exploited by malicious, local users to gain escalated privileges.
Wed, 14 Jan 09
Red Hat update for java-1.5.0-ibm
http://secunia.com/Advisories/33536/
Red Hat has issued an update for java-1.5.0-ibm. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, cause a DoS (Denial of service), or compromise a vulnerable system.
Wed, 14 Jan 09
Red Hat update for java-1.6.0-ibm
http://secunia.com/Advisories/33528/
Red Hat has issued an update for java-1.6.0-ibm. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, cause a DoS (Denial of service), or compromise a vulnerable system.
Wed, 14 Jan 09
Gentoo update for acroread
http://secunia.com/Advisories/33460/
Gentoo has issued an update for acroread. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges or by malicious people to compromise a user's system.
Wed, 14 Jan 09
Triologic Media Player Playlist Processing Buffer Overflow Vulnerability
http://secunia.com/Advisories/33496/
A vulnerability has been discovered in Triologic Media Player, which potentially can be exploited by malicious people to compromise a user's system.
Wed, 14 Jan 09
SUSE Update for Multiple Packages
http://secunia.com/Advisories/33462/
SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or to gain escalated privileges, by malicious users to bypass certain security restrictions or to cause a DoS (Denial of Service), and by malicious people to disclose sensitive information, bypass certain security restrictions, conduct SQL injection and cross-site scripting attacks, to cause a DoS, or potentially compromise a vulnerable system.
Wed, 14 Jan 09
PDFBuilderX ActiveX Control "SaveToFile()" Arbitrary File Overwrite
http://secunia.com/Advisories/33427/
Alfons Luja has discovered a vulnerability in PDFBuilderX, which can be exploited by malicious people to compromise a user's system.
Wed, 14 Jan 09
RackTables Authentication Bypass Security Issue
http://secunia.com/Advisories/33463/
A security issue has been reported in RackTables, which can be exploited by malicious people to bypass certain security restrictions.
Wed, 14 Jan 09
BlackBerry Products PDF Distiller Multiple Vulnerabilities
http://secunia.com/Advisories/33534/
Some vulnerabilities have been reported in BlackBerry Enterprise Server and BlackBerry Unite!, which can be exploited by malicious people to compromise a vulnerable system.
Wed, 14 Jan 09
Winamp AIFF Processing Buffer Overflow Vulnerability
http://secunia.com/Advisories/33478/
securfrog has discovered a vulnerability in Winamp, which potentially can be exploited by malicious people to compromise a user's system.
Tue, 13 Jan 09
Ubuntu update for cups and cupsys
http://secunia.com/Advisories/33530/
Ubuntu has issued an update for cups and cupsys. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Tue, 13 Jan 09
Red Hat update for squirrelmail
http://secunia.com/Advisories/33517/
Red Hat has issued an update for squirrelmail. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks.
Tue, 13 Jan 09
Red Hat update for avahi
http://secunia.com/Advisories/33520/
Red Hat has issued an update for avahi. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 13 Jan 09
DevIL "iGetHdrHeader()" Buffer Overflow Vulnerabilities
http://secunia.com/Advisories/33470/
Secunia Research has discovered two vulnerabilities in DevIL, which can be exploited by malicious people to compromise an application using the library.
Tue, 13 Jan 09
Debian update for ntp
http://secunia.com/Advisories/33507/
Debian has issued an update for ntp. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Tue, 13 Jan 09
Debian update for openssl and openssl097
http://secunia.com/Advisories/33515/
Debian has issued an update for openssl and openssl097. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Tue, 13 Jan 09
WebSphere DataPower XML Security Gateway XS40 Denial of Service
http://secunia.com/Advisories/33456/
A vulnerability has been reported in IBM DataPower XS40, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 13 Jan 09
Gentoo update for online-bookmarks
http://secunia.com/Advisories/33502/
Gentoo has issued an update for online-bookmarks. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site scripting and SQL injection attacks.
Tue, 13 Jan 09
Gentoo update for mplayer
http://secunia.com/Advisories/33503/
Gentoo has issued an update for mplayer. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Tue, 13 Jan 09
Debian update for bind9
http://secunia.com/Advisories/33504/
Debian has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Tue, 13 Jan 09
pfSense update for lukemftpd and openssl
http://secunia.com/Advisories/33519/
pfSense has acknowledged some vulnerabilities in pfSense, which can be exploited by malicious people to conduct cross-site request forgery or spoofing attacks.
Tue, 13 Jan 09
Amarok Audible Audio Processing Multiple Vulnerabilities
http://secunia.com/Advisories/33505/
Tobias Klein has reported some vulnerabilities in Amarok, which potentially can be exploited by malicious people to compromise a user's system.
Tue, 13 Jan 09
Browse3D ".sfs" Processing Buffer Overflow Vulnerability
http://secunia.com/Advisories/33483/
Houssamix has discovered a vulnerability in Browse3D, which potentially can be exploited by malicious people to compromise a user's system.
Tue, 13 Jan 09
Gentoo update for jhead
http://secunia.com/Advisories/33512/
Gentoo has issued an update for jhead. This fixes some security issues, which can be exploited by malicious, local users to gain escalated privileges.
Tue, 13 Jan 09
Gentoo update for streamripper
http://secunia.com/Advisories/33509/
Gentoo has issued an update for streamripper. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Mon, 12 Jan 09
BluePex IE-2000 Session Management Security Issue
http://secunia.com/Advisories/33403/
A security issue has been reported in BluePex IE-2000, which can be exploited by malicious people to hijack user sessions.
Mon, 12 Jan 09
Photobase "language" Local File Inclusion Vulnerability
http://secunia.com/Advisories/33471/
A vulnerability has been reported in Photobase, which can be exploited by malicious people to disclose potentially sensitive information.
Mon, 12 Jan 09
FTTSS A Free Text-To-Speech System "voz" Command Injection Vulnerability
http://secunia.com/Advisories/33473/
A vulnerability has been discovered in FTTSS A Free Text-To-Speech System, which can be exploited by malicious people to compromise a user's system.
Mon, 12 Jan 09
SocialEngine "classifiedcat_id" SQL Injection Vulnerability
http://secunia.com/Advisories/33474/
A vulnerability has been reported in SocialEngine, which can be exploited by malicious people to conduct SQL injection attacks.
Mon, 12 Jan 09
Joomla JA Showcase Component "catid" SQL Injection Vulnerability
http://secunia.com/Advisories/33486/
EcHoLL has reported a vulnerability in the JA Showcase component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 10 Jan 09
Interstage HTTP Server mod_proxy_ftp Cross-Site Scripting
http://secunia.com/Advisories/33428/
Fujitsu has acknowledged a vulnerability in Interstage HTTP Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Sat, 10 Jan 09
Pizzis CMS "idvar" SQL Injection Vulnerability
http://secunia.com/Advisories/33440/
darkjoker has reported a vulnerability in Pizzis CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 10 Jan 09
Openfire Multiple Vulnerabilities
http://secunia.com/Advisories/33452/
Some vulnerabilities have been discovered in Openfire, which can be exploited by malicious people to conduct cross-site scripting attacks, and by malicious users to conduct script insertion attacks and disclose sensitive information.
Sat, 10 Jan 09
OpenBSD update for OpenSSL
http://secunia.com/Advisories/33412/
OpenBSD has issued an update for OpenSSL. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Sat, 10 Jan 09
MODx "searchid" SQL Injection Vulnerability
http://secunia.com/Advisories/33405/
A vulnerability has been discovered in MODx, which can be exploited by malicious users to conduct SQL injection attacks.
Sat, 10 Jan 09
Asterisk User Account Enumeration Weakness
http://secunia.com/Advisories/33453/
A weakness has been reported in Asterisk, which can be exploited by malicious people to identify valid user accounts.
Sat, 10 Jan 09
Sun Solaris Samba "smbd" Information Disclosure Vulnerability
http://secunia.com/Advisories/33416/
Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious people to disclose sensitive information.
Sat, 10 Jan 09
Serv-U Denial of Service Vulnerability
http://secunia.com/Advisories/33411/
A vulnerability has been reported in Serv-U, which can be exploited by malicious users to cause a DoS (Denial of Service).
Fri, 9 Jan 09
CuteNews Cross-Site Scripting and PHP Code Execution Vulnerabilities
http://secunia.com/Advisories/33447/
athos has discovered some vulnerabilities in CuteNews, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to compromise a vulnerable system.
Fri, 9 Jan 09
XOOPS "mydirname" PHP Code Injection Vulnerability
http://secunia.com/Advisories/33435/
athos has discovered a vulnerability in XOOPS, which can be exploited by malicious people to compromise a vulnerable system.
Fri, 9 Jan 09
Red Hat update for kernel
http://secunia.com/Advisories/33455/
Red Hat has issued an update for the kernel. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, bypass certain security restrictions, and gain escalated privileges.
Fri, 9 Jan 09
Ubuntu update for bind9
http://secunia.com/Advisories/33448/
Ubuntu has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Fri, 9 Jan 09
Ubuntu update for ntp
http://secunia.com/Advisories/33451/
Ubuntu has issued an update for ntp. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Fri, 9 Jan 09
Red Hat update for bind
http://secunia.com/Advisories/33454/
Red Hat has issued an update for bind. This fixes a vulnerability, which potentially can be exploited by malicious people to conduct spoofing attacks.
Fri, 9 Jan 09
Drupal Project Module File Upload and Cross-Site Scripting
http://secunia.com/Advisories/33438/
Some vulnerabilities have been reported in the Project module for Drupal, which can be exploited by malicious people to conduct cross-site scripting attacks and malicious users to compromise a vulnerable system.
Fri, 9 Jan 09
SmbFTPD Long Command Processing Vulnerability
http://secunia.com/Advisories/33426/
A vulnerability has been reported in SmbFTPD, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Fri, 9 Jan 09
Drupal Project Issue Tracking Module Multiple Vulnerabilities
http://secunia.com/Advisories/33439/
A security issue and a vulnerability have been reported in the Project Issue Tracking module for Drupal, which can be exploited by malicious users to disclose sensitive information or conduct script insertion attacks.
Fri, 9 Jan 09
PHP-Fusion Members CV Module "sortby" SQL Injection Vulnerability
http://secunia.com/Advisories/33424/
Sina Yazdanmehr has reported a vulnerability in the Members CV module for PHP-Fusion, which can be exploited by malicious users to conduct SQL injection attacks.
Fri, 9 Jan 09
Lasso OpenSSL "DSA_verify()" Spoofing Vulnerability
http://secunia.com/Advisories/33449/
A vulnerability has been reported in Lasso, which can be exploited by malicious people to conduct spoofing attacks.
Fri, 9 Jan 09
Xdg-utils mailcap Command Execution Security Issue
http://secunia.com/Advisories/33407/
A security issue in Xdg-utils has been reported, which can be exploited by malicious people to compromise a user's system.
Thu, 8 Jan 09
FreeBSD update for lukemftpd
http://secunia.com/Advisories/33450/
FreeBSD has issued an update for lukemftpd. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Thu, 8 Jan 09
tnftpd Long Command Processing Vulnerability
http://secunia.com/Advisories/33437/
A vulnerability has been reported in tnftpd, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Thu, 8 Jan 09
Cisco Global Site Selector DNS Request Denial of Service
http://secunia.com/Advisories/33429/
A vulnerability has been reported in Cisco Global Site Selector, which can be exploited by malicious people to cause a DoS (Denial of Service).
Thu, 8 Jan 09
NTP OpenSSL "EVP_VerifyFinal()" Spoofing Vulnerability
http://secunia.com/Advisories/33406/
A vulnerability has been reported in NTP, which can be exploited by malicious people to conduct spoofing attacks.
Thu, 8 Jan 09
Red Hat update for lcms
http://secunia.com/Advisories/33441/
Red Hat has issued an update for lcms. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
Thu, 8 Jan 09
Red Hat update for openssl
http://secunia.com/Advisories/33442/
Red Hat has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Thu, 8 Jan 09
Red Hat update for hanterm-xf
http://secunia.com/Advisories/33443/
Red Hat has issued an update for hanterm-xf. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Thu, 8 Jan 09
FreeBSD update for openssl
http://secunia.com/Advisories/33445/
FreeBSD has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Thu, 8 Jan 09
Debian update for iceape
http://secunia.com/Advisories/33433/
Debian has issued an update for iceape. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Thu, 8 Jan 09
CA Service Level Management / Service Metric Analysis Command Execution
http://secunia.com/Advisories/33430/
A vulnerability has been reported in CA Service Level Management (SLM) and CA Service Metric Analysis (SMA), which can be exploited by malicious people to compromise a vulnerable system.
Thu, 8 Jan 09
Movable Type Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33432/
A vulnerability has been reported in Movable Type, which can be exploited by malicious people to conduct cross-site scripting attacks.
Thu, 8 Jan 09
Debian update for icedove
http://secunia.com/Advisories/33434/
Debian has issued an update for icedove. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, conduct cross-site scripting attacks, or to potentially compromise a user's system.
Thu, 8 Jan 09
Winamp gen_msn Plugin Buffer Overflow Vulnerability
http://secunia.com/Advisories/33425/
SkD has discovered a vulnerability in the gen_msn plugin for Winamp, which can be exploited by malicious people to potentially compromise a user's system.
Thu, 8 Jan 09
ISC BIND "EVP_VerifyFinal()" and "DSA_do_verify()" Spoofing Vulnerability
http://secunia.com/Advisories/33404/
A vulnerability has been reported in ISC BIND, which potentially can be exploited by malicious people to conduct spoofing attacks.
Thu, 8 Jan 09
Fedora update for openssl
http://secunia.com/Advisories/33380/
Fedora has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
Wed, 7 Jan 09
Goople CMS "usename" and "password" SQL Injection
http://secunia.com/Advisories/33393/
Some vulnerabilities have been discovered in Goople CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 7 Jan 09
Cain & Abel Cisco IOS Configuration File Buffer Overflow
http://secunia.com/Advisories/33385/
send9 has discovered a vulnerability in Cain & Abel, which can be exploited by malicious people to compromise a user's system.
Wed, 7 Jan 09
RiotPix "username" and "forumid" SQL Injection Vulnerabilities
http://secunia.com/Advisories/33395/
Some vulnerabilities have been discovered in RiotPix, which can be exploited by malicious people to conduct SQL injection attacks.
Wed, 7 Jan 09
MyNETS Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33409/
A vulnerability has been reported in MyNETS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Wed, 7 Jan 09
Avaya Products Vim Multiple Vulnerabilities
http://secunia.com/Advisories/33410/
Avaya has acknowledged some vulnerabilities in various Avaya products, which can be exploited by malicious people to compromise a user's system.
Wed, 7 Jan 09
Avaya Products Libxml2 Integer Overflow Vulnerabilities
http://secunia.com/Advisories/33417/
Avaya has acknowledged some vulnerabilities in various Avaya products, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the Libxml2 library.
Wed, 7 Jan 09
Ubuntu update for thunderbird
http://secunia.com/Advisories/33408/
Ubuntu has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Wed, 7 Jan 09
Ubuntu update for thunderbird
http://secunia.com/Advisories/33415/
Ubuntu has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system.
Wed, 7 Jan 09
Sun Solaris NFS Local Denial of Service Vulnerability
http://secunia.com/Advisories/33361/
A vulnerability has been reported in Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Wed, 7 Jan 09
Nokia Phones SMS Denial of Service Vulnerability
http://secunia.com/Advisories/33359/
Tobias Engel has reported a vulnerability in various Nokia phones, which can be exploited by malicious people to cause a DoS (Denial of Service).
Wed, 7 Jan 09
PHPAuctions Multiple Vulnerabilities
http://secunia.com/Advisories/33331/
Some vulnerabilities have been reported in PHPAuctions, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks, and bypass certain security restrictions.
Wed, 7 Jan 09
SemanticScuttle Cross-Site Request Forgery Vulnerabilities
http://secunia.com/Advisories/33383/
Some vulnerabilities have been reported in SemanticScuttle, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Tue, 6 Jan 09
SolucionWeb "id_area" SQL Injection Vulnerability
http://secunia.com/Advisories/33387/
Ehsan_Hp200 has reported a vulnerability in SolucionWeb, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 6 Jan 09
Ubuntu update for xterm
http://secunia.com/Advisories/33388/
Ubuntu has issued an update for xterm. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Tue, 6 Jan 09
Poll Pro Cross-Site Request Forgery Vulnerability
http://secunia.com/Advisories/33319/
The_0nur-n0x has discovered a vulnerability in Poll Pro, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Tue, 6 Jan 09
Ubuntu update for samba
http://secunia.com/Advisories/33392/
Ubuntu has issued an update for samba. This fixes a security issue, which can be exploited by malicious users to bypass certain security restrictions.
Tue, 6 Jan 09
VMware "vmware-authd" Denial of Service Vulnerability
http://secunia.com/Advisories/33372/
Laurent GaffiƩ has discovered a vulnerability in VMware, which can be exploited by malicious people to cause a DoS (Denial of Service).
Tue, 6 Jan 09
NPDS Multiple Vulnerabilities
http://secunia.com/Advisories/33305/
Some vulnerabilities have been reported in NPDS, which can be exploited by malicious people to disclose sensitive information or conduct cross-site scripting attacks.
Tue, 6 Jan 09
Lito Lite CMS "id" Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/33381/
darkjoker has reported a vulnerability in Lito Lite CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Tue, 6 Jan 09
PostNuke PNphpBB2 Module Multiple File Inclusion Vulnerabilities
http://secunia.com/Advisories/33365/
StAkeR has discovered some vulnerabilities in the PNphpBB2 module for PostNuke, which can be exploited by malicious people to disclose sensitive information.
Tue, 6 Jan 09
Links SSL Verification Security Issue
http://secunia.com/Advisories/33391/
A security issue has been discovered in Links, which can be exploited by malicious people to conduct spoofing attacks.
Tue, 6 Jan 09
PhpMesFilms "id" SQL Injection Vulnerability
http://secunia.com/Advisories/33332/
SuB-ZeRo has discovered a vulnerability in PhpMesFilms, which can be exploited by malicious people to conduct SQL injection attacks.
Tue, 6 Jan 09
Samba Root File System Access Security Issue
http://secunia.com/Advisories/33379/
A security issue has been reported in Samba, which can be exploited by malicious users to bypass certain security restrictions.
Tue, 6 Jan 09
phpSkelSite File Inclusion and Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/33382/
ahmadbady has discovered some vulnerabilities in phpSkelSite, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, and compromise a vulnerable system.
Tue, 6 Jan 09
Autoreminder "id" SQL Injection Vulnerability
http://secunia.com/Advisories/33283/
ZoRLu has reported a vulnerability in Autoreminder, which can be exploited by malicious users to conduct SQL injection attacks.
Tue, 6 Jan 09
DotNetNuke Role Membership Security Bypass
http://secunia.com/Advisories/33401/
A vulnerability has been reported in DotNetNuke, which can be exploited by malicious users to bypass certain security restrictions.
Mon, 5 Jan 09
Destiny Media Player Playlist Processing Buffer Overflow
http://secunia.com/Advisories/33346/
aBo MoHaMeD has discovered a vulnerability in Destiny Media Player, which potentially can be exploited by malicious people to compromise a user's system.
Mon, 5 Jan 09
Debian update for xterm
http://secunia.com/Advisories/33397/
Debian has issued an update for xterm. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Mon, 5 Jan 09
Debian update for ruby1.8 and ruby1.9
http://secunia.com/Advisories/33398/
Debian has issued an update for ruby1.8 and ruby1.9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Mon, 5 Jan 09
Red Hat update for kernel
http://secunia.com/Advisories/33280/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities and security issues, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, bypass certain security restrictions, and gain escalated privileges, and by malicious people to cause a DoS.
Mon, 5 Jan 09
Apache Roller "q" Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/31523/
Hector Manuel Escalona Mendoza has discovered a vulnerability in Apache Roller, which can be exploited by malicious people to conduct cross-site scripting attacks.
Mon, 5 Jan 09
A-Emlak Pro SQL Injection and Database Disclosure
http://secunia.com/Advisories/33324/
A vulnerability and a security issue have been reported in A-Emlak Pro, which can be exploited by malicious people to conduct SQL injection attacks and disclose sensitive information.
Sat, 3 Jan 09
2Capsule's Sticker Extreme Edition "id" SQL Injection Vulnerability
http://secunia.com/Advisories/33370/
A vulnerability has been discovered in 2Capsule's Sticker Extreme Edition, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 3 Jan 09
PHPFootball SQL Injection and Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/33367/
Some vulnerabilities have been discovered in PHPFootball, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks.
Sat, 3 Jan 09
CMScout Multiple Vulnerabilities
http://secunia.com/Advisories/33375/
SirGod has discovered some vulnerabilities in CMScout, which can be exploited by malicious people and malicious users to conduct SQL injection attacks, and by malicious people to compromise a vulnerable system.
Sat, 3 Jan 09
Pixel8 Web Photo Album "AlbumID" SQL Injection Vulnerability
http://secunia.com/Advisories/33373/
AlpHaNiX has reported a vulnerability in Pixel8 Web Photo Album, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 3 Jan 09
Audacity "String_parse::get_nonspace_quoted()" Buffer Overflow
http://secunia.com/Advisories/33356/
A vulnerability has been discovered in Audacity, which can be exploited by malicious people to compromise a user's system.
Sat, 3 Jan 09
Audio File Library "ms_adpcm_decode_block()" Buffer Overflow
http://secunia.com/Advisories/33273/
A vulnerability has been reported in Audio File Library, which potentially can be exploited by malicious people to compromise an application using the library.
Sat, 3 Jan 09
w3blabor CMS "benutzername" SQL Injection Vulnerability
http://secunia.com/Advisories/33364/
DNX has discovered a vulnerability in w3blabor CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Sat, 3 Jan 09
eggBlog Cross-Site Request Forgery Vulnerability
http://secunia.com/Advisories/33366/
x0r has discovered a vulnerability in eggBlog, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Sat, 3 Jan 09
PowerNews "newsid" SQL Injection Vulnerability
http://secunia.com/Advisories/33363/
Virangar Security has discovered a vulnerability in PowerNews, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 2 Jan 09
Memberkit Arbitrary File Upload Vulnerability
http://secunia.com/Advisories/33369/
Lo$er has reported a vulnerability in Memberkit, which can be exploited by malicious users to compromise a vulnerable system.
Fri, 2 Jan 09
Elecard MPEG Player M3U Buffer Overflow Vulnerability
http://secunia.com/Advisories/33355/
aBo MoHaMeD has discovered a vulnerability in Elecard MPEG Player, which can be exploited by malicious people to compromise a user's system.
Fri, 2 Jan 09
Vacation Script "editid1" SQL Injection Vulnerability
http://secunia.com/Advisories/33374/
x0r has reported a vulnerability in Vacation Script, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 2 Jan 09
FlexPHPic SQL Injection Vulnerabilities
http://secunia.com/Advisories/33376/
S.W.A.T. has discovered some vulnerabilities in FlexPHPic, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 2 Jan 09
Megacubo URI Handling PHP Code Injection Vulnerability
http://secunia.com/Advisories/33326/
pyrokinesis has discovered a vulnerability in Megacubo, which can be exploited by malicious people to compromise a user's system.
Fri, 2 Jan 09
PowerClan "loginemail" SQL Injection Vulnerability
http://secunia.com/Advisories/33362/
Virangar Security has discovered a vulnerability in PowerClan, which can be exploited by malicious people to conduct SQL injection attacks.
Fri, 2 Jan 09
GForge "GroupJoinRequest.class" SQL Injection Vulnerability
http://secunia.com/Advisories/33229/
A vulnerability has been reported in GForge, which can be exploited by malicious users to conduct SQL injection attacks.