Fedora Core 5 ships the libtool-ltdl library which is used to load dynamic modules. It is compiled to search for libraries using relative paths which may make it possible for an attacker to load arbitrary libraries into the program
afe99ea514e981aa99d99af57ca16247f29a11d4b17257e65a3b46920ad2fa20National Cyber Alert System - Technical Cyber Security Alert TA06-283A: Microsoft Updates for Vulnerabilities in Windows, Office, and Internet Explorer
3b7286225fa1e5f52bb1df1253b3d01652e66ed542b6f97bf79dd653101fafffNoah's Classifieds is prone to a Cross Site Scripting Vulnerability, due to a failure in the application to properly sanitize the "frommethod" POST parameter in "index.php"
7f2ce59d8584ba9772970c21996bc8d825446c9bfb096e6dca2cf3d7af375432Armorize-ADV-2006-0004 discloses a special case of directory traversal vulnerability found in Goop Gallery, which is is a directory based photo gallery and does not require database installation
b3769cc80fe741b32f7bec14c0e108b8499b7a6516453701d8a95c541632c80eArmorize Technologies Security Advisory: Goop Gallery is vulnerable to a directory transversal attack.
b3769cc80fe741b32f7bec14c0e108b8499b7a6516453701d8a95c541632c80egcards suffers from a remote file inclusion vulnerability in the languagefile variable.
ff6633173ff1a254a614b614848ac6f65501086f15fba05dee59f43097883f3bThe Shmoo Group is soliciting papers and presentations for the third annual ShmooCon. ShmooCon 2007 will be a highly-technical and entertaining East Coast hacker convention focused on technology exploitation, inventive software & hardware solutions, as well as open discussion on a variety of technology & security topics. ShmooCon 2007 is hosted by The Shmoo Group and will be held at the Wardman Park Marriott in Washington, D.C., just minutes from your choice of 3-letter agencies.
e38ea996a17db46882e45edd4b7c21212fac9fd6d602a854bac901f0db034be8phpBB hack Admin User Viewed Posts Tracker 1.0x remote file inclusion exploit.
0f35c4e5ab143d24cb43e858acb4e779a457d6ba3b99fb93c7fb005731499148Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.
fd1440c3dd88fe0786914fa27936b96f435cd2280e831bcbf6bbaccb1f6be0b4Journals System 1.0.2 [RC2] and prior remote file inclusion exploit.
5a32eff9f9cf9c2e72bbd044ed3aab9b11f8f0527e27c4fa2afe5c646e963f66The phpBB insert module versions 0.1.0 and 0.1.1 suffer from a remote file inclusion vulnerability in functions_mod_user.php.
7d5a4e8b1a6238133afcc0e3561591d4ab317c13efd73b0355d0742efbe7accdSpamBlockerMod for phpBB versions 1.0.2 and prior remote file inclusion exploit.
ac5f96ef677f16db745a2bbb5c5dc8c8ac07407a13869e5f590d8a2a7d055883Morcego CMS 0.9.6 suffers from several remote file inclusion vulnerabilities.
159382245e5a3d6cde4a268e51a2e4d53062a6f583d28373fb46ef21aa263d73HPSBST02134 SSRT061187 rev.2 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS06-052, MS06-053 and MS06-054
65b3823f0823b08d98ed36453b2bef253617e4edba128d13ca4dad3c9234d6f3HPSBST02160 SSRT061254 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS06-055
ea5755a4f3eec410925e579f3594ce9a2198c7f1ff7b7e220a30dcb5b924f471HPSBMA02158 SSRT061251 rev.1 - HP Version Control Agent, Remote Unauthorized Access
c5a7872a09fadfb735959d12b780ae95a736059937ef55867aeecb7f7674f665HPSBUX02087 SSRT4728 rev.4 - HP-UX running TCP/IP Remote Denial of Service (DoS)
26a8fd29fbf0729486854f6dbb940aedaf3e12ddfe64d9b6ea971b19c43f3396Arp-sk is an ARP packet generator for Unix designed to illustrate ARP protocol flaws and applications such as ARP cache poisoning and MAC spoofing. It gives complete control of link and network level data. See arp-sk.org for further information.
6e1c98ff5396dd2d1c95a0d8f08f85e51cf05b1ed85ea7b5bcf73c4ca5d301ddHttprox is a perl-based HTTP proxy that modifies or adds an HTTP header for all outgoing HTTP traffic. It can handle multiple connections and is useful for Web-application penetration testing, such as modification of the Cookie, User-Agent and Referrer fields, or adding HTTP headers that would normally not be present.
a32745a7befd14b31c9a2fb9978860e1cf22eedc93cd7213171a414c7df53eacMayhemic Labs security advisory - Eazy Cart is vulnerable to authentication bypassing, data injection, and cross site scripting attacks
1e2c3720f968d0bd22c6497e05e7634cad5f6fe931ae06677332a139873db882eXpBlog 0.3.5 and prior suffers from several cross site scripting vulnerabilities.
40090aa0f292484dc0070cdcfd9c2c6b45cdea03eafed420e47e6734a7fef3e4PHP Cards versions 1.3 and prior suffer from a remote file inclusion vulnerability in $CardPath.
b63bcfad55bd6ddd9de5e16d5038b790d1fdadf64063219c7111063008df29a8phpMyConferences versions 8.0.2 and prior suffer from remote file inclusion in the lvc_include_dir variable.
7d207f439b11a7bdd6b75986f87a2b889fb000bc5874e48b958377259d6158b2ExtCalThai_Component 0.9.1 and prior suffer from several remote file inclusion vulnerabilities.
eb6fa39cbdbd3eeb6371b276da848c090f5606e26e0c2dfce1780f59bd5446datagit2b suffers from remote file inclusion vulnerability in the configpath variable.
28d25c56819b4e652b3c8305085ab43810e4722c0166efd42734e3fae7a8ba3f
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed