A4Desk PHP Event Calendar suffers from a remote file inclusion vulnerability.
7d9ec4f7d7eb87cdc98fedf188d969ca914a63b8d3d1bddaa96686b4471a1587moziloWiki versions 1.0.1 and below suffer from directory traversal, cross site scripting, and session fixation vulnerabilities.
dd70b38bb138d0c30f9c05b0e529b68107bda25a14630d9ff1f9bf7c2881f719WordPress MU versions below 2.6 suffer from a cross site scripting vulnerability in wpmu-blogs.php.
d01df92f8463db0d7b80d62d8d9f582c1da47c5dec6ed4787fcc220dd29a1b05Mandriva Linux Security Advisory - pam_mount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount. The updated packages have been patched to fix the issue.
88f64007e07ce27c4073d0a45eea45c638c255edb6baf467f57563d6b69711daMandriva Linux Security Advisory - A race condition in OpenAFS 1.3.40 through 1.4.5 allowed remote attackers to cause a denial of service (daemon crash) by simultaneously acquiring and giving back file callbacks. The updated packages have been patched to prevent this issue.
48ae0c9abe1b364b65cd7495b1c27e77093f14e6d689602e60fe6da182ea547cMicrosoft Internet Explorer 7 denial of service exploit that is rumored to work on Konqueror as well.
8dc016e3cc408775b62e24a690b409bf357a88e7eaaeeba745fa05f4de57e864Google Chrome version 0.2.149.30 and Safari version 3.1.2 suffer from a denial of service vulnerability.
531e1a8480c236fc4e23ac372b18f3494acdb457c7aad25a7c490e7f83db8d6535 byte setresuid(0,0,0) /bin/sh shellcode for linux/x86.
a75fe4a35f1a81e2a931a513f5247de16d0349c0ab34d8badb41cf283e1d5fa2eFront versions 3.5.1 build 2710 and below suffer from a remote arbitrary upload vulnerability.
f4788935b9457ec26e198374eff3b3fef8b80d2e17f7019c82569c3da83a88e2Micronation Banking System version 1.5.0 suffers from multiple remote file inclusion vulnerabilities.
f9d3360dd468bb9b3531a4ef31fca23c0fb130714fad0339aa04c75d8393ca8bArab CMS suffers from a local file inclusion vulnerability in rss.php.
afc86b155ed4f8dbaac2c98cfdb2416a8b998005d9d0e75834d2af166200ac95Secunia Security Advisory - Crackers_Child has reported a vulnerability in Post Comments Script, which can be exploited by malicious people to bypass certain security restrictions.
307b077bb6ac43343d6a5b6f07ddd46e7804f95c5340fc9c85bb4fe9633aa581Secunia Security Advisory - A vulnerability has been reported in tnftpd, which can be exploited by malicious people to conduct cross-site request forgery attacks.
e61fb4359bbfd6f420cd26a06d8d6aee432552b36af41283ce5658206ec454d5Secunia Security Advisory - S.W.A.T. has reported a vulnerability in Pilot Group eTraining, which can be exploited by malicious people to conduct SQL injection attacks.
3d8ceadc9f406a1fb0f915afce3dbedf38559fb1fafeee2df6f6da9562b3d366Secunia Security Advisory - bruiser has discovered a vulnerability in Autodesk Design Review, which can be exploited by malicious people to compromise a user's system.
aecc310aeaf4014b308da4fc4f3518dd556137f3f6271b7b15df984dae2ccc9dSecunia Security Advisory - Super Cristal has reported some vulnerabilities in PG MatchMaking Script, which can be exploited by malicious people to conduct SQL injection attacks.
79b51b3cb9552cca3d4e80baf3232ffb394fe06ec98261d11021305bd40fe7b3Secunia Security Advisory - A vulnerability has been reported in Citrix Presentation Server, which can be exploited by malicious, local users to gain escalated privileges.
0edc097cc60b78e28cc524128ea0453a248df1922f71ca4af52e9c6782e6559eSecunia Security Advisory - David Vieira-Kurz has reported some vulnerabilities in moziloCMS, which can be exploited by malicious people to conduct cross-site scripting and session fixation attacks and disclose sensitive information.
4ec5cb9565267ed05e8fff96f4cb3d3da9bbccb6ecaf1016b86b49245c3c4197Secunia Security Advisory - David Vieira-Kurz has reported some vulnerabilities in moziloWiki, which can be exploited by malicious people to conduct cross-site scripting and session fixation attacks and disclose sensitive information.
b2a939a72e9b895c8bdd7ece7757aab3198676a0192f9b51c62ad2cbdac346bfSecunia Security Advisory - dun has discovered a vulnerability in PlugSpace, which can be exploited by malicious people to disclose sensitive information.
04182f4a105c7a897b4396ad1c72f9ff70b89afc19c228b0741581557d9bd5eaSecunia Security Advisory - r45c4l has reported a vulnerability in MyCard, which can be exploited by malicious users to conduct SQL injection attacks.
eb6b8936be122dcb5eaf52579ced35db79655fe8467f35aed47a5cefd1cdf3bbSecunia Security Advisory - Some vulnerabilities have been reported in MPlayer, which potentially can be exploited by malicious people to compromise a user's system.
04015f4c43ed1779ed5fb699b0eb52f74d4ec09a7224a5c1b3c354f100067784Secunia Security Advisory - CraCkEr has reported a vulnerability in Real Estate Manager, which can be exploited by malicious people to conduct SQL injection attacks.
036ec3105df2fc2dcae6ff7eb2e381491a001ccb04f9aebb7042cd5a95064d92Secunia Security Advisory - Two vulnerabilities have been discovered in The Gemini Portal, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, and compromise a vulnerable system.
2c1a7d9c553622085aab50d2f74ac01d3507dbe1912da575271218af3b06d6c4Secunia Security Advisory - Pepelux has discovered a vulnerability in Crux Gallery, which can be exploited by malicious people to bypass certain security restrictions.
1f5a73bc0e2fd3c497344b091a5cebc7acb362835bc1c843bbe39d653dfb21dd
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed