Mail Index
- [SECURITY] [DSA 1083-1] New motor packages fix arbitrary code execution
- Re: Fire fox dos exploit
- From: Josh Zlatin-Amishav
- toendaCMS 0.7.0 Cross Site Scripting
- file include exploit in Support Cards v1
- Secunia Research: Eserv/3 IMAP and HTTP Server Multiple Vulnerabilities
- Secunia Research: ZipCentral ZIP File Handling Buffer Overflow Vulnerability
- New SecurityFocus mailing list: Focus-Apple
- Re: New SecurityFocus mailing list: Focus-Apple
- Re: Fire fox dos exploit
- Internet explorer Vulnerbility
- rPSA-2006-0087-1 kernel
- [SECURITY] [DSA 1084-1] New typespeed packages fix arbitrary code execution
- SUSE Security Announcement: rug (SUSE-SA:2006:029)
- [security bulletin] HPSBUX02122 SSRT061158 rev.1 - HP-UX Mozilla Remote Execution of Arbitrary Code, Denial of Service (DoS)
- multiple file inclusion exploits in ovidentia v5.8.0
- FreeBSD Security Advisory FreeBSD-SA-06:16.smbfs
- From: FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-06:15.ypserv
- From: FreeBSD Security Advisories
- multiple file inclusion exploits in ovidentia v5.8.0
- ishopcart cgi 0day and multiple vulnerabilities
- TAL RateMyPic v1.0
- Snort HTTP Inspect Pre-Processor Uricontent Bypass
- From: Christian Swartzbaugh
- Squirrelmail local file inclusion
- SyScan'06 - The Hackers' Conference in Asia
- [SECURITY] [DSA 1085-1] New lynx-cur packages fix several vulnerabilities
- Re: Internet explorer Vulnerbility
- Corsaire Security Advisory - VMware ESX Server Cross Site Scripting issue
- Re: # MHG Security Team --- PHP NUKE All version Remote File Inc.
- [ MDKSA-2006:094 ] - Updated evolution packages fix DoS (crash) vulnerability on certain messages.
- CA Forum Remote SQL Injection
- Forensic memory dumping intricacies - PhysicalMemory, DD, and caching issues
- Joomla/Mambo CMS Component SimpleBoard 1.1 XSS-Vulnerabilities
- RE: Internet explorer Vulnerbility
- Re: PHPSimple Choose v0.3
- northstudio Cross Site Scripting Vulnerability
- Re: [SECURITY] [DSA 1085-1] New lynx-cur packages fix several vulnerabilities
- SMF 1.0.7 and lower plus 1.1rc2 and lower - IP spoofing vulnerability/IP ban evasion vulnerability
- Re: my Web Server << v-1.0 Denial of Service Exploit
- Re: Re: # MHG Security Team --- PHP NUKE All version Remote File Inc.
- VMSA-2006-0002 - VMware Server sensitive information lifetime issue
- From: VMware Security Team
- Weblog Oggi v1.0
- PHP ManualMaker v1.0
- Bytehoard 2.1 Remote File Include
- Re: Jiwa Financials - Reporting allows execution of arbitrary reports as SQL user with full permissions.
- newsfactory Cross Site Scripting & SQL injection
- Re: Squirrelmail local file inclusion
- Redaxo CMS <= 3.2 Remote File Include
- New Snort Bypass - Patch - Bypass of Patch
- aspWebLinks 2.0 Remote SQL Injection / Admin Pass Change Exploit
- MyTrueHood.com - XSS
- [SECURITY] [DSA 1086-1] New xmcd packages fix denial of service
- new bug
- Pro Publish SQL Injection and XSS Vulnerabilities
- # MHG Security Team --- MyBloggie 2.1.1 version Remote File Include Vulnerabilit
- [DRUPAL-SA-2006-005] Drupal 4.6.7 / 4.7.1 fixes SQL injection issue
- [DRUPAL-SA-2006-007] Drupal 4.6.8 / 4.7.2 fixes arbitrary file execution issue
- [DRUPAL-SA-2006-008] Drupal 4.6.8 / 4.7.2 fixes XSS issue
- [DRUPAL-SA-2006-006] Drupal 4.6.7 / 4.7.1 fixes arbitrary file execution issue
- rPSA-2006-0091-1 firefox thunderbird
- Re: Re: # MHG Security Team --- PHP NUKE All version Remote File Inc.
- Re: New Snort Bypass - Patch - Bypass of Patch
- Pixelpost <= 1-5rc1-2 multiple vulnerabilities
- [SECURITY] [DSA 1087-1] New PostgreSQL packages fix encoding vulnerabilities
- [ECHO_ADV_32$2006] SCart 2.0 Remote Code Execution
- Critical SQL Injection in CoolForum
- [SECURITY] [DSA 1088-1] New centericq packages fix arbitrary code execution
- Blackhat USA 2006 - Review , remarks and proposal agenda
- From: newslist@xxxxxxxxxxxxxxxxxxxxxx
- Re: # MHG Security Team --- MyBloggie 2.1.1 version Remote File Include Vulnerabilit
- LocazoList Classifieds <= v1.05e(viewmsg.asp) Remote SQL Injection Vulnerability
- phpBB2 (template.php) Remote File Inclusion
- [MajorSecurity #7]dotWidget CMS <= 1.0.6 - Remote File Include Vulnerability
- [SECURITY] [DSA 1089-1] New freeradius packages fix arbitrary code execution
- Re: New Snort Bypass - Patch - Bypass of Patch
- DotClear <= 1.2.4 'blog_dc_path' (php5) arbitrary remote inclusion
- LifeType <=1.0.4 'articleId' SQL injection
- Re: WBB<--v2.3.4"misc.php" SQL injection Vulnerability
- Re: OaBoard 1.0 Remote File inclusion
- Re: [Info Disclosure] Diesel PHP Job Site Latest Version
- Re: Fire fox dos exploit
- RE: Fire fox dos exploit
- Re: Fire fox dos exploit
- From: Ronald van den Blink
- Re: Fire fox dos exploit
- Re: Re: Fire fox dos exploit
- Re: Fire fox dos exploit
- Re: Internet explorer Vulnerbility
- Re: phpFoX All Version Login Exploit
- VMSA-2006-0001 - VMware ESX Server Cross Site Scripting issue
- From: VMware Security Team
- Re: Fire fox dos exploit
- From: Ronald van den Blink
- Re: Fire fox dos exploit
- Timberland Search XSS Vulnerability
- New <<BackTrack release announcement
- SMS "messages.php" SQL injection
- XSS in ICQ.com
- Client buffer-overflow in Quake 3 engine (1.32c / rev 795)
- Bookmark4U Remote File Include
- # MHG Security Team ---Rumble 1.02 version Remote File Inc.
- # MHG Security Team ---Rumble 1.02 version Remote File Inc.
- From: MSN : erne [at] ernealizm [dot] com
- Re: [Full-disclosure] bug in oscomerce
- CyBoards PHP Lite v1.25 (common.PHP) Remote File Inclusion
- Multiple Vendor NTFS Data Stream Malware Stealth Technique
- RE: phpBB2 (template.php) Remote File Inclusion
- LabWiki v1.0
- Kmita FAQ v1.0
- RE: Fire fox dos exploit
- TSLSA-2006-0032 - multi
- From: Trustix Security Advisor
- LocazoList Classifieds <= v1.05e(viewmsg.asp) Remote SQL Injection Vulnerability
- FunkBoard CF0.71 (profile.php) Remote User Pass Change Exploit
- ewsEngine <= 1.5.0(newscomments.php) Remote SQL Injection Vulnerability
- Advisory 04/2006: DokuWiki PHP code execution vulnerability in spellchecker
- Re: [Full Disclosure] [Kil13r-SA-20060520] Microsoft Internet Explorer Crash Vulnerability
- [MajorSecurity #8]DreamAccount <= 3.1 - Remote File Include Vulnerability
- [MajorSecurity #9]HostAdmin <= 3.1 - Remote File Include Vulnerability
- Re: phpBB2 (template.php) Remote File Inclusion
- From: ad@xxxxxxxxxxxxxxxx
- Personal Information Disclosure/Account Hijacking Vulerability in mafia online games
- Dmx Forum <= v2.1a Remote Passwords Disclosure
- Re: New Snort Bypass - Patch - Bypass of Patch
- [Kil13r-SA-20060605] Syworks SafeNET Policy File Vulnerability
- [Kil13r-SA-20060606] ESTsoft InternetDISK Arbitary Code Execution Vulnerability
- [KAPDA::#47] - myNewsletter 1.1.2 SQL_Injection
- Re: [Full-disclosure] RealVNC 4.1.1 Remote Compromise
- Re: Bookmark4U Remote File Include
- ASPScriptz Guest Book 2.0 XSS
- Re: PCPIN Chat <= 5.0.4 "login/language" remote cmmnds xctn
- Re: Multiple Vendor NTFS Data Stream Malware Stealth Technique
- file include in Xtreme Downloads v.1.0
- Re: phpBB2 (template.php) Remote File Inclusion
- Multiple file include exploits in Xtreme Downloads v.1.0
- Re: [Full-disclosure] RealVNC 4.1.1 Remote Compromise
- Particle Gallery v1.0.0
- Partial Links v1.2.2
- ParticleSoft Whois v1.0.3
- Re: phpBB2 (template.php) Remote File Inclusion
- ParticleSoft Wiki v1.0.2
- [ MDKSA-2006:095 ] - Updated libtiff packages fixes tiffsplit vulnerability
- Re: phpBB2 (template.php) Remote File Inclusion
- Re: # MHG Security Team --- MyBloggie 2.1.1 version Remote File Include Vulnerabilit
- GANTTy v1.0.3
- Asterisk 1.2.9 and Asterisk 1.0.11 Released - Security Fix
- IRM 019: MailMarshal 6.1 SMTP MTA Content Filter Bypass
- [SECURITY] [DSA 1090-1] New spamassassin packages fix remote command execution
- libgd 2.0.33 infinite loop in GIF decoding ?
- Re: [MajorSecurity #8]DreamAccount <= 3.1 - Remote File Include Vulnerability
- Re: Squirrelmail local file inclusion
- [ GLSA 200606-02 ] shadow: Privilege escalation
- From: Sune Kloppenborg Jeppesen
- RE: Fire fox dos exploit
- Re: Buffer-overflow and crash in Fenice OMS 1.10
- From: giampaolo . mancini
- bug on showwich.asp
- BloggIT <= 1.01 (admin.php) Arbitrary code execution
- TinyPHP forum <= 3.6 Remote Command Execution Exploit
- Re: [Full-disclosure] RealVNC 4.1.1 Remote Compromise
- Re: Re: Fire fox dos exploit
- Re: WebCalendar-1.0.3 reading of any files
- Re: [Info Disclosure] Diesel PHP Job Site Latest Version
- From: Ronald van den Blink
- XSS on LarkinWEB & Company
- Re: Squirrelmail local file inclusion
- ADVISORY - D-Link Wireless Access-Point
- Re: XSS in ICQ.com
- [ GLSA 200606-03 ] Dia: Format string vulnerabilities
- From: Sune Kloppenborg Jeppesen
- rPSA-2006-0096-1 spamassassin
- Vice Stats 0.5b SQL injection
- Re: XSS in ICQ.com
- [HV-LOW] Microsoft NetMeeting memory corruption (Brief)
- [ GLSA 200606-05 ] Pound: HTTP request smuggling
- From: Sune Kloppenborg Jeppesen
- Re: IRM 019: MailMarshal 6.1 SMTP MTA Content Filter Bypass
- MyBB 1.1.2 New XSS
- [FLSA-2006:189137-1] Updated mozilla packages fix security issues
- [ GLSA 200606-04 ] Tor: Several vulnerabilities
- From: Sune Kloppenborg Jeppesen
- [ GLSA 200606-01 ] Opera: Buffer overflow
- From: Sune Kloppenborg Jeppesen
- aWebNews <= 1.0 (login.php) Remote DocumentRoot file disclosure
- MiraksGalerie <= 2.62 Multiple Remote command execution
- [FLSA-2006:190777] Updated X.org packages fix security issue
- Re: XSS in ICQ.com
- [FLSA-2006:190941] Updated ipsec-tools package fixes security issue
- Re: [Full-disclosure] RealVNC 4.1.1 Remote Compromise
- [FLSA-2006:190884] Updated squirrelmail package fixes security issues
- [FLSA-2006:189137-2] Updated firefox package fixes security issues
- Calendar Express 2 SQL injection
- [ MDKSA-2006:096 ] - Updated openldap packages fixes buffer overflow vulnerability.
- [ MDKSA-2006:097 ] - Updated MySQL packages fixes SQL injection vulnerability.
- PBL Guestbook v1.31 - XSS
- [ MDKSA-2006:098 ] - Updated postgresql packages fixes SQL injection vulnerabilities.
- Mafia Moblog Full Path Disclosure / SQL injection
- Babykatmedia.com scripts - vSCAL & vREAL - XSS Vulns
- Chemical Directory - XSS
- Easy Ad-Manager
- [NOBYTES.COM: #12] ViArt Shop v2.5.5 - XSS Vulnerability
- [ GLSA 200606-06 ] AWStats: Remote execution of arbitrary code
- From: Sune Kloppenborg Jeppesen
- [MajorSecurity #10]i.List <= 1.5 - XSS
- MiraksGalerie <= 2.62 Multiple Remote command execution
- E-Dating System from scriptsez.net - XSS
- [SECURITY] [DSA 1093-1] New xine-ui packages fix denial of service
- Ez Ringtone Manager from scriptez.net - XSS
- GUESTEX guestbook code execution
- Tikiwiki 1.9.3.2 security release
- Re: aWebNews <= 1.0 (login.php) Remote DocumentRoot file disclosure
- Internet Explorer vulnerbility
- Uninformed Journal Release Announcement: Volume 4
- Mathcad Area Lock Vulnerability
- NPDS <= 5.10 Local Inclusion, XSS, Full path disclosure
- Back-end = 0.7.2.1 (jpcache.php) Remote command execution
- PHP-Nuke <= 7.9 Search XSS Vulnerability
- [SECURITY] [DSA 1091-1] New TIFF packages fix arbitrary code execution
- Re: phpBannerExchange 2.0 Directory Traversal Vulnerability
- bug of script injection in shoutcast servers
- Re: IRM 019: MailMarshal 6.1 SMTP MTA Content Filter Bypass
- Re: Tiny Web Gallery <= 1.4 XSS
- Ie opera dos exploit
- cms-bandits 2.5, Remote command execution
- [USN-289-1] tiff vulnerabilities
- rPSA-2006-0098-1 gdm
- [USN-291-1] FreeType vulnerabilities
- 'Multiple Sql injection and XSS in integramod portal
- Re: Multiple Vendor NTFS Data Stream Malware Stealth Technique
- [SECURITY] [DSA 1092-1] New MySQL 4.1 packages fix SQL injection
- Re: [Full-disclosure] RealVNC 4.1.1 Remote Compromise
- [security bulletin] HPSBMA02121 SSRT061157 rev.2 - HP OpenView Storage Data Protector Remote Arbitrary Command Execution
- [security bulletin] HPSBUX02090 SSRT051058 rev.2 - HP-UX Secure Shell Remote Denial of Service (DoS)
- SSL VPNs and security
- Re: SSL VPNs and security
- From: Amit Klein (AKsecurity)
- [USN-295-1] xine-lib vulnerability
- [ GLSA 200606-07 ] Vixie Cron: Privilege Escalation
- From: Sune Kloppenborg Jeppesen
- [USN-294-1] courier vulnerability
- [SECURITY] [DSA 1094-1] New gforge packages fix cross-site scripting
- okscripts.com - XSS Vulns
- Dell Openmanage CD Vulnerability
- iFoto v0.20-06/06/06
- phazizGuestbook v2.0 - XSS
- Re: PHP-Nuke <= 7.9 Search XSS Vulnerability
- [USN-292-1] binutils vulnerability
- [USN-293-1] gdm vulnerability
- Docebo CMS 3.0.3, Remote command execution
- Docebo Core 3.0.3, Remote command execution
- mole.com.ua Booking Script
- mole.com.ua Ticket Booking Script - XSS
- Docebo Kms 3.0.3, Remote command execution
- Re: DGbook v1.0 - XSS
- MobeSpace v2.0 - XSS
- Re: libgd 2.0.33 infinite loop in GIF decoding ?
- Docebo Lms 3.0.3, Remote command execution
- Re: SSL VPNs and security
- Re: SSL VPNs and security
- [ GLSA 200606-08 ] WordPress: Arbitrary command execution
- From: Sune Kloppenborg Jeppesen
- Secunia Research: SelectaPix Cross-Site Scripting and SQL Injection Vulnerabilities
- Secunia Research: AutoMate unacev2.dll Buffer Overflow Vulnerability
- TinyMuw v1.0 - XSS
- PHP-Nuke Download Module Remote SQL Injection
- Contensis CMS XSS vunerability
- [USN-288-3] PostgreSQL client vulnerabilities
- Re: IRM 019: MailMarshal 6.1 SMTP MTA Content Filter Bypass
- [USN-288-2] PostgreSQL server/client vulnerabilities
- Windows Software Restriction Policy Protection Bypass
- P.A.I.D v2.2
- CORE-2006-0327: IAXclient truncated frames vulnerabilities
- From: Core Security Technologies advisories
- ST AdManager Lite v1
- Re: [Full-disclosure] Windows Software Restriction Policy Protection Bypass
- 0verkill 0.6, Remote integer overflow
- TSLSA-2006-0034 - multi
- From: Trustix Security Advisor
- [USN-296-1] firefox vulnerabilities
- [Kil13r-SA-20060609-1] Daum Search Cross-Site Scripting Vulnerability
- [Kil13r-SA-20060609-2] DaNaWa Search Cross-Site Scripting Vulnerability
- [Kil13r-SA-20060609-3] DreamWiz Search Cross-Site Scripting Vulnerability
- CORE-2006-0330: Asterisk PBX truncated video frame vulnerability
- From: Core Security Technologies advisories
- rPSA-2006-0099-1 openldap openldap-clients openldap-servers
- [SECURITY] [DSA 1095-1] New freetype packages fix several vulnerabilities
- Ringlink v3.2 - XSS
- fx-APP Version 0.0.8.1
- AsianXO.com - XSS with cookie data include
- Tempinbox.com
- [MajorSecurity #11]OpenCMS<= 6.2.1 - XSS
- [MajorSecurity #13]Cabacos Web CMS<= 3.8 - XSS
- [MajorSecurity #14]CFXe-CMS <= 2.0 - XSS
- Joomla! 1.0 Remote File Inclusion
- [MajorSecurity #12]ZMS<= 2.9 - XSS
- ERRATA: [ GLSA 200604-10 ] zgv: Heap overflow
- From: Sune Kloppenborg Jeppesen
- [KAPDA::#47] - Snitz Forum <= 3.4.05 SQL-Injection Vulnerability
- igloo DoubleSpeak v 0.1 Multiple remote file inclusion
- [ GLSA 200606-10 ] Cscope: Many buffer overflows
- From: Sune Kloppenborg Jeppesen
- Diaryland.com - XSS
- [ GLSA 200606-11 ] JPEG library: Denial of Service
- From: Sune Kloppenborg Jeppesen
- Mydeardiary.com - XSS
- [ GLSA 200606-12 ] Mozilla Firefox: Multiple vulnerabilities
- From: Sune Kloppenborg Jeppesen
- 5 Star Review - review-script.com - XSS w/ cookie output
- [ GLSA 200606-13 ] MySQL: SQL Injection
- From: Sune Kloppenborg Jeppesen
- Secunia Research: MyBB "domecode()" PHP Code Execution Vulnerability
- Lycos.com - XSS vulnerability
- Re: iFoto v0.20-06/06/06
- Hotbot.com - XSS vulnerability in search engine
- vbulletin.com Multiple XSS Vulnerabilities
- WinSCP - URI Handler Command Switch Parsing
- RCblog 1.03 Directory Traversal [index.php]
- CS-Forum <= 0.81 Cross Site Scripting, SQL Injection, Full Path Disclosure
- tempnam() Bypass unique file name PHP 5.1.4
- Wanderlist.com - XSS vuln with sessions disclosure
- Myscrapbook v3.1 - XSS
- PaintedOver.com, Inc. 2004-2006 Xss Vulnerabilities
- Foing (manage_songs.php) Remote File Inclusion[phpBB]
- [KAPDA::48]CopperminePhotoGallery1.4.8~ addhit() function~ SQLinjection attack
- Opengaia.com - XSS Vuln & Session Include
- sorry i wrong something, this is original AWF CMS 1.11 adv
- Wireclub.com - XSS & cookie disclosure
- Nowtalking.com - XSS
- cescripts.com - XSS
- ThWboard 3.0 <= SQL Injection
- Stargazer.org - XSS with Session output
- Windows XP Task Scheduler Local Privilege Escalation (Advisory)
- [ GLSA 200606-14 ] GDM: Privilege escalation
- From: Sune Kloppenborg Jeppesen
- Re: igloo DoubleSpeak v 0.1 Multiple remote file inclusion
- Virtualtourist.com - XSS with cookie disclosure
- rPSA-2006-0100-1 freetype
- [ MDKSA-2006:099 ] - Updated freetype2 packages fixes multiple vulnerabilities.
- Re: SSL VPNs and security
- RE: Internet Explorer vulnerbility
- From: Greg Merideth (Forward Technology)
- myPHP Guestbook 2.0.2 XSS Vulnerabilitie
- Re: SSL VPNs and security
- Flork.com
- Vampirefreaks.com - XSS with cookie disclosure
- [EEYEB-20060524] Symantec Remote Management Stack Buffer Overflow
- # MHG Security Team --- PHORUM 5.1.13 Remote File Inc.
- Meefo.com - XSS with cookie include
- Re: SSL VPNs and security
- Onlinenode.com - XSS
- Re: Internet Explorer vulnerbility
- Yourfacesucks.com - XSS & cookie disclosure
- [ GLSA 200606-09 ] SpamAssassin: Execution of arbitrary code
- From: Sune Kloppenborg Jeppesen
- Blackplanet.com - XSS & cookie disclosure vuln.
- Re: Ie opera dos exploit
- Invision Power Board XSS
- Re: Windows XP Task Scheduler Local Privilege Escalation (Advisory)
- Re: Internet Explorer vulnerbility
- internet explorer vulnerability based on MarjinZ & Mr.Niega discovered
- [FSA013] phpCMS 1.2.1pl2, Remote command execution
- Call For Papers - No cON Name 2006 Edition Spain
- From: Jose Nicolas Castellano
- Emllabs.com - XSS
- Content-Builder (CMS) 0.7.5, Remote command execution
- DCP-Portal 6.1.x, Remote command execution
- Re: BUGTRAQ:20060611 ThWboard 3.0 <= SQL Injection
- VBZooM <<-- V1.11 "show.php" SQL injection
- VBZooM <<--V1.02 "meaning.php" SQL injection
- Re: SSL VPNs and security
- VBZooM <<--V1.11 "subject.php" SQL injection
- [SECURITY] [DSA 1096-1] New webcalendar packages fix arbitrary code execution
- VBZooM <<--V1.01 "language.php" SQL injection
- Simpnews <= All version - Remote File Include Vulnerabilities
- multiple Xss exploits in 35mmslidegallery V6
- High Risk Vulnerability in Microsoft Windows RASMAN Service
- iDefense Security Advisory 06.13.06: Windows MRXSMB.SYS MRxSmbCscIoctlOpenForCopyChunk Overflow
- iDefense Security Advisory 06.13.06: Microsoft Internet Explorer ART File Heap Corruption Vulnerability
- ZDI-06-017: Microsoft Internet Explorer UTF-8 Decoding Heap Overflow Vulnerability
- PHP MESSENGER 1.0 Version - Remote File Include Vulnerability
- Jobline 1 1 1 Version - Remote File Include Vulnerability
- Amr Talkbox talkbox.PHP - Remote File Include Vulnerabilities
- S H O U T B O X (v1.5) Version - Remote File Include Vulnerability
- Re: Shoutpro 1.0 Version - Remote File Include Vulnerability
- iDefense Security Advisory 06.13.06: Windows MRXSMB.SYS MrxSmbCscIoctlCloseForCopyChunk DoS
- Ltwcalendar 4.1.3 version - Remote File Include Vulnerabilities
- [REVERSEMODE ADVISORY] MS06-030 - Microsoft Mrxsmb.sys privilege escalation advisory
- # MHG Security Team --- PHPAskIt v2.0.1 Remote File Inc.
- Web-CMS <<--1.0 "print.php" SQL injection
- Re: Simpnews <= All version - Remote File Include Vulnerabilities
- [REVERSEMODE ADVISORY] MS06-030 NtClose DeadLock.
- TikiWiki Sql injection & XSS Vulnerabilities
- From: bug@xxxxxxxxxxxxxxx
- Re: vbulletin.com Multiple XSS Vulnerabilities
- Re: PHP-Nuke <= 7.9 Search XSS Vulnerability
- blur6ex <= 0.3.462 'ID' blind sql injection
- REMOTE FILE INCLUSION ( ALL )
- RE: Dell Openmanage CD Vulnerability
- Chipmailer <= 1.09 Multiple Vulnerabilities
- RE: Windows Software Restriction Policy Protection Bypass
- iDefense Security Advisory 06.13.06: Windows Media Player PNG Chunk Decoding Stack-Based Buffer Overflow
- GamePlay.co.uk XSS
- PhpMyFactures 1.0 Cross Site Scripting, SQL Injection, Full Path Disclosure and others
- Oracle DBMS_STANDARD security problem
- Re: PaintedOver.com, Inc. 2004-2006 Xss Vulnerabilities
- file include exploits in mcGuestbook 1.3
- SYMSA-2006-004: Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution
- Simpleshout 1.6.0 Version - Remote File Include Vulnerability
- ZDI-06-018: Microsoft Internet Explorer DXImageTransform ActiveX Memory Corruption Vulnerability
- Shoutpro 1.0 Version - Remote File Include Vulnerability
- [MajorSecurity #17] SixCMS <= 6 - Multiple XSS and directory traversal vulnerabilities
- G Shout 1.3.1 Version - Remote File Include Vulnerability
- [USN-297-1] Thunderbird vulnerabilities
- [USN-298-1] libgd2 vulnerability
- [USN-288-4] dovecot regression fix
- Secunia Resaerch: Internet Explorer Exception Handling Memory Corruption Vulnerability
- [USN-299-1] dhcdbd vulnerability
- Black Hat Speakers + 2005 Content on-line
- Secunia Research: PicoZip "zipinfo.dll" Multiple Archives Buffer Overflow
- [ MDKSA-2006:099-1 ] - Updated freetype2 packages fixes multiple vulnerabilities.
- [ MDKSA-2006:100 ] - Updated gdm packages fix vulnerability
- Re: REMOTE FILE INCLUSION ( ALL )
- Freeze Greetings Cards PWD.txt
- bbrss PhpBB (phpbb_root_path) Remote File Inclusion
- wbb<<--v 2.2.2 "thread.php" SQL injection
- wbb<<--v 2.2.1 "studienplatztausch.php" SQL injection
- wbb<<--v 2.1.6 "profile.php" SQL injection
- [ GLSA 200606-16 ] DokuWiki: PHP code injection
- From: Sune Kloppenborg Jeppesen
- SEC Consult SA-20060613-0 :: Outlook Web Access Cross Site Scripting Vulnerability
- From: SEC Consult Research
- Flipper Poll (root_path) Remote File Inclusion
- [ GLSA 200606-15 ] Asterisk: IAX2 video frame buffer overflow
- From: Sune Kloppenborg Jeppesen
- Fusion Polls (xtrphome) Remote File Inclusion
- PhpBlueDragon CMS 2.9.1, File inclusion vulnerability
- [KDE Security Advisory] KDM symlink attack vulnerability
- [SECURITY] [DSA 1097-1] New Kernel 2.4.27 packages fix several vulnerabilities
- MySQL DoS
- [ MDKSA-2006:101 ] - Updated squirrelmail packages fix vulnerabilities
- [SECURITY] [DSA 1098-1] New horde3 packages fix cross-site scripting
- [ MDKSA-2006:102 ] - Updated libtiff packages fixes tiff2pdf vulnerability
- [FSA016] ISPConfig 2.2.3, File inclusion vulnerability
- [USN-301-1] kdm vulnerability
- [ MDKSA-2006:103 ] - Updated spamassassin packages fix vulnerability
- Secunia Research: CMS Mundo SQL Injection and File Upload Vulnerabilities
- EC2ND - Call for Papers
- [SECURITY] [DSA 1099-1] New horde2 packages fix cross-site scripting
- FreeBSD Security Advisory FreeBSD-SA-06:17.sendmail
- From: FreeBSD Security Advisories
- Secunia Research: DeluxeBB SQL Injection and File Inclusion Vulnerabilities
- [USN-300-1] wv2 vulnerability
- Re: Amr Talkbox talkbox.PHP - Remote File Include Vulnerabilities
- ePrayver v.Alpha - XSS
- APBoard 2.2-r3 <= SQL Injections
- [ MDKSA-2006:104 ] - Updated sendmail packages fix remotely exploitable vulnerability
- Re: MySQL DoS
- [SECURITY] [DSA 1100-1] New wv2 packages fix integer overflow
- MP3 Search/Archive v1.2 - XSS
- Advisory: Authentication bypass in phpBannerExchange
- Advisory: Unauthorized password recovery in phpBannerExchange
- HotPlugCMS_1.0 - SQL Injection Vulnerability
- Andys Chat 4.5 (action) Remote File Inclusion
- [USN-297-2] Thunderbird extensions update for recent security update
- [ GLSA 200606-18 ] PAM-MySQL: Multiple vulnerabilities
- From: Sune Kloppenborg Jeppesen
- Regarding "SMB Invalid Handle Value" - MS06-030. Vulnerability not fixed.
- [ GLSA 200606-17 ] OpenLDAP: Buffer overflow
- From: Sune Kloppenborg Jeppesen
- rPSA-2006-0106-1 kdebase
- [ GLSA 200606-19 ] Sendmail: Denial of Service
- From: Sune Kloppenborg Jeppesen
- HotPlugCMS 1.0, Cross-Site Scripting Vulnerabilities
- rPSA-2006-0105-1 arts
- TSLSA-2006-0036 - multi
- From: Trustix Security Advisor
- dvdwolf SQL injection/XSS
- [USN-303-1] MySQL vulnerability
- Boardhost.com - XSS
- Develooping Flash Chat (banned_file) Remote File Inclusion
- Indexu v 5.0.01 Multiple Remote File Include Vulnerabilities
- Re: Several flaws in e-business designer (eBD)
- [security bulletin] HPSBUX02115 SSRT061077 rev.1 - HP-UX running Support Tools Manager (xstm, cstm, stm) Local Denial of Service (DoS)
- file include exploits in nucleus 3.23
- Re: [FSA016] ISPConfig 2.2.3, File inclusion vulnerability
- aXentForum II XSS vuLLn
- Chatizens.com - XSS with cookie disclosure
- Calendarix 0.7.20060401, SQL Injection Vulnerabilities
- Carspace.com - XSS with cookie disclosure
- Ji-takz Chat (mycfg) Remote File Inclusion
- Zeroboard File Upload & extension bypass Vulnerability
- Cisco Secure ACS Cross Site Scripting Vulnerability.
- Blacksingles.com - XSS & cookie disclosure
- file include exploits in mcGuestbook 1.3
- [ MDKSA-2006:105 ] - Updated kdebase packages fix local vulnerability in kdm
- Re: Secunia Research: PicoZip "zipinfo.dll" Multiple Archives BufferOverflow
- [ MDKSA-2006:106 ] - Updated mdkkdm packages fix local vulnerability
- PHP security (or the lack thereof)
- PictureDis Products "lang" Parameter File Inclusion Vulnerability
- Re: [Bugtraq ID: 17909] ISPConfig Session.INC.PHP Remote File Include Vulnerability
- Youtube.com - XSS & cookie disclosure
- Bingbox.com - XSS & cookie disclosure
- RE: Cisco Secure ACS Cross Site Scripting Vulnerability.
- From: Paul Oxman (poxman)
- file include exploits in dotwidgeta Version 2
- Simple PHP Poll Authecnication Admin ByPass
- Netscape.com - Cross site scripting vulnerability
- webcrawler.com - Cross site scripting vulnerability
- GreatDomains.com - XSS with cookie disclosure
- Re: PHP security (or the lack thereof)
- Re: PHP security (or the lack thereof)
- bitweaver <= v1.3 multiple vulnerabilities
- [ECHO_ADV_33$2006] CMS Faethon 1.3.2 mainpath Remote File Inclusion
- Re: PHP security (or the lack thereof)
- Housecarers.com - XSS & cookie disclosure
- Dealgates.com - XSS with cookie disclosure
- Re: Bingbox.com - XSS & cookie disclosure
- Mambo <= 4.6rc1 sql injection
- Cline Communications Sql injection
- XSS in GardenWeb
- Apnaspace.com - XSS with cookie disclosure
- Re: SSL VPNs and security
- hi5.com - XSS with cookie disclosure
- Re: GamePlay.co.uk XSS
- Re: RE: Internet Explorer vulnerbility
- ISO.org - XSS vulnerability
- alipager xss attack
- Hotscripts.com - XSS with cookie disclosure
- Proof of concept: mybb 1.1.2 remote code execution
- [Kurdish Security # 8] DCP-Portal Remote File Include Vulnerability [Editor DHTML]
- Facerave.com - XSS & sessions disclosure
- animesuki XSS
- Re: PHP Advanced Transfer Manager Download users password hashes
- Windowsitpro.com - XSS with cookie disclosure
- Cybersocieties.com - XSS & cookie disclosure
- Ratescene.co.uk - XSS with session disclosure
- Macworld.com - XSS vulnerability
- About.com - XSS with cookie disclosure
- Ratemylook.co.uk - XSS with session disclosure
- Re: Ie opera dos exploit
- Palm.com - XSS vulnerability
- webcrawler.com - XSS vulnerability in search-engine
- VampireFreaks journal XSS
- Ashop Search Module SQL injection
- Facetherating.com - XSS & session disclosure
- Confixx <= 3
- Confixx <= 3
- B3ta.com - XSS with cookie disclosure
- Biblenet.net - XSS
- SinFP 2.00 - a major release with many new features
- RahnemaCo Remote File Inclusion Exploit
- Re: REMOTE FILE INCLUSION ( ALL )
- Blogspot.com - XSS with cookie disclosure
- 43things.com - XSS with cookie disclosure
- Technorati.com - XSS with cookie disclosure
- Re: MySQL DoS
- PTT.yu Guestbook Vulnebility
- vbzoom V1.11 forum.php SQL Injection Vulnerabilities
- mp3.com - Cross site scripting vulnerability
- XSS in http://www.newscientist.com/ - Search
- MPCS v0.2 - XSS
- Microsoft Excel 0-day Vulnerability FAQ document written
- [security bulletin] HPSBTU02116 SSRT061135 rev.2 - HP Tru64 UNIX and HP Internet Express for Tru64 UNIX Running sendmail, Remote Execution of Arbitrary Code or Denial of Service (DoS)
- e107 v0.7.5 XSS
- Re: [MajorSecurity #17] SixCMS <= 6 - Multiple XSS and directory traversal vulnerabilities
- XSS Vulnerability in Maximus SchoolMAX
- VBZooM <<--V1.00 "rank.php" SQL injection
- VBZooM <<--V1.11 "message.php" SQL injection
- vuBB <= 0.2.1 [BFA] SQL Injection Exploit + Advisory link
- VBZooM <<--V1.00 "lng.php" SQL injection
- SaphpLesson<<--1.1 "misc.php" SQL injection
- PHP Live Helper <=([abs_path]) Remote File Include Vulnerabilities
- [ GLSA 200606-21 ] Mozilla Thunderbird: Multiple vulnerabilities
- From: Sune Kloppenborg Jeppesen
- onedotoh xss atack
- [ GLSA 200606-20 ] Typespeed: Remote execution of arbitrary code
- From: Sune Kloppenborg Jeppesen
- Re: PHP security (or the lack thereof)
- singapore gallery <= 0.10.0 Multiple Vulnerabilities
- Easy CMS 0.1.2 Php Shell Upload Vulnerabilities
- WeBBoA Hosting Script SQL Injection
- Re: PHP Live Helper <=([abs_path]) Remote File Include Vulnerabilities
- Dragons Kingdom v1.0 - XSS & cookie disclosure
- Re: PHP security (or the lack thereof)
- Vm ware 0day dos exploit by n00b.
- qtofilemanager xss attack !
- V3Chat Instant Messenger - XSS
- Input Validation/Output Encoding Vulnerabilities in Cisco CallManager Allow Script Injection Attacks
- Janus Contact
- Re: Vm ware 0day dos exploit by n00b.
- Re: Vm ware 0day dos exploit by n00b.
- trifinite Security Advisory: Buffer Overrun in Toshiba Bluetooth Stack for Windows
- display.cgi
- Multiple Bypass and Integrity Lost Vulnerabilities
- vBulletin<<--v3.5.X "member.php" Cross Site Scripting
- [MajorSecurity #18] Ralf Image Gallery <=0.7.4 - Multiple XSS, Remote File Include and directory traversal vulnerabilities
- Re: MAXDEV CMS Multiple vulnerabilities
- Module's Name Downloads <<--V 7 SQL injection
- Module's Name Content<<--V1.0 SQL injection
- RahnemaCo "page.php" Remote File Inclusion[2]
- ULtimate PHP Board <= 1.96 GOLD Code Execution (exploit code)
- [ MDKSA-2006:107 ] - Updated arts packages fix vulnerability in artswrapper
- JEdit ActiveX Control Information Disclosure vulnerability
- Sendmail MIME DoS vulnerability
- Re: Vacation Retal Script v1.0
- [ MDKSA-2006:108 ] - Updated xine-lib packages fix buffer overflow vulnerabilities
- Opera 9 DoS PoC
- Bypassing of web filters by using ASCII
- Re: display.cgi
- Re: Bypassing of web filters by using ASCII
- [ MDKSA-2006:110 ] - Updated gnupg packages fix vulnerability
- Re: possible SQL injection in Subdreamer
- Re: file include exploits in nucleus 3.23
- Re: # MHG Security Team --- PHORUM 5.1.13 Remote File Inc.
- Re: PHP security (or the lack thereof)
- Eduha Meeting php shell upload Vulnerabilities
- Re: PHP security (or the lack thereof)
- Re: PHP security (or the lack thereof)
- Re: PHP security (or the lack thereof)
- Digital Armaments July-August Hacking Challange: Microsoft
- cjGuestbook v1.3 - XSS
- Excel 0-day FAQ updated with Microsoft advisory information
- Somechess v1.5 rc1 - XSS
- Re: Bypassing of web filters by using ASCII
- [ MDKSA-2006:109 ] - Updated wv2 packages fix vulnerability
- Re: Bypassing of web filters by using ASCII
- Re: Bypassing of web filters by using ASCII
- Re: Bypassing of web filters by using ASCII
- Re: PHP security (or the lack thereof)
- MS Excel Remote Code Execution POC Exploit
- Re: aXentForum II XSS vuLLn
- Re: Bypassing of web filters by using ASCII
- From: Amit Klein (AKsecurity)
- Re: V3Chat Instant Messenger - XSS
- Re: Bypassing of web filters by using ASCII
- VigilantMinds Advisory: Opera JPEG Processing Integer Overflow Vulnerability (VMSA-20060621-01)
- From: VigilantMinds Advisories
- Re: Bypassing of web filters by using ASCII
- [ GLSA 200606-22 ] aRts: Privilege escalation
- From: Sune Kloppenborg Jeppesen
- RE: MS Excel Remote Code Execution POC Exploit
- Re: MS Excel Remote Code Execution POC Exploit
- [ GLSA 200606-23 ] KDM: Symlink vulnerability
- From: Sune Kloppenborg Jeppesen
- Re: Bypassing of web filters by using ASCII
- From: Amit Klein (AKsecurity)
- flock d0s exploit remote. beta 1 (v0.7)
- [SECURITY] [DSA 1101-1] New courier packages fix denial of service
- Re: MS Excel Remote Code Execution POC Exploit
- vlbook 1.2 XSS Bug
- [SNS Advisory No.88] Webmin Directory Traversal Vulnerability
- QaTraq 6.5 RC: Multiple XSS Vulnerabilities
- [KAPDA]Coppermine 1.4.8~Parameter Cleanup System ByPass~Registering Global Varables
- [security bulletin] HPSBUX02127 SSRT051056 - rev.1 HP-UX Kernel Local Denial of Service (DoS)
- RE: Bypassing of web filters by using ASCII
- TSLSA-2006-0037 - multi
- From: Trustix Security Advisor
- aeDating 4.1 XSS
- Trend Micro Control Manager (TMCM) Persistent XSS Vulnerability
- Dating Agent PRO 4.7.1 Vulnerability
- Cisco Secure ACS Weak Session Management Vulnerability
- Re: Bypassing of web filters by using ASCII
- From: Amit Klein (AKsecurity)
- Re: Re: PHP security (or the lack thereof)
- [ GLSA 200606-24 ] wv2: Integer overflow
- [Kil13r-SA-20060622-1] NetSoft SmartNet 2.0 Cross-Site Scripting Vulnerability
- DREAMACCOUNT V3.1 Remote Command Execution Exploit
- Linux VNC evil client patch - BID 17978
- rPSA-2006-0110-1 kernel
- Re: Digital Armaments July-August Hacking Challange: Microsoft
- productcart soltan_defacer
- Dating biz@ dating script v1.0 - XSS
- WBB<<---v1.2 "showmods.php" SQL Injection
- Re: Opera 9 DoS PoC
- [KAPDA]MyBB1.1.3~Option update for code buttons~Sql Injection Admin Access
- Re: PHP security (or the lack thereof)
- Calendar ( Provided by Codewalkers ) - SQL Injection
- Re: PHP security (or the lack thereof)
- [ECHO_ADV_34$2006] W-Agora (Web-Agora) <= 4.2.0 (inc_dir) Remote File Inclusion
- WBB<<---v2.3.1"report.php" SQL Injection
- SYMSA-2006-005
- phpBlueDragon CMS 2.9.1 multiple remote file inclusion vuln
- Re: Bypassing of web filters by using ASCII
- From: Thor (Hammer of God)
- [Kil13r-SA-20060622-2] Namo DeepSearch 4.5 Cross-Site Scripting Vulnerability
- Re: Sendmail MIME DoS vulnerability
- Re: PHP security (or the lack thereof)
- Re: Opera 9 DoS PoC
- WBB<<---v2.0 RC2 "newthread.php" SQL Injection
- Re: Re: MS Excel Remote Code Execution POC Exploit
- Softbiz Dating 1.0 SQL injection
- Re: Cisco Secure ACS Weak Session Management Vulnerability
- Re: PHP security (or the lack thereof)
- ERNW Security Advisory 01/2006
- [Kurdish Security # 9] MyMail Directory Traversal And XSS Attacking Vulnerability
- Re: Opera 9 DoS PoC
- RE: PHP security (or the lack thereof)
- Claroline Cross-Site Scripting Vulnerabilities
- From: bug@xxxxxxxxxxxxxxx
- DeluxeBB 1.07 Create admin Exploit
- Planetnews Authecnication Admin ByPass
- [SECURITY] [DSA 1102-1] New pinball packages fix privilege escalation
- [USN-304-1] gnupg vulnerability
- XSS in Cpanel 10
- [ GLSA 200606-25 ] Hashcash: Possible heap overflow
- RE: Bypassing of web filters by using ASCII
- [ GLSA 200606-26 ] EnergyMech: Denial of Service
- Re: PHP security (or the lack thereof)
- Re: PHP security (or the lack thereof)
- From: Matthias Kestenholz
- Re: vBulletin<<--v3.5.X "member.php" Cross Site Scripting
- Re: PHP security (or the lack thereof)
- Re: flock d0s exploit remote. beta 1 (v0.7)
- Re: Bypassing of web filters by using ASCII
- [ MDKSA-2006:111 ] - Updated MySQL packages fixes authorized user DoS(crash) vulnerability.
- [KAPDA]MyBB1.1.3~Option update for code buttons~Sql Injection Admin Access
- Re: Bypassing of web filters by using ASCII
- Re: MS Excel Remote Code Execution POC Exploit
- Re: Linux VNC evil client patch - BID 17978
- RE: Bypassing of web filters by using ASCII
- From: Amit Klein (AKsecurity)
- GlobeTrotter Mobility Manager - security issue
- Mailenable SMTP Service DoS
- RE: Bypassing of web filters by using ASCII
- Re: PHP security (or the lack thereof)
- Undisclosed cross site scripting vulnerabilities in domaintools.com - requesting contacts
- Re: Opera 9 DoS PoC
- Re: Opera 9 DoS PoC
- Amazon and Msn vulnerabilities
- OpenGuestbook Cross Site Scripting & SQL Injection
- Amazon, MSN vulns and.. Yes, we know! Most sites have vulnerabilities
- [OpenPKG-SA-2006.010] OpenPKG Security Advisory (gnupg)
- Re: PHP security (or the lack thereof)
- Universal Hooker - Tool release
- Re: PHP security (or the lack thereof)
- Taking Over Laptops by Fuzzing Wireless Drivers
- Re: Bypassing of web filters by using ASCII
- From: Balazs Attila-Mihaly (Cd-MaN)
- Re: Bypassing of web filters by using ASCII
- Re: PHP security (or the lack thereof)
- Winged Gallery v1.0
- Re: Sendmail MIME DoS vulnerability
- error_log() Safe Mode Bypass PHP 5.1.4 and 4.4.2
- Jaws <= 0.6.2 'Search gadget' SQL injection
- Windows Live Messenger 8.0 ( Contact List *.ctt ) Heap Overflow
- Usenet Script v0.5
- [USN-306-1] MySQL 4.1 vulnerability
- [USN-305-1] OpenLDAP vulnerability
- [SECURITY] [DSA 1103-1] New Linux kernel 2.6.8 packages fix several vulnerabilities
- Re: [ECHO_ADV_34$2006] W-Agora (Web-Agora) <= 4.2.0 (inc_dir) Remote File Inclusion
- CrisoftRicette<<--1.0pre15b Remote File Inclusion
- SYMSA-2006-006: Lotus Domino SMTP Based Denial of Service
- phpvillage "funshow.php" SQL Injection
- [Kurdish Security # 11] SiteBar Cross-Site Scripting
- Re: [MajorSecurity #18] Ralf Image Gallery <=0.7.4 - Multiple XSS, Remote File Include and directory traversal vulnerabilities
- Re: XSS in Cpanel 10
- Re: Re: PHP security (or the lack thereof)
- Re: PHP security (or the lack thereof)
- Re: Is Windows TCP/IP source routing PoC code available?
- RE: PHP security (or the lack thereof)
- SUSE Security Announcement: freetype2 (SUSE-SA:2006:037)
- [Kurdish Security # 10 ] MF Piadas 1.0 Remote File Include Vulnerability
- CAID 34325 - CA ITM, eAV, ePP scan job description field format string vulnerability
- Files and cvars overwriting in Quake 3 engine (1.32c / rev 803 / ...)
- [Kil13r-SA-20060628] Hanaro Search Cross-Site Scripting Vulnerability
- smartsite cms v1.0 Remote File include
- Layered Defense Advisory: Format String Vuln in CA eTrust
- [KAPDA]MyBB 1.1.4~function_post.php~XSS Attack In URL tag
- vCard PRO SQL Injection
- [ MDKSA-2006:112 ] - Updated gd packages fix DoS vulnerability.
- [ MDKSA-2006:114 ] - Updated libwmf packages fixes embedded GD vulnerability
- Re: Calendar ( Provided by Codewalkers ) - SQL Injection
- PHP-Nuke Module's Name Sections<<--V3 SQL Injection
- Secunia Research: DeluxeBB SQL Injection and File Inclusion Vulnerabilities
- BLOG:CMS <= 4.0.0k sql injection
- [USN-307-1] mutt vulnerability
- [ GLSA 200606-27 ] Mutt: Buffer overflow
- From: Sune Kloppenborg Jeppesen
- AzDGDatingPlatinum<<--v1.1.0 "view.php" SQL Injection
- SyScan'06 Highlight - Is Phone Banking Safe?
- Re[2]: Is Windows TCP/IP source routing PoC code available?
- MKPortal 1.0.1 Final ($ind) File Include Vulnerability (perl)
- PHP iCalendar Cross Site Scripting
- Cisco Security Advisory: Multiple Vulnerabilities in Wireless Control System
- From: Cisco Systems Product Security Incident Response Team
- Microsoft's Real Test with Vista is Vulnerabilities
- [OpenPKG-SA-2006.011] OpenPKG Security Advisory (png)
- RE: PHP security (or the lack thereof)
- Re: [MajorSecurity #18] Ralf Image Gallery <=0.7.4 - Multiple XSS, Remote File Include and directory traversal vulnerabilities
- Re: [funsec] Microsoft's Real Test with Vista is Vulnerabilities
- Cisco Security Advisory: Access Point Web-Browser Interface Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- RE: [funsec] Microsoft's Real Test with Vista is Vulnerabilities
- [ MDKSA-2006:113 ] - Updated tetex packages fix embedded GD vulnerabilities
- Re: PHP security (or the lack thereof)
- Secunia Research: Opera SSL Certificate "Stealing" Weakness
- Presentation: AT&T ISNN - "Case Studies in Finding Previously Unknown Vulnerabilities in Web Applications."
- Re: PHP security (or the lack thereof)
- PHPClassifieds General
- Re: Files and cvars overwriting in Quake 3 engine (1.32c / rev 803 / ...)
- [KAPDA]http://myimei.com/security/2006-06-24/mybb104archive-modelight-parameter-extractionvarable-overwriting.html
- DMA[2006-0628a] - 'Apple OSX launchd unformatted syslog() vulnerability'
- [ GLSA 200606-29 ] Tikiwiki: SQL injection and multiple XSS vulnerabilities
- From: Sune Kloppenborg Jeppesen
- CSRF in Nuked Klan 1.7 SP4.2
- Softbiz Banner Exchange 1.0 XSS
- [ MDKSA-2006:115 ] - Updated mutt packages fix buffer overflow vulnerability
- Secunia Research: phpRaid SQL Injection and File Inclusion Vulnerabilities
- [ GLSA 200606-28 ] Horde Web Application Framework: XSS vulnerability
- From: Sune Kloppenborg Jeppesen
- Digital Armaments Security Advisory 29.06.2006: Siemens Speedstream Wireless Router Password Protection Bypass Vulnerability
- rPSA-2006-0116-1 mutt
- Novell Security contact address change
- Multiple Vulnerabilities in PatchLink Update Server 6
- Novell Security Announcement NOVELL-SA:2006:001
- [security bulletin] HPSBTU02125 SSRT061105 rev.1 - HP Tru64 UNIX Running Perl 5.8.2 and earlier, Local Unauthorized Code Execution
- [security bulletin] HPSBUX02122 SSRT061158 rev.2 - HP-UX Mozilla Remote Execution of Arbitrary Code, Denial of Service (DoS)
- [ MDKSA-2006:114 ] - Updated libwmf packages fixes embedded GD vulnerability
- Msie 7.0 beta Crash
- rPSA-2006-0120-1 gnupg
Mail converted by MHonArc