Mail Index
- DOS in Realplayer 11 ActiveX on Win Vista and Win XP SP2
- Re[2]: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
- [ MDKSA-2007:224-3 ] - Updated samba packages fix regressions
- SCARE metrics and tool release
- Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
- Re[2]: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
- PR07-14: Cross-site Scripting (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.activation.php3' server-side script
- PR07-15: Cross-site Scripting (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.logon.php3' server-side script
- Re: Aria-Security.net: CoolShot E-Lite POS 1.0
- rPSA-2007-0254-1 idle python
- From: rPath Update Announcements
- 27Mhz based wireless security insecurities - Aka - "We know what you typed last summer"
- PR07-37: XSS on Apache HTTP Server 413 error pages via malformed HTTP method
- QEMU code_gen_buffer overflow POC
- Re: 27Mhz based wireless security insecurities - Aka - "We know what you typed last summer"
- rPSA-2007-0255-1 nss_ldap
- From: rPath Update Announcements
- DC4420 - London DEFCON chapter Christmas Party - 11th December
- Realplayer 11 DOS attack when processing a malformed AU file on MS Vista and XP
- PR06-08: BEA Plumtree portal internal hostname disclosure vulnerability
- [SECURITY] [DSA 1417-1] New asterisk packages fix SQL injection
- PR06-11: BEA Plumtree portal search facility leaks usernames to unauthenticated users
- [SECURITY] [DSA 1418-1] New cacti packages fix SQL injection
- PR06-09: BEA Plumtree portal full version disclosure vulnerability
- Re: SQL Injection in saphp "showcat.php"
- From: security curmudgeon
- [WhitePaper (SecNiche)] Information Prone LDAP Garbage Dumps
- sing (debian) vunlerability?
- Re: SQL Injection in SaphpLesson2.0 "show.php"
- From: security curmudgeon
- Lotfian Brochure and cataloge Script XSS And SQL Injection
- McAfee SecurityCenter Privacy Service HTML Execution Vulnerability
- Re: PR06-08: BEA Plumtree portal internal hostname disclosure vulnerability
- Fwd: PR06-08: BEA Plumtree portal internal hostname disclosure vulnerability
- SYMSA-2007-014: SQL Injection Vulnerability in Beehive Forum Software
- [USN-550-1] Cairo vulnerability
- Snitz2000 SQL Injection: A user can gain admin level
- [MacOS X] Insecure eval() in Twitgit and Twitterlex dashboard widgets
- [USN-551-1] OpenLDAP vulnerabilities
- SEC Consult SA-20071204-0 :: SonicWALL Global VPN Client Format String Vulnerability
- [USN-549-2] PHP regression
- [ MDKSA-2007:235 ] - Updated apache packages fix vulnerabilities
- [ MDKSA-2007:234 ] - Updated vixie-cron packages fix DoS vulnerability
- (Re-post) ATC-08 CFP
- The first release of SWFIntruder is out !
- Re: [dns-operations] Web Proxy Auto-Discovery (WPAD) Information Disclosure (fwd)
- PR07-39: Multiple vulnerabilities on Absolute News Manager.NET 5.1 including file retrieval and SQL injection
- [security bulletin] HPSBMA02293 SSRT071494 rev.1 - HP Select Identity, Remote Unauthorized Access
- Some more widgets: Facebook, Hockey, FlickrInterestingNess (Re: [MacOS X] Insecure eval() in Twitgit and Twitterlex dashboard widgets)
- Re: Powerschool 404 Admin Exposure
- CORE-2007-1004: VLC Activex Bad Pointer Initialization Vulnerability
- From: CORE Security Technologies Advisories
- TIBCO Rendezvous Exploitation Video
- RFI and Multiple XSS in PhpMyChat
- [USN-546-2] Firefox regression
- Re: sing (debian) vunlerability?
- rPSA-2007-0257-1 rsync
- From: rPath Update Announcements
- [USN-552-1] Perl vulnerability
- The recent number of unpatched QuickTime flaws is: two
- [USN-553-1] Mono vulnerability
- [ MDKSA-2007:236 ] - Updated openssh packages fix X11 cookie vulnerability
- [ MDKSA-2007:237 ] - Updated openssl packages fix DTLS vulnerability
- Blind Sql-Injection in Joomla 1.5 RC3
- Re: 27Mhz based wireless security insecurities - Aka - "We know what you typed last summer"
- Opera 9.50 beta and prior remote DoS (freeze)
- [ECHO_ADV_86$2007] Mambo/Joomla Component rsgallery <= 2.0 beta 5 (catid) Remote SQL Injection Vulnerability
- Sql Injection in wordpress 2.3.1
- Advisory: Cross Site Scripting in CiscoWorks
- From: Liquidmatrix Security Digest
- [SECURITY] [DSA 1419-1] New OpenOffice.org packages fix arbitrary Java code execution
- [ELEYTT] Public Advisory 05-12-2007
- [SECURITY] [DSA 1420-1] New zabbix packages fix privilege escalation
- Cisco Security Advisory: Cisco Security Agent for Windows System Driver Remote Buffer Overflow Vulnerability
- From: Cisco Systems Product Security Incident Response Team
- Re: Sql Injection in wordpress 2.3.1
- Re: Sql Injection in wordpress 2.3.1
- Firefox 2.0.0.11 INPUT Denial Of Service
- [ GLSA 200712-02 ] Cacti: SQL injection
- SineCMS <= 2.3.4 Calendar SQL Injection 'n something else..
- [ GLSA 200712-01 ] Hugin: Insecure temporary file creation
- ezContents Version 1.4.5 Remote File Disclosure Vulnerability.
- Aria-Security.Net: PenPals Login and search page SQL Injection
- Avast! AntiVirus TAR Processing Remote Heap Corruption
- [security bulletin] HPSBMA02281 SSRT061261 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Execution of Arbitrary Code
- [UPDATE]CA BrightStor ARCServe BackUp Message Engine Remote Stack Overflow Vulnerability
- [SECURITY] [DSA 1421-1] New wesnoth packages fix arbitrary file disclosure
- NSFOCUS SA2007-02 : Cisco Security Agent Remote Buffer Overflow Vulnerability
- From: NSFOCUS Security Team
- SQUID-2007:2, Dec 4, 2007
- Re: Re: Aria-Security.net: NetAuctionHelp SQL Injection
- From: NetAuctionHelp Support
- HITBSecConf2007 Malaysia Videos Now Available
- [XSS] OpenNewsletter v2.5 Multipe XSS Attacks
- UPDATE: [ GLSA 200711-29 ] Samba: Execution of arbitrary code
- [Security Advisorie] OpenNewsletter v2.5 Multipe XSS Attacks
- [ MDKSA-2007:238 ] - Updated liblcms package fixes buffer overflow
- [USN-554-1] teTeX and TeX Live vulnerabilities
- ZDI-07-071: HP OpenView Network Node Manager Multiple CGI Buffer Overflows
- ZDI-07-070: Skype skype4com URI Handler Remote Heap Corruption Vulnerability
- TCP Port randomization paper
- [CAID 35724, 35725, 35726]: CA BrightStor ARCserve Backup Multiple Vulnerabilities
- Potential SQL injection vulnerability in Apache::AuthCAS
- [SECURITY] [DSA 1422-1] New e2fsprogs packages fix arbitrary code execution
- [ MDKSA-2007:239 ] - Updated heimdal packages fix potential vulnerability
- Re: RIG Image Gallery (dir_abs_src) Remote File Include Vulnerability
- From: security curmudgeon
- Re: Friend Script 2.5 - 2.4 Remote File İnclude
- From: security curmudgeon
- rPSA-2007-0260-1 firefox
- From: rPath Update Announcements
- Re: BellaBiblio Admin Login Bypass
- From: security curmudgeon
- [ISecAuditors Security Advisories] wwwstats is vulnerable to Persistent XSS
- From: ISecAuditors Security Advisories
- Re: Phorm v3.0 Remote File Upload Vulnerability
- From: security curmudgeon
- R7-0031: JFreeChart Image Map Cross-Site Scripting Vulnerabilities
- [SECURITY] [DSA 1423-1] New sitebar packages fix several vulnerabilities
- Kvaliitti WebDoc 3.0 CMS SQL Injection vulnerability
- [ MDKSA-2007:240 ] - Updated libnfsidmap packages fix username lookup flaw
- Two vulnerabilities in Simple HTTPD 1.38
- Limited upload directory traversal in HTTP File Server 2.2a / 2.3 beta (build #146)
- Multiple vulnerabilities in Firefly Media Server (mt-daapd) 2.4.1 / SVN 1699
- Upload directory traversal in Easy File Sharing 4.5
- Nullsoft Winamp MP4 tags Stack Overflow
- [SECURITY] [DSA 1425-1] New xulrunner packages fix several vulnerabilities
- Windows media player 6.4 MP4 Stack Overflow 0-day
- [USN-555-1] e2fsprogs vulnerability
- Media Player Classic 6.4.9 MP4 Stack Overflow 0-day
- [SECURITY] [DSA 1426-1] New qt-x11-free packages fix several vulnerabilities
- Lotfian.com DATABASE DRIVEN TRAVEL SITE Multiple SQL Injection
- webSPELL 4.01.02 (calendar.php, usergallery.php) XSS Vulnerability
- [ GLSA 200712-09 ] Ruby-GNOME2: Format string error
- Call for Papers - Security and High Performance Computing System 2008
- Two vulnerabilities in SquirrelMail GPG plugin
- The Cookie Tools v0.3 -- first public release
- From: michele dallachiesa
- Unsanitized scripting in RoundCube webmail
- CVE-2007-6205
- Flat PHP Board <= 1.2 Multiple Vulnerabilities
- Bitweaver XSS & SQL Injection Vulnerability
- Security and hacking papers
- [ GLSA 200712-03 ] GNU Emacs: Multiple vulnerabilities
- bttlxeForum Multiple SQL Injection And Cross Site Scripting
- [ GLSA 200712-06 ] Firebird: Multiple buffer overflows
- [ GLSA 200712-04 ] Cairo: User-assisted execution of arbitrary code
- [ GLSA 200712-05 ] PEAR::MDB2: Information disclosure
- Secunia Research: Samba "send_mailslot()" Buffer Overflow Vulnerability
- SQL injection - GestDownV1.00Beta
- [ GLSA 200712-08 ] AMD64 x86 emulation Qt library: Multiple vulnerabilities
- squids ICAP implementation lacks a defer check when reading from ICAP server
- Falt4 CMS Security Report/Advisory
- [ GLSA 200712-07 ] Lookup: Insecure temporary file creation
- Advisory: Websense XSS Vulnerability
- From: Liquidmatrix Security Digest
- [SECURITY] Buffer overrun in send_mailslot()
- From: Gerald (Jerry) Carter
- Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096) and vulnerable bz2lib (CAN-2005-0758 & CAN-2005-0953)
- rPSA-2007-0261-1 samba samba-swat
- From: rPath Update Announcements
- WordPress Charset SQL injection vulnerability (re-resend)
- Re: Media Player Classic 6.4.9 MP4 Stack Overflow 0-day
- Multiple vulnerabilities in BarracudaDrive 3.7.2
- Multiple vulnerabilities in BadBlue 2.72b
- Filesystem access in DOSBox 0.72
- [USN-550-2] Cairo regression
- [SECURITY] [DSA 1427-1] New samba packages fix arbitrary code execution
- Dell / Dell Financial Services - Contact
- WASC Announcement: The Script Mapping Project Results and Call for Participation
- Re: Dell / Dell Financial Services - Contact
- ZDI-07-072: Novell Netmail AntiVirus Agent Multiple Overflow Vulnerabilities
- [ GLSA 200712-10 ] Samba: Execution of arbitrary code
- [ MDKSA-2007:242 ] - Updated e2fsprogs packages fix vulnerability
- RE: TCP Port randomization paper
- [ MDKSA-2007:243 ] - Updated MySQL packages fix multiple vulnerabilities
- [SECURITY] [DSA 1481-1] New Linux 2.6.18 packages fix several vulnerabilities
- [ MDKSA-2007:241 ] - Updated tomcat5 packages fix multiple vulnerabilities
- rPSA-2007-0262-1 e2fsprogs
- From: rPath Update Announcements
- SupportSuite 3.11.01~ Multiple file ~ PHP SELF XSS
- From: imei Addmimistrator
- PGMfuzz - a tool for testing Pragmatic General Multicast protocol implementations
- HP notebooks remote code execution vulnerability (multiple series)
- Black Hat Briefings Call for Papers
- Meridian Prolog Manager Username and Plain Text Password Disclosure
- ZDI-07-073: Microsoft Internet Explorer setExpression Vulnerability
- ZDI-07-074: Microsoft Internet Explorer Node Manipulation Memory Corruption
- [SECURITY] [DSA 1429-1] New htdig packages fix cross site scripting
- ZDI-07-075: Microsoft Internet Explorer Element Tags Vulnerability
- ZDI-07-076: Microsoft Windows Message Queuing Service Stack Overflow Vulnerability
- [SECURITY] [DSA 1430-1] New libnss-ldap packages fix denial of service
- [SECURITY] [DSA 1431-1] New ruby-gnome2 packages fix execution of arbitrary code
- [ MDKSA-2007:244 ] - Updated samba packages fix vulnerability
- [SECURITY] [DSA 1428-2] New Linux 2.6.18 packages fix several vulnerabilities
- Cpanel Vulnerability?
- From: Francisco Pecorella
- Re: TCP Port randomization paper
- Re: Cpanel Vulnerability?
- MS Office 2007: Digital Signature does not protect Meta-Data
- Re: Media Player Classic 6.4.9 MP4 Stack Overflow 0-day
- iDefense Security Advisory 12.11.07: Microsoft Internet Explorer JavaScript setExpression Heap Corruption Vulnerability
- rPSA-2007-0264-1 mod_dav_svn subversion
- From: rPath Update Announcements
- iDefense Security Advisory 12.11.07: Microsoft DirectX 7 and 8 DirectShow Stack Buffer Overflow Vulnerability
- Re: Re: Cpanel Vulnerability?
- QK SMTP Server 3 - Denial of service
- Hosting Controller - Multiple Security Bugs (Extremely Critical)
- [security bulletin] HPSBUX02296 SSRT071504 rev.1 - HP-UX Running OpenSSL, Remote Execution of Arbitrary Code
- RE: [Full-disclosure] Fwd: Websense 6.3.1 Filtering Bypass
- OpenOffice: Duplicated, Unprotected Certificate Information shown in Signed ODF Documents
- [security bulletin] HPSBUX02294 SSRT071451 rev.1 - HP-UX Running DCE, Remote Denial of Service (DoS)
- SQL MKPortal M1.1 Rc1
- Fwd: Websense 6.3.1 Filtering Bypass
- From: The Security Community
- MS Office 2007: Target of Hyperlinks not covered by Digital Signatures
- [USN-550-3] Cairo regression
- AW: MS Office 2007: Digital Signature does not protect Meta-Data
- From: Naujoks, Hans-Dietmar
- SECURITY: 1.4.12 Package Compromise
- [ GLSA 200712-11 ] Portage: Information disclosure
- [ GLSA 200712-12 ] IRC Services: Denial of Service
- [ MDKSA-2007:245 ] - Updated wpa_supplicant package fixes remote denial of service
- + Trivantis CourseMill Enterprise Learning Management System - SQL Injection - CVE-2007-6338
- Re: AW: MS Office 2007: Digital Signature does not protect Meta-Data
- From: webmaster@xxxxxxxxxxxxxxxxxx
- PHP MySQL Banner Exchange 2.2.1 remote mysql database bug
- Re: MS Office 2007: Digital Signature does not protect Meta-Data
- HPSBUX02296 SSRT071504 rev.2 - HP-UX Running OpenSSL, Remote Execution of Arbitrary Code
- AW: MS Office 2007: Digital Signature does not protect Meta-Data
- From: Naujoks, Hans-Dietmar
- [ISR] - Novell Groupwise client remote stack overflow silently patched.
- [ MDKSA-2007:246 ] - Updated Firefox packages fix multiple vulnerabilities
- ANNOUNCE: SquirrelMail 1.4.13 Released
- POC for samba send_mailslot()
- Phpay - Local File Inclusion
- From: th3 . r00k . nospam
- [security bulletin] HPSBGN02298 SSRT071502 rev.1 - HP Quick Launch Button (QLB) Running on Windows, Remote Execution of Arbitrary Code, Gain Privileged Access
- Anon Proxy Server - Remote Code Execution
- From: th3 . r00k . nospam
- Oreon/Centreon - Multiple Remote File Inclusion
- From: th3 . r00k . nospam
- PHP RPG - Sql Injection and Session Information Disclosure.
- From: th3 . r00k . nospam
- Wordpress - Broken Access Control
- From: th3 . r00k . nospam
- ClubHack2007: Presentation are online now
- neuron news1.0 Multiple Remote Vulnerabilities (sql injection/xss)
- From: hadihadi_zedehal_2006
- Re: PHP MySQL Banner Exchange 2.2.1 remote mysql database bug
- ZSA-2007-029: syslog-ng Denial of Service
- Re: [syslog-ng] ZSA-2007-029: syslog-ng Denial of Service
- PHP Security Framework: Vuln and Security Bypass
- jetAudio 7.0.5 COWON Media Center MP4 Stack Overflow
- [SECURITY] [DSA 1432-1] New link-grammar packages fix execution of code
- [SECURITY] [DSA 1433-1] New centericq packages fix execution of code
- [SECURITY] [DSA 1434-1] New mydns packages fix denial of service
- release uhooker v1.3
- Re: Wordpress - Broken Access Control
- Heap overflow in PeerCast 0.1217
- rPSA-2007-0266-1 tetex tetex-afm tetex-dvips tetex-fonts tetex-latex tetex-xdvi
- From: rPath Update Announcements
- RaidenHTTPD 2.0.19 ulang cmd exec poc exploit
- SurgeMail v.38k4 webmail Host header crash
- Uber Uploader <= 5.3.6 Remote File Upload Vulnerability
- Apple OS X Software Update Remote Command Execution
- rPSA-2007-0268-1 kdebase
- From: rPath Update Announcements
- Rosoft Media Player 4.1.7 crash
- ZDI-07-078: St. Bernard Open File Manager Heap Overflow Vulnerability
- Multiple xss in mambo 4.6.2
- Re: Wordpress - Broken Access Control
- From: th3 . r00k . nospam
- ZDI-07-079: Hewlett-Packard HP-UX swagentd Buffer Overflow Vulnerability
- SyScan'08 Call For Paper/Training
- From: organiser@xxxxxxxxxx
- Re: Re: PHP MySQL Banner Exchange 2.2.1 remote mysql database bug
- Re: SineCMS <= 2.3.4 Calendar SQL Injection 'n something else..
- ZDI-07-077: Trend Micro ServerProtect StRpcSrv.dll Insecure Method Exposure Vulnerability
- [security bulletin] HPSBST02299 SSRT071506 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-063 to MS07-069
- Re: RE: TCP Port randomization paper
- [USN-556-1] Samba vulnerability
- iDefense Security Advisory 12.18.07: ClamAV libclamav MEW PE File Integer Overflow Vulnerability
- rPSA-2007-0269-1 kernel
- From: rPath Update Announcements
- iDefense Security Advisory 12.17.07: Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Vulnerability
- Tiger Team: New TV series about pen testers airing on CourtTV Dec 25 11 pm
- AST-2007-027 - Database matching order permits host-based authentication to be ignored
- Google Toolbar Dialog Spoofing Vulnerability
- Re: Uber Uploader <= 5.3.6 Remote File Upload Vulnerability
- [ GLSA 200712-13 ] E2fsprogs: Multiple buffer overflows
- [ GLSA 200712-14 ] CUPS: Multiple vulnerabilities
- Re: MS Office 2007: Digital Signature does not protect Meta-Data
- [USN-557-1] GD library vulnerability
- smbfs and apache+php source code disclosure
- Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module
- From: Cisco Systems Product Security Incident Response Team
- SYMSA-2007-015
- Array overflow in id3lib (devel CVS)
- [SECURITY] [DSA 1435-1] New clamav packages fix several vulnerabilities
- HP laptops Software Update tool vulnerability
- Re: Wordpress - Broken Access Control
- Re: Wordpress - Broken Access Control
- xeCMS 1.x.x Remote File Disclosure Vulnerability.
- Black Hat Briefings Call for Papers and Happy Happy Joy Joy
- Re: Re: NETGEAR WGT624 Wireless DSL router default user name/password vulnerability
- iSupport v1.8 Local file include vulnerability
- [Aria-Security.net] ABI Version 3.7.9.17 Remote SQL Injection
- [security bulletin] HPSBTU02300 SSRT071452 rev.1 - HP Tru64 UNIX running FFM, Local Denial of Service (Dos)
- [security bulletin] HPSBUX02295 SSRT071333 rev.1 - HP-UX Running rpc.yppasswdd, Remote Denial of Service (DoS)
- SiteScape Forum TCL injection
- [security bulletin] HPSBUX02284 SSRT071483 rev.4 - HP-UX Running Java JRE and JDK, Remote Unauthorized Access
- PHP iCalendar <= 2.24 - Cross-Site Scripting Vulnerability
- Re: Morcego CMS <= 0.9.6 Remote File Inclue Vulnerability
- Re: Morcego CMS <= 0.9.6 Remote File Inclue Vulnerability
- Woltlab Burning Board 1.0.2 SQL-Injection Vulnerability
- [SECURITY] [DSA 1436-1] New Linux 2.6.18 packages fix several vulnerabilities
- Re: Design flaw in AS3 socket handling allows port probing
- CFP CISIS '08
- [USN-559-1] MySQL vulnerabilities
- Moodle SQL Injection
- Cryptome: NSA has real-time access to Hushmail servers
- RE: Cryptome: NSA has real-time access to Hushmail servers
- RE: Cryptome: NSA has real-time access to Hushmail servers
- From: Thor (Hammer of God)
- Buffer-overflow in WinUAE 1.4.4
- [CAID 35970]: CA Products That Embed Ingres Authentication Vulnerability
- HPSBGN2301 SSRT071508 rev.1 - HP Software Update Running on Windows, Remote Execution of Arbitrary Code, Gain Privileged Access
- Word 2003 denial of service
- America Online AOL Instant Messenger AIM6.0 or 6.5 or higher XSS remote execution
- Microsoft Office Publisher
- Re: Moodle SQL Injection
- My Blog Rfi
- [HSC] Dokeos Multiple Cross-Site Scripting Vulnerabilities
- Re: Re: Moodle SQL Injection
- pdflib long filename multiple bufferoverflows
- Logaholic Web Analytics Software
- [CVE-2007-5342] Apache Tomcat's default security policy is too open
- [ISecAuditors Security Advisories] Tikiwiki CMS is vulnerable to path traversal attack
- From: ISecAuditors Security Advisories
- Tikiwiki 1.9.8.3 tiki-special_chars.php XSS Vulnerability
- [waraxe-2007-SA#060] - Sensitive info disclosure in CuteNews <= 1.4.5
- Re: [HSC] Dokeos Multiple Cross-Site Scripting Vulnerabilities
- PHP <= 5.2.5 Safe Mode Bypass
- Jupiter Cms Multiple Vulnerabilities
- Buffer-overflow and format string in VideoLAN VLC 0.8.6d
- SimpleForum <= 4.6.2 - Cross-Site Scripting Vulnerability
- Update: Clients buffer-overflow in Live for Speed 0.5X10
- Re: PHP <= 5.2.5 Safe Mode Bypass
- Double directory traversal in ImgSvr 0.6.21
- Unicode buffer-overflow in Zoom Player 6.00b2
- Multiple vulnerabilities in RUNCMS 1.6 by DSecRG
- From: Digital Security Research Group
- TotalPlayer 3.0 .m3u crash
- Confixx Professional RFİ
- [SECURITY] [DSA 1437-1] New cupsys packages fix several vulnerabilities
- Re: Re: PHP <= 5.2.5 Safe Mode Bypass
- Re: Microsoft Office Publisher
- Bid 24744 ?
- RE: Cryptome: NSA has real-time access to Hushmail servers
- RE: Cryptome: NSA has real-time access to Hushmail servers
- Blakord Portal <= Beta 1.3.A (all modules) Blind Sql Injection
- XZero Community Classifieds <= v4.95.11 LFI & SQL Injection
- IPortalX Forums Cross-Site Scripting Vulnerability
- [security bulletin] HPSBGN02298 SSRT071502 rev.2 - HP Quick Launch Button (QLB) Running on Windows, Remote Execution of Arbitrary Code, Gain Privileged Access
- Re: TotalPlayer 3.0 .m3u crash
- Re: TotalPlayer 3.0 .m3u crash
- Latest round of web hacking incidents for 2007 & Project news
- PHP -> set_time_limit
- Re: Tiger Team: New TV series about pen testers airing on CourtTV Dec 25 11 pm
- Re: Multiple xss in mambo 4.6.2
- Re: Cryptome: NSA has real-time access to Hushmail servers
- Re: Re: TotalPlayer 3.0 .m3u crash
- Multiple vulnerabilities in Feng 0.1.15
- Multiple vulnerabilities in libnemesi 0.6.4-rc1
- Re: Re: Re: TotalPlayer 3.0 .m3u crash
- Re: Cryptome: NSA has real-time access to Hushmail servers
- Re: Cryptome: NSA has real-time access to Hushmail servers
- Buffer-overflow in Extended Module Player 2.5.1
- OpenBiblio 0.5.2-pre4 and prior multiple vulnerabilities
- FAQMasterFlexPlus multiple vulnerabilities
- 2z-project 0.9.6.1 Multiple Security Vulnerabilities
- From: Digital Security Research Group [DSecRG]
- [SECURITY] [DSA 1438-1] New tar packages fix several vulnerabilities
- [SECURITY] [DSA 1405-3] New zope-cmfplone packages fix regression
- [SECURITY] [DSA 1439-1] New typo3-src packages fix SQL injection
- [SECURITY] [DSA 1440-1] New inotify-tools packages fix arbitrary code execution
- [SECURITY] [DSA 1441-1] New peercast packages fix arbitrary code execution
- Buffer-overflow in CoolPlayer 217
- [SECURITY] [DSA 1442-2] New libsndfile packages fix arbitrary code execution
- [ GLSA 200712-15 ] libexif: Multiple vulnerabilities
- [ GLSA 200712-16 ] Exiv2: Integer overflow
- [ GLSA 200712-17 ] exiftags: Multiple vulnerabilities
- [ GLSA 200712-18 ] Multi-Threaded DAAP Daemon: Multiple vulnerabilities
- [ GLSA 200712-19 ] Syslog-ng: Denial of Service
- [ GLSA 200712-20 ] ClamAV: Multiple vulnerabilities
- [ GLSA 200712-21 ] Mozilla Firefox, SeaMonkey: Multiple vulnerabilities
- TK53 Advisory #2: Multiple vulnerabilities in ClamAV
- CuteNews Arbitrary File Download AllVersion
- CCMS v3.1 Demo <= SQL Injection Vulnerability 0day
Mail converted by MHonArc