[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Minded Security Advisory Bulletin Update July/August 2010

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Minded Security Advisory Bulletin Update July/August 2010
From: Early Warning <seclist@xxxxxxxxxxxxxxxxxx>
Date: Thu, 12 Aug 2010 16:52:08 +0200

For your information, the following new security advisories were
published by Minded Security Team during the last month:

# Advisory #MSA260209: New Atlanta Servlet Exec Multiple Security Issues.
http://www.mindedsecurity.com/MSA260209.html

# Advisory #MSA100410: CA Oneview Monitor "DoSave.jsp" path manipulation.
http://www.mindedsecurity.com/MSA100410.html

# Advisory #MSA130510: JForum <= 2.08 is vulnerable to Stored Cross
Site Scripting in BBCode.
http://www.mindedsecurity.com/MSA130510.html

# Advisory #MSA261009: Liferay Calendar "exportFileName" path manipulation
http://www.mindedsecurity.com/MSA261009.html

# Advisory #MSA251009: Liferay Json Service Multiple Information Leakage
http://www.mindedsecurity.com/MSA251009.html



Regards,

Minded Security Research Team
www.mindedsecurity.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] TGP 1.2.4 beta
Next by Date: Re: [Full-disclosure] Reliable reports on attacks on medical software and IT-systems available?
Previous by thread: [Full-disclosure] TGP 1.2.4 beta
Next by thread: [Full-disclosure] [ MDVSA-2010:149 ] freetype2
Index(es):
- Date
- Thread