Mail Thread Index
- [Full-disclosure] [ MDVSA-2012:026 ] postgresql,
security
- Re: [Full-disclosure] Anon war?- arrests,
Dan Dart
- [Full-disclosure] [ MDVSA-2012:027 ] postgresql8.3,
security
- [Full-disclosure] Cisco Security Advisory: Cisco Cius Denial of Service Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco Unified Communications Manager Skinny Client Control Protocol Vulnerabilities,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unity Connection,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco TelePresence Video Communication Server Session Initiation Protocol Denial of Service Vulnerabilities,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] [SECURITY] [DSA 2421-1] moodle security update,
Moritz Muehlenhoff
- [Full-disclosure] [SECURITY] [DSA 2422-1] file security update,
Florian Weimer
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-029 - Taxonomy Views Integrator - Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-028 - Hierarchical Select - Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-027 - Submenu Tree -Cross Site Scripting,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-026 - ZipCart - Access bypass,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-024 - MediaFront - Cross Site Scripting,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-025 - Cool aid; Editable help messages - Multiple vulnerabilities,
security-news
- [Full-disclosure] [ MDVSA-2012:028 ] libxslt,
security
- [Full-disclosure] phxEventManager 2.0 beta 5 search.php search_terms SQL Injection Vulnerability,
David Guimaraes
- [Full-disclosure] FlashFXP v4.1.8.1701 - Buffer Overflow Vulnerability,
research@xxxxxxxxxxxxxxxxxxxxx
- [Full-disclosure] LDAP Account Manager Pro v3.6 (lamp) - Multiple Vulnerabilities,
research@xxxxxxxxxxxxxxxxxxxxx
- [Full-disclosure] Endian UTM Firewall v2.4.x & v2.5.0 - Multiple Web Vulnerabilities,
research@xxxxxxxxxxxxxxxxxxxxx
- [Full-disclosure] linode.com hacked? anyone else?,
stuxnet
- [Full-disclosure] [SECURITY] [DSA 2423-1] movabletype-opensource security update,
Florian Weimer
- [Full-disclosure] Security Implications of Predictable IPv6 Fragment Identification values (rev'ed IETF I-D),
Fernando Gont
- [Full-disclosure] [SECURITY] [DSA 2424-1] libxml-atom-perl security update,
Florian Weimer
- [Full-disclosure] Only two weeks left to Troopers12,
Florian Horsch
- [Full-disclosure] [SECURITY] [DSA 2425-1] plib security update,
Florian Weimer
- [Full-disclosure] Symfony2 Local File Disclosure - Security Advisory - SOS-12-002,
Lists
- [Full-disclosure] %windir%\temp\sso\ssoexec.dll (or: how trustworthy is Microsoft's build process),
Stefan Kanthak
- [Full-disclosure] Path Traversal and O.S. Command Injection vulnerabilities in Polycom products,
João Paulo Caldas Campello
- [Full-disclosure] Open-Realty CMS 2.5.8 (2.x.x) <= "select_users_template" Local File Inclusion Vulnerability,
YGN Ethical Hacker Group
- [Full-disclosure] Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities,
YGN Ethical Hacker Group
- [Full-disclosure] [SECURITY] [DSA 2426-1] gimp security update,
Florian Weimer
- [Full-disclosure] [SECURITY] [DSA 2427-1] imagemagick security update,
Florian Weimer
- Re: [Full-disclosure] Full disclosure is arrest of Sabu,
Ferenc Kovacs
- [Full-disclosure] Cookie based SQL Injection,
Adam Behnke
- [Full-disclosure] Joining LulzSec,
Fatherlaptop
- [Full-disclosure] gnome-terminal, xfce4-terminal, terminator and others write scrollback buffer to disk,
Mark Krenz
- [Full-disclosure] Sabu, the FBI informant?,
Ramo
- [Full-disclosure] Iciniti Store SQL Injection - Security Advisory - SOS-12-003,
Lists
- Re: [Full-disclosure] Iciniti Store SQL Injection - Security Advisory - SOS-12-003,
James Parson
- [Full-disclosure] Pokemon.com has no respect for user's personal data,
klondike
- [Full-disclosure] HITB2011KUL - Satellite Telephony Security - Jim Geovedi,
research@xxxxxxxxxxxxxxxxxxxxx
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-030 - Data - Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [SECURITY] [DSA 2429-1] mysql-5.1 security update,
Florian Weimer
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-032 - Block Class - Cross Site scripting,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-034 - Node Recommendation Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-033 - Read More Link - Cross Site Scripting,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-031 - Multiple Modules Unsupported - UC PayDutchGroup - Information leakage and Multisite Search sql injection,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-035 - Webform Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [Security-news] DRUPAL-PSA-2012-001 - localizations - Cross Site Scripting,
security-news
- [Full-disclosure] Stakeout: how the FBI tracked and busted a Chicago Anon,
Ivan .Heca
- [Full-disclosure] Barracuda WAF 660 v7.6.0.028 - Cross Site Vulnerability,
research@xxxxxxxxxxxxxxxxxxxxx
- [Full-disclosure] Barracuda CudaTel v2.0.029.1 - Multiple Web Vulnerabilities,
research@xxxxxxxxxxxxxxxxxxxxx
- [Full-disclosure] Ilient SysAid v8.5.05 - Multiple Web Vulnerabilities,
research@xxxxxxxxxxxxxxxxxxxxx
- [Full-disclosure] Enterasys SecureStack Switch v6.x - Multiple Vulnerabilities,
research@xxxxxxxxxxxxxxxxxxxxx
- [Full-disclosure] Pitrinec MacroToolworks 7.5 - Buffer Overflow Vulnerability,
research@xxxxxxxxxxxxxxxxxxxxx
- [Full-disclosure] [HITB-Announce] HITB2012AMS SIGINT - Call for Submissions,
Hafez Kamal
- [Full-disclosure] [SECURITY] [DSA 2428-1] freetype security update,
Moritz Muehlenhoff
- [Full-disclosure] VMSA-2012-0002 VMware vCenter Chargeback Manager Information Leak and Denial of Service,
VMware Security Team
- [Full-disclosure] VMSA-2012-0003 VMware VirtualCenter Update and ESX 3.5 patch update JRE,
VMware Security Team
- [Full-disclosure] LSE-2012-03-01: PyPAM -- Python bindings for PAM - Double Free Corruption,
Markus Vervier
- [Full-disclosure] [Announcement] Call For Papers: OWASP InfoSec India Conference 2012,
d3v1l !
- [Full-disclosure] List Charter,
John Cartwright
- [Full-disclosure] power of this list..,
RandallM
- [Full-disclosure] LulzSec $ Sabu - lessons learned,
Mikhail A. Utin
- [Full-disclosure] EGRC (formerly EITC) 2012 Save The Date (June 12th-14th, 2012),
larry Cashdollar
- [Full-disclosure] Windows Credentials Editor (WCE) v1.3beta 32bit release,
Amplia Security Research
- [Full-disclosure] The Mystery of the Duqu Framework,
fd
- [Full-disclosure] [SECURITY] [DSA 2430-1] python-pam security update,
Moritz Muehlenhoff
- Re: [Full-disclosure] Welcome Back IRL,
coderman
- Re: [Full-disclosure] Circumventing NAT via UDP hole punching.,
coderman
- [Full-disclosure] [SECURITY] [DSA 2431-1] libdbd-pg-perl security update,
Moritz Muehlenhoff
- [Full-disclosure] coverity,
coderman
- [Full-disclosure] Multiple vulnerabilities in EJBCA,
MustLive
- [Full-disclosure] Aurora WebOPAC SQL Injection - Security Advisory - SOS-12-004,
Lists
- [Full-disclosure] Why a Computer Programming *History* Class is Needed Re: The Mystery of the Duqu Framework,
dr_250
- [Full-disclosure] audio may be NSFW...just something I've been playing with,
Andrew King
- [Full-disclosure] [SECURITY] [DSA 2432-1] libyaml-libyaml-perl security update,
Moritz Muehlenhoff
- [Full-disclosure] [Announcement] ClubHack Magazine Issue 26, March 2012 Released,
Abhijeet Patil
- [Full-disclosure] [iputils] Integer overflow in iputils ping/ping6 tools,
Christophe Alladoum
- [Full-disclosure] QR code and the jester,
Fatherlaptop
- [Full-disclosure] GrrCON 2012: Grand Rapids, MI - Sept 27-28,
cfp
- [Full-disclosure] pentesting market,
Krzysztof Marczyk
- [Full-disclosure] Multiple vulnerabilities in ZyXel GS1510 web front end,
upsploit advisories
- Re: [Full-disclosure] [iputils] Integer overflow in iputils ping/ping6 tools,
paul . szabo
- [Full-disclosure] Drupal 7.x Search Module - Full Path Disclosure,
Ursu Mihail
- [Full-disclosure] Cisco Security Advisory: Cisco ASA 5500 Series Adaptive Security Appliance Clientless VPN ActiveX Control Remote Code Execution Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco Firewall Services Module Crafted Protocol Independent Multicast Message Denial of Service Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances and Cisco Catalyst 6500 Series ASA Services Module,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-036 - Multiple Modules Unsupported,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-040 - CKEditor and FCKeditor - multiple XSS, arbitrary code execution,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-038 - Views Language Switcher Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-037 - Slidebox - access bypass,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-039 - Language Icons - Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-041 - Fancy Slide - Cross Site Scripting (XSS),
security-news
- [Full-disclosure] Oracle Exadata Infiniband Switch default logins and world readable shadow file,
larry Cashdollar
- [Full-disclosure] Informations about old Sun-java-System-Web-Server/7.0,
Cédric Jeanneret
- [Full-disclosure] Earth to Facebook,
J. Oquendo
- [Full-disclosure] SEC Consult SA-20120315-0 :: Multiple permanent XSS vulnerabilities in EMC Documentum eRoom,
SEC Consult Vulnerability Lab
- [Full-disclosure] ZDI-12-044 : Microsoft Remote Desktop Protocol Channel Abort Condition Remote Code Execution Vulnerability,
ZDI Disclosures
- [Full-disclosure] [SECURITY] [DSA 2433-1] iceweasel security update,
Moritz Muehlenhoff
- [Full-disclosure] AST-2012-002: Remote Crash Vulnerability in Milliwatt Application,
Asterisk Security Team
- [Full-disclosure] AST-2012-003: Stack Buffer Overflow in HTTP Manager,
Asterisk Security Team
- [Full-disclosure] nSense-2012-001: Citrix License Server,
Henri Lindberg
- [Full-disclosure] [Announcement] ClubHack Mag - Call for Articles,
Abhijeet Patil
- [Full-disclosure] VMSA-2012-0004 VMware View privilege escalation and cross-site scripting,
VMware Security Team
- [Full-disclosure] VMSA-2012-0005 VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, ESXi and ESX address several security issues,
VMware Security Team
- [Full-disclosure] [ MDVSA-2012:029 ] pidgin,
security
- [Full-disclosure] Microsoft Bing - Editor Flash Component Vulnerability,
Research
- [Full-disclosure] JPM Article Script 6 - SQL Injection Vulnerability,
Research
- [Full-disclosure] ms12-020 PoC,
kyle kemmerer
- [Full-disclosure] is my ISP lying or stupid?,
Jerry dePriest
- [Full-disclosure] [ MDVSA-2012:030 ] systemd,
security
- [Full-disclosure] [ MDVSA-2012:031 ] firefox,
security
- [Full-disclosure] Apache Tomcat Remote Exploit (PUT request) and Account Scanner,
HI-TECH .
- [Full-disclosure] PenTest Market - All about pentesting business,
Krzysztof Marczyk
- [Full-disclosure] ms12-020 new poc,
yuri goncalves soares
- [Full-disclosure] c0c0n 2012 - Call For Papers and Call For Workshops,
Yashartha Chaturvedi
- Re: [Full-disclosure] Fw: Earth to Facebook,
upsploit advisories
- [Full-disclosure] Android wipe unreliable,
Jan Schejbal
- [Full-disclosure] DC4420 - London DEFCON - March Meet - Tuesday 20th March 2012,
Major Malfunction
- [Full-disclosure] LiteSpeed <= 4.1.11 Admin panel XSS,
pathric due
- [Full-disclosure] [SECURITY] [DSA 2436-1] libapache2-mod-fcgid security update,
Thijs Kinkhorst
- [Full-disclosure] [SECURITY] [DSA 2434-1] nginx security update,
Luciano Bello
- [Full-disclosure] CVE-2012-1201 Testtrack for Linux Racecondition,
Simon .
- [Full-disclosure] [SECURITY] [DSA 2435-1] gnash security update,
Gabriele Giacone
- [Full-disclosure] Android FTPServer 1.9.0 Remote DoS,
Thomas Richards
- [Full-disclosure] FreePBX remote command execution, xss,
Martin Tschirsich
- [Full-disclosure] Penetration testing business,
Krzysztof Marczyk
- [Full-disclosure] [ MDVSA-2012:032 ] mozilla,
security
- [Full-disclosure] CA20120320-01: Security Notice for CA ARCserve Backup,
Kotas, Kevin J
- [Full-disclosure] Mu Dynamics, Inc. Security Advisories MU-201202-01 and MU-201202-02 for GnuTLS and Libtasn1,
Security
- [Full-disclosure] Shakacon 2012 - CFP Deadline Approaching,
Shakacon
- [Full-disclosure] [ MDVSA-2012:033 ] libpng,
security
- [Full-disclosure] Seeker Advisory: Insecure Redirect in .NET Form Authentication - Redirect From Login Mechanism (ReturnURL Parameter),
Irene Abezgauz
- [Full-disclosure] DarkComet - syrian revolution trojan analysis and author interview,
Adam Behnke
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-042 - Wishlist Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [SECURITY] [DSA 2437-1] icedove security update,
Moritz Muehlenhoff
- [Full-disclosure] atheme.org Security Advisory ASA-2012-03-01: Improper cleanup of CertFP entries may result in undefined behaviour,
William Pitcock
- [Full-disclosure] Minify and related plugins DOM-Based XSS Vulnerability,
Ayoub Aboukir
- [Full-disclosure] [CVE-2012-0047] Apache Wicket XSS vulnerability via pageMapName request parameter,
Martin Grigorov
- [Full-disclosure] [CVE-2012-1089] Apache Wicket serving of hidden files vulnerability,
Martin Grigorov
- [Full-disclosure] CVE-2012-0037: OpenOffice.org data leakage vulnerability,
Rob Weir
- [Full-disclosure] [SECURITY] [DSA 2438-1] raptor security update,
Moritz Muehlenhoff
- [Full-disclosure] CarolinaCon-8 (May 2012): General Announcement - Chosen Presenters and Topics - Side Event List,
Vic Vandal
- [Full-disclosure] [SECURITY] [DSA 2439-1] libpng security update,
Moritz Muehlenhoff
- [Full-disclosure] [ MDVSA-2012:034 ] libzip,
security
- [Full-disclosure] [ MDVSA-2012:035 ] file,
security
- [Full-disclosure] 'PHP Grade Book' Unauthenticated SQL Database Export (CVE-2012-1670),
Mark Stanislav
- [Full-disclosure] 'phpMoneyBooks' Local File Inclusion (CVE-2012-1669),
Mark Stanislav
- [Full-disclosure] [ANNOUNCE] Apache Traffic Server releases for security incident CVE-2012-0256,
Leif Hedstrom
- [Full-disclosure] Apple IOS security issue pre-advisory record,
john doe
- [Full-disclosure] [ MDVSA-2012:036 ] libsoup,
security
- [Full-disclosure] [ MDVSA-2012:037 ] cyrus-imapd,
security
- [Full-disclosure] Permanent XSS on the nuit du hack webmail service,
klondike
- [Full-disclosure] CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected),
VSR Advisories
- [Full-disclosure] [SECURITY] [DSA 2440-1] libtasn1-3 security update,
Florian Weimer
- [Full-disclosure] Shopping For Zero-Days: A Price List For Hackers' Secret Software Exploits,
Jeffrey Walton
- [Full-disclosure] [SECURITY] [DSA 2441-1] gnutls26 security update,
Florian Weimer
- [Full-disclosure] Brute Force vulnerability in WordPress,
MustLive
- [Full-disclosure] PcwRunAs Password Obfuscation Design Flaw,
otr
- [Full-disclosure] vBulletin vBShout Module <= 6.0.5 (vbshout.php?message=) - Reflected Cross-Site Scripting ( XSS ) & HTML Injection,
d3v1l
- [Full-disclosure] The Best of PenTest,
Maciej Kozuszek
- [Full-disclosure] Mexican Drug Cartels and Cyberspace,
Adam Behnke
- [Full-disclosure] [ MDVSA-2012:038 ] openssl,
security
- [Full-disclosure] [SECURITY] [DSA 2442-1] openarena security update,
Florian Weimer
- [Full-disclosure] Congress Capitulates To TSA; Refuses To Let Bruce Schneier Testify,
Ivan .Heca
- [Full-disclosure] [PRE-SA-2012-02] Incorrect loop construct and numeric overflow in libzip,
Timo Warns
- [Full-disclosure] FreePBX <= 2.8.0 Recordings Interface Allows Remote Code Execution,
foo net
- [Full-disclosure] [SECURITY] [DSA 2443-1] linux-2.6 security update,
dann frazier
- [Full-disclosure] Please do not take down the Sality botnet,
lawabidingcitizen
- [Full-disclosure] [ MDVSA-2012:039 ] libtasn1,
security
- [Full-disclosure] WordPress plugin 'WordPress Integrator 1.32' XSS vulnerability,
Stefan Schurtz
- Re: [Full-disclosure] Full-Disclosure SALTY,
Fatherlaptop
- [Full-disclosure] [ MDVSA-2012:040 ] gnutls,
security
- [Full-disclosure] [ MDVSA-2012:041 ] expat,
security
- [Full-disclosure] SEC Consult SA-20120328-1 :: Microsoft ASP.NET Forms Authentication Bypass - follow-up advisory - CVE-2011-3416,
SEC Consult Vulnerability Lab
- [Full-disclosure] SEC Consult SA-20120328-0 :: F5 FirePass SSL VPN unauthenticated remote root through SQL injection - CVE-2012-1777,
SEC Consult Vulnerability Lab
- [Full-disclosure] [ MDVSA-2012:042 ] wireshark,
security
- [Full-disclosure] Local File Inclusion Vulnerability in TomatoCart,
Netsparker Advisories
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Software Command Authorization Bypass,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Software RSVP Denial of Service Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Software Smart Install Denial of Service Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Software Reverse SSH Denial of Service Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Software Zone-Based Firewall Vulnerabilities,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Internet Key Exchange Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS Software Traffic Optimization Features,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco IOS Software Multicast Source Discovery Protocol Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] XSS and BF vulnerabilities in WordPress,
MustLive
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-043 - MultiBlock - Cross Site Scripting,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-044 - Contact Forms - Cross Site Scripting,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-045 - AddToAny - Cross Site Scripting,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-047 - Ubercart Views - Information disclosure,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-046 - Bundle Copy - Arbitrary Code execution,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-048 - Contact Save - Cross Site Scripting,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-049 - ShareThis - Multiple Vulnerablies,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-050 - CDN2 Video - Unsupported,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-053 - Organic Groups - Access Bypass,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-054 - Chaos tool suite - Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-051 - Activity - Multiple Vulnerablities,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-052 - Node Limit Number - Cross Site Request Forgery,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2012-055 - Fusion theme - Cross Site Scripting (XSS),
security-news
- [Full-disclosure] [Spanish-Offtopic] - Desarrollo de Exploits,
runlvl
- [Full-disclosure] [SECURITY] [DSA 2444-1] tryton-server security update,
Florian Weimer
- Re: [Full-disclosure] Please do not take down the Sality botnet,
Borys Madry
- [Full-disclosure] B2Evolution CMS 4.1.3 - Multiple Web Vulnerabilities,
Research
- [Full-disclosure] Barracuda Cloud CC v3.04.015 - Multiple Web Vulnerabilities,
Research
- [Full-disclosure] Skype 5.8x 5.5x - Corruption & Persistent Vulnerability,
Research
- [Full-disclosure] Apple Website Service - SQL Injection Vulnerabilities,
Research
- [Full-disclosure] OWASP AppSec Research EU CFP/CFT,
OWASP AppSec EU
- [Full-disclosure] [ MDVSA-2012:043 ] nginx,
security
- [Full-disclosure] [ MDVSA-2012:044 ] cvs,
security
- [Full-disclosure] Cross-site scripting vulnerability in Invision Power Board version 3.2.3,
Netsparker Advisories
- [Full-disclosure] Multiple PTK DFlabs failures to restrict access to sensitive data,
SecBugs
- [Full-disclosure] New XSS vulnerabilities in Register Plus Redux for WordPress,
MustLive
- [Full-disclosure] VMSA-2012-0006 VMware ESXi and ESX address several security issues,
VMware Security Team
- [Full-disclosure] Bitsmith PS Knowbase 3.2.3 - Buffer Overflow Vulnerability,
Research
- [Full-disclosure] [ MDVSA-2012:045 ] gnutls,
security
- [Full-disclosure] PHP 5.4/5.3 deprecated eregi() memory_limit bypass,
Maksymilian Arciemowicz
- [Full-disclosure] Landshop v0.9.2 - Multiple Web Vulnerabilities,
Research
- [Full-disclosure] [SECURITY] [DSA 2445-1] typo3-src security update,
Florian Weimer
- [Full-disclosure] [SECURITY] [DSA 2442-2] openarena regression,
Florian Weimer
Mail converted by MHonArc