Olat Stored Cross Site Scripting
Olat suffers from a persistent cross site scripting vulnerability.
View ArticleMozilla Firefox Secret Leak
The recent release of Firefox 32 fixes another interesting image parsing issue found by afl. Following a refactoring of memory management code, the past few versions of the browser ended up using...
View Articlevtiger.com Cross Site Scripting
vtiger.com suffers from a persistent cross site scripting vulnerability.
View ArticlevBulletin 4.1.2 SQL Injection
Automated SQL injection exploit for vBulletin versions 4.0.x through 4.1.2 that makes use of a vulnerability originally disclosed in May of 2011.
View ArticleDebian Security Advisory 3018-1
Debian Linux Security Advisory 3018-1 - Multiple security issues have been found in Iceweasel, Debian's version use-after-frees may lead to the execution of arbitrary code or denial of service.
View ArticleUbuntu Security Notice USN-2338-1
Ubuntu Security Notice 2338-1 - It was discovered that Lua incorrectly handled certain vararg functions with a large number of fixed parameters. An attacker could use this issue to cause Lua...
View ArticleGentoo Linux Security Advisory 201409-03
Gentoo Linux Security Advisory 201409-3 - A vulnerability in dhcpcd can lead to a Denial of Service condition. Versions less than 6.4.3 are affected.
View ArticleUbuntu Security Notice USN-2339-1
Ubuntu Security Notice 2339-1 - Daniel Genkin, Adi Shamir, and Eran Tromer discovered that GnuPG was susceptible to an adaptive chosen ciphertext attack via physical side channels. A local attacker...
View ArticleUbuntu Security Notice USN-2339-2
Ubuntu Security Notice 2339-2 - Daniel Genkin, Adi Shamir, and Eran Tromer discovered that Libgcrypt was susceptible to an adaptive chosen ciphertext attack via physical side channels. A local attacker...
View ArticleMandriva Linux Security Advisory 2014-173
Mandriva Linux Security Advisory 2014-173 - An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO...
View ArticleMandriva Linux Security Advisory 2014-172
Mandriva Linux Security Advisory 2014-172 - The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service via a crafted...
View ArticleHP Security Bulletin HPSBGN03099
HP Security Bulletin HPSBGN03099 - A potential security vulnerability has been identified with HP IceWall SSO Dfw, SSO Agent and MCRP running OpenSSL. The vulnerability could be exploited remotely...
View ArticleJenkins 1.578 Cross Site Request Forgery / Command Execution
Jenkins version 1.578 suffers from cross site request forgery and command execution vulnerabilities.
View ArticleMpay24 Payment Module 1.5 Information Disclosure / SQL Injection
Mpay24 Payment Module versions 1.5 and below suffer from information disclosure and remote SQL injection vulnerabilities.
View ArticleWordPress Advanced Access Manager 2.8.2 File Write / Code Execution
WordPress Advanced Access Manager plugin version 2.8.2 suffers from arbitrary file write and code execution vulnerabilities.
View ArticleMyWebSQL 3.4 Cross Site Scripting
MyWebSQL version 3.4 suffers from a cross site scripting vulnerability.
View ArticleBlackCat CMS 1.0.3 Cross Site Scripting
BlackCat CMS version 1.0.3 suffers from a cross site scripting vulnerability.
View Articlewtmpclean 0.8.1
wtmpClean is a tool for Unix which clears a given user from the wtmp database.
View Article