NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2006-10

524 messages sorted by: [ date ] [ thread ] [ subject ]

Starting: Sun Oct 01 2006 - 18:07:35 CDT
Ending: Tue Oct 31 2006 - 17:00:14 CST

3APA3A
- :ShAnKaR: WoltLab Burning Book <=1.1.2 multiple vulnerabilities (Mon Oct 16 2006 - 12:32:19 CDT)
3cab7cc7srasg.stevenroddis.com.au
- TorrentFlux user_id Script Insertion (Tue Oct 17 2006 - 01:44:04 CDT)
- TorrentFlux file Script Insertion (Tue Oct 17 2006 - 01:43:06 CDT)
- TorrentFlux action Script Insertion (Tue Oct 17 2006 - 01:42:14 CDT)
566d9bfesrasg.stevenroddis.com.au
- TorrentFlux startpop.php torrent Script Insertion (Fri Oct 13 2006 - 00:21:02 CDT)
abel.andradelycos.com
- Re: iDefense Security Advisory 10.19.06: Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability (Fri Oct 20 2006 - 09:48:28 CDT)
Adam Boileau
- Security-Assessment.com Advisory: Asterisk remote heap overflow (Wed Oct 18 2006 - 16:56:02 CDT)
Adam Laurie
- RFID enabled e-passport skimming proof of concept code released (RFIDIOt) (Fri Oct 27 2006 - 11:35:43 CDT)
adminmajorsecurity.de
- [MajorSecurity Advisory #29]foresite CMS - Cross Site Scripting Issue (Sun Oct 29 2006 - 06:39:14 CST)
advisorieslssec.com
- LS-20060313 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability (Sat Oct 07 2006 - 02:13:39 CDT)
- LS-20060220 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability (Sat Oct 07 2006 - 02:11:43 CDT)
- LS-20060330 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability (Sat Oct 07 2006 - 02:15:17 CDT)
advisoryrapid7.com
- Rapid7 Advisory R7-0026: HTTP Header Injection Vulnerabilities in the Flash Player Plugin (Tue Oct 17 2006 - 15:34:51 CDT)
- Rapid7 Advisory R7-0025: Buffer Overflow in NVIDIA Binary Graphics Driver For Linux (Mon Oct 16 2006 - 13:56:39 CDT)
aeroxteamgmail.com
- Vulnerability in Btitracker (Fri Oct 06 2006 - 13:20:24 CDT)
ajannhwthotmail.com
- PHPEasyData Pro 2.2.1 (index.php) Remote SQL Injection Vulnerability (Sun Oct 29 2006 - 14:08:03 CST)
- PHPEasyData Pro 1.4.1 (index.php) Remote SQL Injection Vulnerability (Sun Oct 29 2006 - 14:07:44 CST)
akred-database-security.com
- SQL Injection in Oracle package MDSYS.SDO_LRS (Mon Oct 23 2006 - 11:57:57 CDT)
- SQL Injection in package SYS.DBMS_CDC_IMPDP (Mon Oct 23 2006 - 11:51:26 CDT)
- SQL Injection in package XDB.DBMS_XDBZ0 (Mon Oct 23 2006 - 11:53:22 CDT)
- SQL Injection in package SYS.DBMS_SQLTUNE_INTERNAL (Mon Oct 23 2006 - 11:49:21 CDT)
- Modify Data via Inline Views (Mon Oct 23 2006 - 11:45:14 CDT)
- Various Cross-Site-Scripting Vulnerabilities in Oracle Reports (Mon Oct 23 2006 - 11:40:09 CDT)
- http://www.red-database-security.com/advisory/oracle_apex_css_notification_msg.html (Mon Oct 23 2006 - 11:37:21 CDT)
- Cross-Site-Scripting Vulnerability in Oracle APEX WWV_FLOW_ITEM_HELP (Mon Oct 23 2006 - 11:34:46 CDT)
- SQL Injection Vulnerability in Oracle WWV_FLOW_UTILITIES (Mon Oct 23 2006 - 11:32:02 CDT)
Alexander Hristov
- Mcafee Network Agent (mcnasvc.exe) Remote DoS (Thu Oct 12 2006 - 13:42:49 CDT)
- Google Earth (kml & kmz files) buffer overflow (Thu Oct 12 2006 - 13:42:22 CDT)
Alexander Sotirov
- Re: [funsec] Technical Paper on the ZERT Patch and VML [was: Re: ZERT patch for setSlice()] (Wed Oct 04 2006 - 13:39:57 CDT)
alguidyhotmail.com
- Advanced Poll v2.02 :) <= Remote File Inclusion (Sun Oct 08 2006 - 09:30:29 CDT)
alireza hassani
- [KAPDA::#60] Mambo V4.6.x vulnerabilities (Fri Oct 20 2006 - 05:58:29 CDT)
almasterhotmail.com
- SQL in WebWizForum by almaster hacker (Sat Oct 28 2006 - 03:45:08 CDT)
arab_anacondahotmail.com
- PHPLibrary-1.5.3(Description.php) Remote File Include (Fri Oct 20 2006 - 04:07:19 CDT)
Aras \
- RE: Flaw in Firefox 2.0 RC2 (Wed Oct 18 2006 - 17:47:17 CDT)
Arian J. Evans
- RE: Informing Companies about security vulnerabilities... (Thu Oct 05 2006 - 14:17:51 CDT)
arny
- Re: Flaw in Firefox 2.0 RC2 (Wed Oct 18 2006 - 10:46:37 CDT)
auto113922hush.ai
- who needs a server ... (Tue Oct 24 2006 - 08:45:35 CDT)
Avertavertlabs.com
- MS06-060 Microsoft Word Memmove Code Execution (Wed Oct 11 2006 - 18:27:04 CDT)
avivra
- VoMM: Taking browser exploits to the next level (Mon Oct 16 2006 - 10:48:23 CDT)
B Potter
- ShmooCon 2006 CFP Announcement (Tue Oct 10 2006 - 20:05:57 CDT)
Bernhard Mueller
- Re: PHP "exec", "system", "popen" (+small POC) (Fri Oct 20 2006 - 04:08:22 CDT)
Bithedzgmail.com
- ArticleBeach Script <= 2.0 Remote File Inclusion Vulnerability (Thu Oct 26 2006 - 19:34:03 CDT)
- TextPattern <=1.19 Remote File Inclusion Vulnerability (Thu Oct 26 2006 - 19:26:52 CDT)
boomboom999yahoo.com
- Utimaco Safeguard Easy vulnerability (Thu Oct 12 2006 - 21:49:19 CDT)
Brian Eaton
- Re: [Full-disclosure] IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]) (Mon Oct 02 2006 - 08:44:27 CDT)
bugtraqcgisecurity.net
- RE: Informing Companies about security vulnerabilities... (Wed Oct 04 2006 - 14:15:07 CDT)
By_KorsaN_SonHotmail.com
- PHPht Topsites Remote File İnclude (Thu Oct 12 2006 - 18:20:56 CDT)
- Bloq 0.5.4 Remote File İnclude (Thu Oct 12 2006 - 18:19:44 CDT)
- Download-Engine Remote File İnclude (Thu Oct 12 2006 - 18:18:22 CDT)
- Phpbb insert mod Remote file include (Thu Oct 12 2006 - 12:34:20 CDT)
C. Hamby
- About.com contact (Tue Oct 17 2006 - 02:05:34 CDT)
CarcaBotxyahoo.com
- PHPRecipeBook <= 2.35 ((g_rb_basedir)) Remote File Include Exploit (Wed Oct 18 2006 - 06:58:05 CDT)
Christian Kalkhoff
- Re: Mozilla Firefox JavaScript Handler Race Condition Memory Corruption Vulnerability (Thu Oct 26 2006 - 15:32:05 CDT)
Christopher
- Directory Traversal in TorrentFlux 2.1 (Thu Oct 26 2006 - 12:16:56 CDT)
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Cisco Security Agent for Linux Port Scan Denial of Service (Wed Oct 25 2006 - 11:15:00 CDT)
- Cisco Security Advisory: Default Password in Wireless Location Appliance (Thu Oct 12 2006 - 11:12:04 CDT)
- Cisco Security Advisory: Limitations in Cisco Secure Desktop (Mon Oct 09 2006 - 11:00:58 CDT)
CORE FORCE Team
- CORE FORCE R0.95 released! (Mon Oct 30 2006 - 11:53:08 CST)
corrado.liottaalice.it
- {x0n3-h4ck} DEV Web Manager System <= 1.5 XSS Exploit (Wed Oct 18 2006 - 10:11:18 CDT)
crackers_childsibersavascilar.com
- Joomla extended_registration mod Remote File Include Vulnerabilities (Thu Oct 26 2006 - 10:45:27 CDT)
- adobe php sdk Remote File Include Vulnerabilities (Tue Oct 24 2006 - 10:35:12 CDT)
- CSLH2.9.9 Remote File Include Vulnerabilities (Tue Oct 24 2006 - 10:33:40 CDT)
- INCA IM-204 Dsl several vulnerabilities (Mon Oct 23 2006 - 16:28:20 CDT)
- Smarty-2.6.1 Remote File Include Vulnerabilities (Mon Oct 23 2006 - 11:30:07 CDT)
- WHM 10.8.0 cPanel 10.9.0 R50 CentOS 4.4 i686 WHM X v3.1.0 Xss Vulnerability (Sun Oct 22 2006 - 09:31:20 CDT)
- MysqlDumper Version 1.21 b6 Xss Vulnerability (Wed Oct 11 2006 - 08:05:20 CDT)
- phpWebSite 0.10.2 Remote File Include Vulnerabilities (Mon Oct 09 2006 - 10:44:20 CDT)
CvIr.Systemgmail.com
- CMS contenido Path Disclosure (Fri Oct 13 2006 - 09:43:54 CDT)
- CMS contenido Remote File Inclusion (Fri Oct 13 2006 - 09:39:53 CDT)
cw.cybersecuritygmail.com
- Simple Website Software v0.99 (common.php) Remote File Include (Sun Oct 29 2006 - 10:24:19 CST)
D-viruslinuxmail.org
- gcards (languagefile) <= Remote File Include (Tue Oct 10 2006 - 18:36:57 CDT)
Daniel Veditz
- Re: New Flaw in Firefox 2.0: DoS and possible remote code execution (Tue Oct 31 2006 - 15:56:21 CST)
dansoftausyahoo.com.au
- Re: DanPHPSupport => 0.5 Cross Site Scripting Vulnerabilities (Fri Oct 13 2006 - 19:20:01 CDT)
David Litchfield
- Analysis of the Oracle October 2006 Critical Patch Update (Wed Oct 18 2006 - 01:55:35 CDT)
David Matousek
- Kerio Multiple insufficient argument validation of hooked SSDT function Vulnerability (Sun Oct 01 2006 - 03:23:15 CDT)
davidnet2ftp.com
- Re: net2ftp Remote File Inclusion - bogus report (Fri Oct 06 2006 - 17:15:05 CDT)
Debasis Mohanty
- Multiple HTTP response splitting vulnerabilities in SHOP-SCRIPT (Mon Oct 23 2006 - 13:53:03 CDT)
dhlayereddefense.com
- Layered Defense Advisory: TrendMicro OfficesScan Corporate Edition Format String Vulnerability (Sun Oct 01 2006 - 17:04:04 CDT)
disfigure
- Simplog 0.9.3.1 SQL Injection (Tue Oct 17 2006 - 21:50:48 CDT)
- Boonex Dolphin 5.2 Remote File Inclusion (Tue Oct 17 2006 - 21:49:06 CDT)
- Comdev One Admin 4.1 Remote File Inclusion (Tue Oct 17 2006 - 21:50:03 CDT)
- SQL injection - moodle (Sun Oct 08 2006 - 16:29:26 CDT)
- SQL injection - 4images (Sun Oct 08 2006 - 16:22:13 CDT)
dj_remix_20hotmail.com
- Jax LinkLists Remote File include (Thu Oct 12 2006 - 20:01:31 CDT)
- Jax Newspage Remote File include (Thu Oct 12 2006 - 20:00:51 CDT)
- Emek Portal v2.1 SQL Injection (Fri Oct 06 2006 - 12:37:08 CDT)
- Hazir Site v2.0 Admin SQL Injection (Fri Oct 06 2006 - 08:44:27 CDT)
- Yener Haber Script v2.0 SQL injection (Wed Oct 04 2006 - 05:16:25 CDT)
- Dayfox Blog v2.0 Remote file include (Sun Oct 01 2006 - 06:15:10 CDT)
Dr.Ninuxhotmail.com
- Sorry....My Message With Out Live Site.... (Sat Oct 07 2006 - 11:56:02 CDT)
Dragos Ruiu
- PacSec Hype Security Team: CGI.pm param injection (Thu Oct 12 2006 - 14:52:05 CDT)
- pacsec hype security team: 7 words of warning about Macromedia Flash Player 9+ (Tue Oct 10 2006 - 16:36:28 CDT)
- PacSec 2006 Papers announcement and EUSecWest Call For Papers (Tue Oct 03 2006 - 00:06:12 CDT)
E Mintz
- Security contact for Myspace/Fox? (Thu Sep 28 2006 - 11:30:38 CDT)
edubp2002hotmail.com
- Re: Secunia Research: Microsoft Windows Object Packager Dialog Spoofing (Sat Oct 14 2006 - 03:32:49 CDT)
Eiji James Yoshida
- Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053] (Sat Sep 30 2006 - 23:00:31 CDT)
Eliah Kagan
- Re: Flaw in Firefox 2.0 RC2 (Tue Oct 17 2006 - 17:05:22 CDT)
emme0032umn.edu
- Re: phpAdsNew-2.0.8 <= (adlayer.php) Remote File Include (Fri Oct 27 2006 - 20:48:13 CDT)
Enno Rey
- Observations on Mandatory Integrity Control (MIC) in Windows Vista (Fri Oct 06 2006 - 04:45:15 CDT)
Enrico Scholz
- [Fedora] libtool-ltdl uses relative paths to resolve and load libraries (Tue Oct 10 2006 - 13:57:23 CDT)
erdcecho.or.id
- [ECHO_ADV_53$2006] QnECMS <= 2.5.6 (adminfolderpath) Remote File Inclusion Vulnerability (Sun Oct 29 2006 - 21:55:20 CST)
- [ECHO_ADV_46$2006] P-Book <= 1.17 (pb_lang) Remote File Inclusion (Wed Oct 18 2006 - 01:04:52 CDT)
- [ECHO_ADV_55$2006]Phpmybibli <=2.1 Multiple Remote File Inclusion Vulnerability (Tue Oct 17 2006 - 03:54:03 CDT)
- [ECHO_ADV_54$2006]vtiger CRM <=4.2 (calpath) Multiple Remote File Inclusion Vulnerability (Mon Oct 09 2006 - 04:43:28 CDT)
- [ECHO_ADV_52$2006]OpenDock Easy Gallery <=1.4 (doc_directory) Multiple Remote File Inclusion Vulnerability (Mon Oct 09 2006 - 00:09:30 CDT)
- [ECHO_ADV_48$2006] WebYep <= 1.1.9 (webyep_sIncludePath) Multiple Remote File Inclusion Vulnerability (Mon Oct 09 2006 - 00:05:30 CDT)
- [ECHO_ADV_51$2006] docmint <= 2.0 (MY_ENV[BASE_ENGINE_LOC]) Remote File Inclusion Vulnerability (Mon Oct 09 2006 - 00:08:27 CDT)
- [ECHO_ADV_50$2006]OpenDock Easy Blog <=1.4 (doc_directory) Multiple Remote File Inclusion Vulnerability (Mon Oct 09 2006 - 00:07:00 CDT)
- [ECHO_ADV_49$2006]OpenDock Easy Doc <=1.4 (doc_directory) Multiple Remote File Inclusion Vulnerability (Mon Oct 09 2006 - 00:06:16 CDT)
erneernealizm.com
- patchlodel-0.7.3 - Remote File Include Vulnerabilities (Sat Oct 14 2006 - 16:56:42 CDT)
- WebYep-1.1.9 - Remote File Include Vulnerabilities (Sun Oct 15 2006 - 08:12:20 CDT)
- MOStlyCEV454 - Remote File Include Vulnerabilities (Sun Oct 15 2006 - 08:20:22 CDT)
- maintain-3.0.0-RC2 - Remote File Include Vulnerabilities (Sun Oct 15 2006 - 08:09:44 CDT)
- Jinzora 2.6 - Remote File Include Vulnerabilities (Sat Oct 14 2006 - 13:45:07 CDT)
errealegmail.com
- Mozilla Firefox JavaScript Handler Race Condition Memory Corruption Vulnerability (Wed Oct 25 2006 - 15:44:27 CDT)
farhadkeyyahoo.com
- [KAPDA::#61] - PacPoll <= 4.0 Multiple Vulnerabilities (Wed Oct 25 2006 - 03:05:24 CDT)
fireboy2006gmail.com
- UNISOR CMS sql injection (Thu Oct 26 2006 - 19:06:00 CDT)
- KICS CMS sql injection (Wed Oct 18 2006 - 20:04:37 CDT)
- UltraCMS 0.9 sql injection (Wed Oct 18 2006 - 20:03:09 CDT)
firewall1954hotmail.com
- Multiple Remote File Include (Mon Oct 30 2006 - 11:55:25 CST)
- Nucleus Core v3.23 - Remote File Include (Mon Oct 30 2006 - 13:15:50 CST)
- CentiPaid <= 1.4.2 [$class_pwd] Remote File Include (Sat Oct 28 2006 - 01:49:57 CDT)
Francesco Laurita
- Re: Nucleus Core v3.23 - Remote File Include (Mon Oct 30 2006 - 15:16:26 CST)
- Re: CentiPaid <= 1.4.2 [$class_pwd] Remote File Include (Mon Oct 30 2006 - 12:12:10 CST)
- Re: Ban v0.1 (bannieres.php) File Include (Fri Oct 27 2006 - 19:40:14 CDT)
- ackerTodo 4.2 SQL Injection Vulnerability (Thu Oct 05 2006 - 12:53:08 CDT)
FREAK_PRHOTMAIL.COM
- RMSOFT Cross Site Scripting (Sat Oct 21 2006 - 14:56:25 CDT)
FreeBSD Security Advisories
- FreeBSD Security Advisory FreeBSD-SA-06:22.openssh (Sat Sep 30 2006 - 15:24:45 CDT)
Gadi Evron
- unreliable vulnerability reports en-masee [was:Re: vulnerability in Symantec products] (Mon Oct 30 2006 - 13:22:14 CST)
- [funsec] Haxdoor: UK Police Count 8, 500 Victims in Data Theft (So Far) (fwd) (Tue Oct 24 2006 - 17:27:59 CDT)
- Re: Yahoo! Messenger Service 18 Remote Buffer Overflow Vulnerability (Wed Oct 25 2006 - 04:30:18 CDT)
- ISOI II - a DA Workshop (announcement and CFP) (Fri Oct 13 2006 - 07:21:51 CDT)
- Re: [funsec] Technical Paper on the ZERT Patch and VML [was: Re: ZERT patch for setSlice()] (Sun Oct 08 2006 - 04:18:41 CDT)
- Technical Paper on the ZERT Patch and VML [was: Re: ZERT patch for setSlice()] (Wed Oct 04 2006 - 09:43:54 CDT)
- ZERT patch for setSlice() (Sat Sep 30 2006 - 11:47:27 CDT)
generitterfamily.org
- Re: Directory Traversal Vulnerability in Goop Gallery 2.0.2 (Mon Oct 16 2006 - 20:01:42 CDT)
Gianluca Varisco
- Re: yet another OpenSSH timing leak? (Mon Oct 09 2006 - 17:41:25 CDT)
gmdarkfiggmail.com
- 7 php scripts File Inclusion / Source disclosure Vuln (Sat Oct 07 2006 - 06:27:28 CDT)
Gouki
- Re: New Flaw in Firefox 2.0: DoS and possible remote code execution (Tue Oct 31 2006 - 13:05:14 CST)
H D Moore
- Metasploit Framework 2.7 Released (Mon Oct 30 2006 - 11:21:42 CST)
h4ck3riranyahoo.com
- Back-end => 0.4.5 Remote File Include Vulnerability Exploit (Sat Oct 28 2006 - 02:43:54 CDT)
- bbsNew => 2.0.1 Remote File Include Vulnerability Exploit (Sat Oct 28 2006 - 02:42:40 CDT)
- Exporia => 0.3.0 Remote File Include Vulnerability Exploit (Sat Oct 28 2006 - 02:40:59 CDT)
- Back-end ( File Include Vulnerability Exploit ) (Sun Oct 15 2006 - 09:04:31 CDT)
- bbsNew ( File Include Vulnerability Exploit ) (Sun Oct 15 2006 - 09:06:12 CDT)
hack2prisonyahoo.com
- Iono all version fullpath disclosure (Wed Oct 11 2006 - 22:52:36 CDT)
handrixgmail.com
- Sun java System Messenger Express XSS (Mon Oct 30 2006 - 22:28:45 CST)
HASEGAWA Yosuke
- Re: [Full-disclosure] IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 (Fri Oct 27 2006 - 05:35:03 CDT)
iDefense Labs
- iDefense Security Advisory 10.26.06: Multiple Vendor wvWare LFO Count Integer Overflow Vulnerability (Thu Oct 26 2006 - 13:50:05 CDT)
- iDefense Security Advisory 10.26.06: Multiple Vendor wvWare LVL Count Integer Overflow Vulnerability (Thu Oct 26 2006 - 13:50:08 CDT)
- iDefense Security Advisory 10.25.06: AOL Nullsoft Winamp Ultravox Lyrics3 v2.00 tags Heap Overflow Vulnerability (Wed Oct 25 2006 - 15:34:44 CDT)
- iDefense Security Advisory 10.25.06: AOL YGPPDownload AddPictureNoAlbum ActiveX Control Heap Corruption Vulnerability (Wed Oct 25 2006 - 15:34:56 CDT)
- iDefense Security Advisory 10.25.06: AOL YGPPDownload downloadFileDirectory ActiveX Control Heap Corruption Vulnerability (Wed Oct 25 2006 - 15:34:54 CDT)
- iDefense Security Advisory 10.25.06: AOL Nullsoft Winamp Ultravox 'ultravox-max-msg' Header Heap Overflow Vulnerability (Wed Oct 25 2006 - 15:34:48 CDT)
- iDefense Security Advisory 10.21.06: Novell eDirectory evtFilteredMonitorEventsRequest Invalid Free Vulnerability (Sat Oct 21 2006 - 23:43:44 CDT)
- iDefense Security Advisory 10.21.06: Novell eDirectory NCP over IP length Heap Overflow Vulnerability (Sat Oct 21 2006 - 23:43:31 CDT)
- iDefense Security Advisory 10.21.06: Novell eDirectory evtFilteredMonitorEventsRequest Heap Overflow Vulnerability (Sat Oct 21 2006 - 23:43:33 CDT)
- iDefense Security Advisory 10.19.06: Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability (Thu Oct 19 2006 - 14:49:34 CDT)
- iDefense Security Advisory 10.17.06: Opera Software Opera Web Browser URL Parsing Heap Overflow Vulnerability (Tue Oct 17 2006 - 15:08:15 CDT)
- iDefense Security Advisory 10.15.06: Clam AntiVirus ClamAV rebuildpe Heap Overflow Vulnerability (Mon Oct 16 2006 - 15:03:57 CDT)
- iDefense Security Advisory 10.15.06: Clam AntiVirus ClamAV CHM Chunk Name Length DoS Vulnerability (Mon Oct 16 2006 - 15:03:59 CDT)
- iDefense Security Advisory 10.13.06: Apache HTTP Server mod_tcl set_var Format String Vulnerability (Fri Oct 13 2006 - 13:37:38 CDT)
- iDefense Security Advisory 10.11.06: Sun Microsystems Solaris NSPR Library Arbitrary File Creation Vulnerability (Wed Oct 11 2006 - 15:45:09 CDT)
- iDefense Security Advisory 10.11.06: AOL YGPPDownload SetAlbumName ActiveX Control Buffer Overflow Vulnerability (Wed Oct 11 2006 - 15:28:00 CDT)
- iDefense Security Advisory 10.10.06: FreeBSD ptrace PT_LWPINFO Denial of Service Vulnerability (Tue Oct 10 2006 - 17:05:56 CDT)
- iDefense Security Advisory 10.05.06: Symantec AntiVirus IOCTL Kernel Privilege Escalation Vulnerability (Thu Oct 05 2006 - 12:49:37 CDT)
- iDefense Security Advisory 10.02.06: Novell GroupWise Messenger nmma.exe DoS Vulnerability (Tue Oct 03 2006 - 11:14:32 CDT)
infophplist.com
- new version of phplist fix XSS vulnerability (Wed Oct 11 2006 - 19:45:42 CDT)
ip.123.456.78.90hotmail.com
- GestArt <= vbeta 1 Remote File Include Vulnerabilities (Wed Oct 25 2006 - 21:31:51 CDT)
J. Carlos Nieto
- Re: Smarty-2.6.1 Remote File Include Vulnerabilities (Tue Oct 24 2006 - 08:50:07 CDT)
jay.tomasinfosecguru.com
- Re: vulnerability in Symantec products (Fri Oct 27 2006 - 14:32:49 CDT)
Jeff Moss
- Black Hat CFP, Registration, and Announcements for October (Thu Oct 12 2006 - 19:28:58 CDT)
Jerome Athias
- Re: Free Rainbow Tables.com (Mon Oct 30 2006 - 15:29:07 CST)
jm
- Re: Flaw in Firefox 2.0 RC2 (Tue Oct 17 2006 - 19:28:20 CDT)
Jose Nazario
- Re: Flaw in Firefox 2.0 RC2 (Tue Oct 17 2006 - 13:45:56 CDT)
jose.palancoeazel.es
- D-Link DSL-G624T several vulnerabilities (Mon Oct 23 2006 - 04:26:16 CDT)
josecarlos.nortegmail.com
- SMF fgets off-by-one issue and filter size evasion (Wed Oct 25 2006 - 14:47:31 CDT)
- Simple Machines Forum (SMF) XSS issue (Fri Oct 20 2006 - 09:30:11 CDT)
Josh Bressers
- Re: New Flaw in Firefox 2.0: DoS and possible remote code execution (Tue Oct 31 2006 - 12:41:57 CST)
- Re: Concurrency-related vulnerabilities in browsers - expect problems (Thu Oct 05 2006 - 08:23:06 CDT)
Jouko Pynnonen
- Details of Lotus Notes Java Applet vulnerabilities (Fri Oct 06 2006 - 11:36:01 CDT)
Joxean Koret
- MS Windows DRM software Memory Corruption (Mon Oct 09 2006 - 05:39:24 CDT)
Juha-Matti Laurio
- Re: Utimaco Safeguard Easy vulnerability (Wed Oct 18 2006 - 09:30:03 CDT)
- Re: Security contact for Myspace/Fox? (Mon Oct 02 2006 - 16:38:48 CDT)
- Vulnerable function in newest PowerPoint case (MS Advisory #925984) (Thu Oct 05 2006 - 18:31:33 CDT)
Jure PeÄar
- Re: Flaw in Firefox 2.0 RC2 (Fri Oct 20 2006 - 03:45:45 CDT)
K F (lists)
- hack.lu Bluetooth demo (Mon Oct 23 2006 - 11:47:39 CDT)
k1tk4tnewhack.org
- opendocman <= 1.2p3 Bypass admin/user Login (Sun Oct 29 2006 - 22:55:27 CST)
- speedberg <= 1.2beta1 Remote File Inclusion (Sun Oct 22 2006 - 06:59:15 CDT)
- trawler <= 1.8.1 Remote File Inclusion (Sat Oct 21 2006 - 15:36:56 CDT)
- phpMyConferences <= 8.0.2 Remote File Inclusion (Fri Oct 13 2006 - 00:44:39 CDT)
- Open Conference Systems <= 1.1.3 Remote File Inclusion (Fri Oct 13 2006 - 01:19:57 CDT)
- ExtCalThai_Component <= 0.9.1 Remote File Inclusion (Thu Oct 12 2006 - 10:29:56 CDT)
- AlberT-EasySite <= 1.0.a5 Remote File Inclusion (Tue Oct 10 2006 - 17:29:28 CDT)
- Jinzora <= 2.1 Remote File Inclusion (Tue Oct 10 2006 - 17:11:00 CDT)
- blueshoes <= 4.6_public Remote File Inclusion (Tue Oct 10 2006 - 16:20:21 CDT)
- claroline <= 180rc1 Remote File Inclusion (Tue Oct 10 2006 - 15:45:14 CDT)
- tagit2b -- Remote File Inclusion (Tue Oct 10 2006 - 15:40:36 CDT)
- PHPLibrary <= 1.5.3 Remote File Inclusion (Tue Oct 10 2006 - 15:42:53 CDT)
KaBaRa.HaCk.eGyGmail.com
- osprey 1.0 (ListRecords.php) Remote File Include Vulnerability (Mon Oct 16 2006 - 15:05:05 CDT)
Kees Cook
- [USN-367-1] Pike vulnerability (Wed Oct 18 2006 - 18:13:17 CDT)
- [USN-366-1] binutils vulnerability (Wed Oct 18 2006 - 15:50:07 CDT)
- [USN-365-1] libksba vulnerability (Mon Oct 16 2006 - 18:53:17 CDT)
- [USN-364-1] Xsession vulnerability (Mon Oct 16 2006 - 14:18:37 CDT)
- [USN-363-1] libmusicbrainz vulnerability (Wed Oct 11 2006 - 11:40:02 CDT)
kevintux.appstate.edu
- Re: phpWebSite 0.10.2 Remote File Include Vulnerabilities (Tue Oct 10 2006 - 19:19:40 CDT)
L.M.H.
- Month of Kernel Bugs and fsfuzzer release (0.6) (Mon Oct 23 2006 - 19:46:32 CDT)
Larry Cashdollar
- IBM Informix Dynamic Server V10.0 File Clobbering during Install (Sun Oct 01 2006 - 18:07:35 CDT)
las_kidyahoo.com
- EasyBannerFree (functions.php) Remote File Include Exploit (Sun Oct 01 2006 - 17:04:05 CDT)
Le.CoPrAhotmail.com
- PHP Classifieds 7.1 - Remote File Include Vulnerability (Thu Oct 19 2006 - 20:11:47 CDT)
- PHP Top webs (config.php) Remote File Inclue Vulnerability (Thu Oct 12 2006 - 19:30:39 CDT)
- MNews <= 2.0 (noticias.php) Remote File Inclue Vulnerability (Thu Oct 12 2006 - 19:51:32 CDT)
- PHP Cards <= 1.3 Remote File Inclue Vulnerability (Thu Oct 12 2006 - 20:04:50 CDT)
- Morcego CMS <= 0.9.6 Remote File Inclue Vulnerability (Thu Oct 12 2006 - 14:53:45 CDT)
- RamaCMS (adodb.inc.php) Remote File Inclue Vulnerability (Thu Oct 12 2006 - 14:26:45 CDT)
LegendaryZion
- Cross Site Scripting (XSS) Vulnerability in Web Mail service by "Walla! Communications LTD" (Tue Oct 31 2006 - 10:38:22 CST)
- Directory listing on B-FOCuS Wireless 802.11b/g ADSL2+ Router by "ECI Telecom LTD" (Tue Oct 31 2006 - 10:27:21 CST)
- Cross Site Scripting (XSS) Vulnerability in iPlanet Messaging Server Messenger Express by "Sun" (Tue Oct 31 2006 - 10:33:30 CST)
Lillian Røstad
- Call for Papers - First International Workshop on Secure Software Engineering (SecSE 2007) (Wed Oct 18 2006 - 08:01:40 CDT)
LIUDIEYU dot COM
- IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 (Thu Oct 26 2006 - 12:42:46 CDT)
lovehagmail.com
- Thepeak File Upload v1.3 : Read file vulneability (Wed Oct 25 2006 - 20:23:19 CDT)
Lubomir Kundrak
- Re: Flaw in Firefox 2.0 RC2 (Thu Oct 19 2006 - 07:59:04 CDT)
Ludwig Nussel
- SUSE Security Announcement: php4,php5 (SUSE-SA:2006:059) (Mon Oct 09 2006 - 11:01:30 CDT)
Luís Miguel Silva
- TORQUE Spool Job Race condition (torque <= 2.0.0p8) (Wed Oct 18 2006 - 17:45:16 CDT)
- Security flaw in IBM Client Security Password Manager (Mon Oct 02 2006 - 19:56:23 CDT)
m4k3pldsecurity.securityfocus.com,
- vbulletin Exploit Tool Box (Sun Oct 15 2006 - 16:28:00 CDT)
mahmood ali
- Ban v0.1 (bannieres.php) File Include (Fri Oct 27 2006 - 12:36:47 CDT)
- phpLedAds 2.0(dir) File Include (Fri Oct 27 2006 - 13:10:40 CDT)
- PLS-Bannieres 1.21 (bannieres.php) File Include (Fri Oct 27 2006 - 12:24:32 CDT)
- PHP Poll Creator 1.04 (poll_vote.php)File Include (Fri Oct 20 2006 - 08:50:54 CDT)
- DigitalHive 2.0 RC2 (base_include.php)File Include (Wed Oct 18 2006 - 18:53:51 CDT)
- PhpBB<=2.0.10 (groupcp.php) Remote File Include Vulnerability (Wed Oct 18 2006 - 07:00:31 CDT)
- CS-Forum 0.82 (ajouter.php) Remote File Include Vulnerability (Wed Oct 18 2006 - 06:35:18 CDT)
- PHP Forge 3b2 (/inc/inc.php) Remote File Include Vulnerability (Sat Oct 14 2006 - 19:05:30 CDT)
- EXlor 1.0 (/fonctions/template.php) Remote File Include Vulnerability (Sat Oct 14 2006 - 10:45:45 CDT)
Mailinglists Address
- Re: adobe php sdk Remote File Include Vulnerabilities (Tue Oct 24 2006 - 16:38:20 CDT)
- Re: zero-day flaws in Firefox: about 30 unpatched Firefox flaws (Wed Oct 04 2006 - 13:37:18 CDT)
Marco Ivaldi
- Re: yet another OpenSSH timing leak? (Sat Oct 14 2006 - 13:10:23 CDT)
- Re: iDefense Security Advisory 10.11.06: Sun Microsystems Solaris NSPR Library Arbitrary File Creation Vulnerability (Fri Oct 13 2006 - 14:21:27 CDT)
- Re: yet another OpenSSH timing leak? (Tue Oct 10 2006 - 14:56:10 CDT)
- yet another OpenSSH timing leak? (Mon Oct 09 2006 - 05:33:05 CDT)
Mark A Basil
- Re: Flaw in Firefox 2.0 RC2 (Thu Oct 19 2006 - 12:05:48 CDT)
Martin Pitt
- [USN-368-1] Qt vulnerability (Mon Oct 23 2006 - 10:15:18 CDT)
- [USN-362-1] PHP vulnerabilities (Tue Oct 10 2006 - 14:09:27 CDT)
- [USN-360-1] awstats vulnerabilities (Tue Oct 10 2006 - 02:43:12 CDT)
- [USN-361-1] Mozilla vulnerabilities (Tue Oct 10 2006 - 09:15:50 CDT)
- [USN-359-1] Python vulnerability (Fri Oct 06 2006 - 09:53:38 CDT)
- [USN-357-1] Mono vulnerability (Wed Oct 04 2006 - 12:18:41 CDT)
- [USN-353-2] OpenSSL vulnerability (Wed Oct 04 2006 - 12:18:37 CDT)
- [USN-358-1] ffmpeg, xine-lib vulnerabilities (Wed Oct 04 2006 - 12:18:25 CDT)
- [USN-354-1] Firefox vulnerabilities (Mon Oct 02 2006 - 10:09:51 CDT)
- [USN-356-1] gdb vulnerability (Mon Oct 02 2006 - 08:40:55 CDT)
- [USN-355-1] openssh vulnerabilities (Mon Oct 02 2006 - 08:40:49 CDT)
Martin Schulze
- [SECURITY] [DSA 1192-1] New Mozilla packages fix several vulnerabilities (Fri Oct 06 2006 - 07:11:15 CDT)
- [SECURITY] [DSA 1191-1] New Mozilla Thunderbird packages fix several vulnerabilities (Thu Oct 05 2006 - 05:14:30 CDT)
- [SECURITY] [DSA 1188-1] New mailman packages fix several problems (Wed Oct 04 2006 - 02:23:33 CDT)
Matousec - Transparent security Research
- ISS BlackICE PC Protection Filelock protection bypass Vulnerability (Sun Oct 15 2006 - 11:41:35 CDT)
Matt Richard
- Re: [Full-disclosure] ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability (Fri Oct 27 2006 - 22:35:35 CDT)
Matteo Beccati
- [PHPADSNEW-SA-2006-002] phpAdsNew and phpPgAds 2.0.8-pr1 fix XSS vulnerability (Mon Oct 23 2006 - 02:27:16 CDT)
matteophpadsnew.com
- Re: phpAdsNew include bug! (Wed Oct 18 2006 - 18:28:09 CDT)
Matthias Geerdsen
- [ GLSA 200610-09 ] libmusicbrainz: Multiple buffer overflows (Sun Oct 22 2006 - 13:07:01 CDT)
- [ GLSA 200610-02 ] Adobe Flash Player: Arbitrary code execution (Wed Oct 04 2006 - 15:22:55 CDT)
- [ GLSA 200610-01 ] Mozilla Thunderbird: Multiple vulnerabilities (Wed Oct 04 2006 - 14:14:34 CDT)
Max Moser
- New tool release today - "wyd" - password profiling (Tue Oct 10 2006 - 17:35:02 CDT)
maxgipehyahoo.com
- ActiveX security leaks in the TV owned web game platform (Mon Oct 30 2006 - 18:28:15 CST)
Mayhemic Labs Security
- MHL-2006-003 Public Advisory: "ezOnlineGallery" Multiple Security Issues (Fri Oct 27 2006 - 08:03:11 CDT)
- MHL-2006-002 Public Advisory: "Call-Center-Software" Multiple Security Issues (Wed Oct 11 2006 - 21:48:06 CDT)
- MHL-2006-001 Public Advisory: "Eazy Cart" Multiple Security Issues (Mon Oct 09 2006 - 20:22:41 CDT)
MC Iglo
- XSS in Zwahlen Online Shop (Sun Oct 22 2006 - 05:59:01 CDT)
meto5757hotmail.com
- digishop v 4.0.0 Xss Vuln. (Sun Oct 01 2006 - 09:48:57 CDT)
mfp.chotmail.com
- phpMyConferences <= 8.0.2 Remote File Inclusion (Tue Oct 31 2006 - 09:56:01 CST)
Mike Klingler
- Advisory for Oneorzero helpdesk (Fri Oct 20 2006 - 09:23:28 CDT)
mikegmail.com
- Flaw in Firefox 2.0 Final (Mon Oct 23 2006 - 08:48:33 CDT)
- Flaw in Firefox 2.0 RC2 (Tue Oct 17 2006 - 04:09:56 CDT)
- Re: Concurrency-related vulnerabilities in browsers - expect problems (Thu Oct 05 2006 - 00:45:23 CDT)
mjaumjau-mjau.com
- Re: imageVue16.1 upload vulnerability (Sun Oct 29 2006 - 10:14:01 CST)
mkanatbugzilla.org
- Security Advisory for Bugzilla 2.18.5, 2.20.2, 2.22, and 2.23.2 (Sun Oct 15 2006 - 05:02:20 CDT)
MoHaNdKo
- freenews---> fileinclude (Sat Oct 28 2006 - 18:25:38 CDT)
- zorum_3_5 <=(dbproperty.php) Remote File Inclusion Exploit (Tue Oct 17 2006 - 23:21:57 CDT)
Moritz Muehlenhoff
- [SECURITY] [DSA 1202-1] New screen packages fix arbitrary code execution (Tue Oct 31 2006 - 14:35:33 CST)
- [SECURITY] [DSA 1201-1] New ethereal packages fix denial of service (Tue Oct 31 2006 - 14:16:13 CST)
- [SECURITY] [DSA 1198-1] New python2.3 packages fix arbitrary code execution (Mon Oct 23 2006 - 14:39:02 CDT)
- [SECURITY] [DSA 1197-1] New python2.4 packages fix arbitrary code execution (Sun Oct 22 2006 - 15:19:11 CDT)
- [SECURITY] [DSA 1196-1] New clamav packages fix arbitrary code execution (Thu Oct 19 2006 - 00:25:47 CDT)
- [SECURITY] [DSA 1194-1] New libwmf packages fix arbitrary code execution (Mon Oct 09 2006 - 14:43:45 CDT)
- [SECURITY] [DSA 1190-1] New maxdb-7.5.00 packages fix execution of arbitrary code (Wed Oct 04 2006 - 14:41:32 CDT)
- [SECURITY] [DSA 1189-1] New openssh-krb5 packages fix denial of service and potential execution of arbitrary code (Wed Oct 04 2006 - 14:32:23 CDT)
Moritz Naumann
- IE7 status: 8 days after release, 3 unfixed issues (Wed Oct 25 2006 - 18:17:07 CDT)
mozi2weedyahoo.com
- phpMyProfiler remote file include (Tue Oct 03 2006 - 12:20:29 CDT)
mrapplesgmail.com
- Re: Simple Machines Forum (SMF) XSS issue (Sat Oct 21 2006 - 02:00:00 CDT)
navairumgmail.com
- IPEER Remote file inclusion (Sat Oct 21 2006 - 15:53:23 CDT)
- SQL Injection simplog (Thu Oct 19 2006 - 14:27:41 CDT)
neothermicphpbb.com
- Re: PhpBB<=2.0.10 (groupcp.php) Remote File Include Vulnerability (Wed Oct 18 2006 - 16:48:43 CDT)
Nick Boyce
- Re: Concurrency-related vulnerabilities in browsers - expect problems (Fri Oct 06 2006 - 08:56:47 CDT)
nicolascaminogmail.com
- Re: Application orders Linux in WebAPP v0.9.9.2.1 (Tue Oct 24 2006 - 06:30:55 CDT)
Nikolai Grigoriev
- Hawking Technology wireless router WR254-CA DNS issue (Mon Oct 30 2006 - 19:00:21 CST)
nima.salehiyahoo.com
- Buzlas <= v2006-1 Full Remote File Include Vulnerability (Thu Oct 12 2006 - 18:21:51 CDT)
- PhpBB Prillian French Remote File Include Vulnerability (Thu Oct 12 2006 - 18:29:30 CDT)
- RPG Events 1.0.0 Remote File Include Vulnerability (Thu Oct 12 2006 - 18:27:48 CDT)
- phpBB lat2cyr <= 1.0.1 Remote File Include Vulnerability (Thu Oct 12 2006 - 18:24:17 CDT)
- news defilante horizontale <= 4.1.1 Remote File Include Vulnerability (Thu Oct 12 2006 - 18:22:29 CDT)
- AMAZONIA MOD Remote File Include Vulnerability (Thu Oct 12 2006 - 18:20:36 CDT)
- maluinfo version 206.2.38l Remote File Include Vulnerability (Thu Oct 12 2006 - 18:20:10 CDT)
- SpamOborona PHPBB Plugin Remote File Include Vulnerability (Thu Oct 12 2006 - 18:26:01 CDT)
- phpBB Add Name Remote File Include Vulnerability (Thu Oct 12 2006 - 18:24:57 CDT)
- pbpbb archive for search engines Remote File Include Vulnerability (Thu Oct 12 2006 - 18:28:08 CDT)
- phpBB Security <= 1.0.1 Remote File Include Vulnerability (Thu Oct 12 2006 - 18:34:34 CDT)
- phpBB PlusXL 2.x <= biuld 272 Remote File Include Vulnerability (Thu Oct 12 2006 - 18:23:40 CDT)
- SpamBlockerMODv <= 1.0.2 Remote File Include Vulnerability (Thu Oct 12 2006 - 18:16:33 CDT)
- Admin User Viewed Posts Tracker Remote File Include Vulnerability (Thu Oct 12 2006 - 06:48:27 CDT)
- Journals System <= 1.0.2 [RC2] Remote File Include Vulnerability (Thu Oct 12 2006 - 06:53:29 CDT)
- CommunityPortals <= 1.0 Remote File Include Vulnerability (Wed Oct 11 2006 - 12:49:07 CDT)
Nms
- Punbb <= 1.2.13 Multiple Vulnerabilities (Sun Oct 29 2006 - 19:59:32 CST)
nnp
- Kmail <= 1.9.1 (table/frameset) DOS (Sat Oct 14 2006 - 15:38:26 CDT)
nnposterdisclosed.not
- Insecure storage of passwords in Axalto Protiva (Thu Oct 26 2006 - 09:14:52 CDT)
Noah Meyerhans
- [SECURITY] [DSA 1200-1] New Qt packages fix integer overflow (Mon Oct 30 2006 - 07:00:00 CST)
- [SECURITY] [DSA 1199-1] New webmin packages fix input validation problems (Mon Oct 23 2006 - 20:10:44 CDT)
- [SECURITY] [DSA 1195-1] new openssl096 packages fix denial of service (Tue Oct 10 2006 - 15:35:20 CDT)
- [SECURITY] [DSA 1185-2] New openssl packages fix arbitrary code execution (Mon Oct 02 2006 - 14:33:19 CDT)
noislet.nospamgmail.com
- AROUNDMe 0.6.9 remonte file inclusion (Sun Oct 22 2006 - 12:35:56 CDT)
noreplyptsecurity.ru
- Web-style Wireless IDS attacks (Wed Oct 25 2006 - 08:12:02 CDT)
- Airmagnet management interfaces multiple vulnerabilities (Wed Oct 18 2006 - 09:04:22 CDT)
- Multiple vulnerabilities in Highwall Enterprise and Highwall Endpoint management interface (Wed Oct 18 2006 - 08:47:45 CDT)
Ofer Shezaf
- ModSecurity 2.0, A Core Rule Set and Console now available (Sun Oct 29 2006 - 12:03:33 CST)
OpenPKG
- [OpenPKG-SA-2006.027] OpenPKG Security Advisory (wordpress) (Mon Oct 30 2006 - 08:20:41 CST)
- [OpenPKG-SA-2006.026] OpenPKG Security Advisory (screen) (Thu Oct 26 2006 - 01:19:36 CDT)
- [OpenPKG-SA-2006.025] OpenPKG Security Advisory (drupal) (Fri Oct 20 2006 - 01:33:40 CDT)
- [OpenPKG-SA-2006.024] OpenPKG Security Advisory (asterisk) (Thu Oct 19 2006 - 00:55:37 CDT)
- [OpenPKG-SA-2006.023] OpenPKG Security Advisory (php) (Tue Oct 17 2006 - 02:09:57 CDT)
- [OpenPKG-SA-2006.022] OpenPKG Security Advisory (openssh) (Sun Oct 01 2006 - 03:27:15 CDT)
Outlawaria-security.net
- phpMyConferences_8.0.2 Remote File Inclusion (Tue Oct 24 2006 - 22:36:37 CDT)
paisterist.nstgmail.com
- PHP-Nuke <= 7.9 Journal module (search.php) "forwhat" SQL Injection vulnerability (Tue Oct 31 2006 - 10:42:24 CST)
- PHP-Nuke <= 7.9 Search module "author" SQL Injection vulnerability (Wed Oct 25 2006 - 10:05:58 CDT)
- -==PHP Nuke <= 7.9 SQL Injection and Bypass SQL Injection Protection vulnerabilities==- (Sun Oct 22 2006 - 19:17:50 CDT)
- PHP open_basedir with symlink() function Race Condition PoC exploit (Mon Oct 09 2006 - 03:12:29 CDT)
- PHP Live! <= 3.1 help.php Remote File Inclusion vulnerability (Sat Oct 07 2006 - 13:47:02 CDT)
Paolo Perego
- Pebble 2.0.0 RC[1,2] XSS vulnerability (Mon Oct 02 2006 - 03:09:06 CDT)
Paul Schmehl
- Re: Flaw in Firefox 2.0 RC2 (Wed Oct 18 2006 - 11:19:16 CDT)
Paul Szabo
- Re: [Full-disclosure] IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]) (Mon Oct 02 2006 - 22:15:13 CDT)
- Re: [Full-disclosure] IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]) (Mon Oct 02 2006 - 16:55:39 CDT)
- IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]) (Mon Oct 02 2006 - 07:36:20 CDT)
pdp (architect)
- JavaScript Spider (code that can traverse the web) (Fri Oct 06 2006 - 04:43:23 CDT)
playpacific.emulacaidgmail.com
- Hosting Controller 6.1 Hotfix <= 3.2 Vulnerability (Wed Oct 25 2006 - 15:48:21 CDT)
pokley
- Re: freenews---> fileinclude (Tue Oct 31 2006 - 04:27:58 CST)
- Re: freenews---> fileinclude (Tue Oct 31 2006 - 04:22:25 CST)
poplixpapuasia.org
- easy notes manager sql injection and authentication bypass (Sat Oct 28 2006 - 23:17:11 CDT)
Praburaajan
- HITBSecConf2006 CTF Source code and daemons (Sun Oct 08 2006 - 18:59:27 CDT)
ptitgalhotmail.com
- Re: <img src="/imgs/at.gif" border=0 align=middle>lex Guestbook <=(ModeliXe.php) Remote File Inclusion Exploit (Sun Oct 15 2006 - 11:38:23 CDT)
ragangmail.com
- zero-day flaws in Firefox: about 30 unpatched Firefox flaws (Sun Oct 01 2006 - 04:55:10 CDT)
Raphael Marichez
- [ GLSA 200610-15 ] Asterisk: Multiple vulnerabilities (Mon Oct 30 2006 - 12:02:46 CST)
- [ GLSA 200610-14 ] PHP: Integer overflow (Mon Oct 30 2006 - 03:00:53 CST)
- [ GLSA 200610-13 ] Cheese Tracker: Buffer Overflow (Thu Oct 26 2006 - 17:12:04 CDT)
- [ GLSA 200610-12 ] Apache mod_tcl: Format string vulnerability (Tue Oct 24 2006 - 11:37:41 CDT)
- [ GLSA 200610-11 ] OpenSSL: Multiple vulnerabilities (Tue Oct 24 2006 - 11:31:22 CDT)
- [ GLSA 200610-10 ] ClamAV: Multiple Vulnerabilities (Tue Oct 24 2006 - 11:13:48 CDT)
- [ GLSA 200610-08 ] Cscope: Multiple buffer overflows (Fri Oct 20 2006 - 03:10:34 CDT)
- ERRATA: [ GLSA 200610-07 ] Python: Buffer Overflow (Wed Oct 18 2006 - 14:18:28 CDT)
- [ GLSA 200610-07 ] Python: Buffer Overflow (Tue Oct 17 2006 - 15:30:42 CDT)
- [ GLSA 200610-06 ] Mozilla Network Security Service (NSS): RSA signature forgery (Tue Oct 17 2006 - 13:29:06 CDT)
- [ GLSA 200610-05 ] CAPI4Hylafax fax receiver: Execution of arbitrary code (Tue Oct 17 2006 - 13:27:33 CDT)
- [ GLSA 200610-04 ] Seamonkey: Multiple vulnerabilities (Mon Oct 16 2006 - 04:26:00 CDT)
- [ GLSA 200610-03 ] ncompress: Buffer Underflow (Fri Oct 06 2006 - 13:01:00 CDT)
raphael.huckfree.fr
- WikiNi Multiple Cross Site Scripting Vulnerabilities (Mon Oct 23 2006 - 14:26:54 CDT)
- zenphoto Multiple Path Disclosure and Cross Site Scripting Vulnerabilities (Wed Oct 11 2006 - 17:32:42 CDT)
- Noah's Classifieds Cross Site Scripting Vulnerability (Tue Oct 10 2006 - 17:47:17 CDT)
Rapigator
- Re: Invision Power Board Multiple Vulnerabilities (Sat Oct 07 2006 - 14:18:34 CDT)
- Invision Power Board Multiple Vulnerabilities (Wed Oct 04 2006 - 13:58:38 CDT)
RedTeam Pentesting
- Authentication bypass in BytesFall Explorer (Tue Oct 31 2006 - 08:06:47 CST)
ReeM_HaCkHoTmAiL.cOm
- Security Suite IP Logger Remote File Inclusion (Wed Oct 11 2006 - 23:30:21 CDT)
Research
- SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability (Wed Oct 11 2006 - 20:29:36 CDT)
researchprocheckup.com
- Microsoft .NET request filtering bypass vulnerability (Wed Oct 25 2006 - 17:11:08 CDT)
- PR06-03b: F5 Firepass 1000 SSL VPN version 5.5 vulnerable to Cross-Site Scripting (Tue Oct 17 2006 - 10:34:53 CDT)
researchsymantec.com
- SYMSA-2006-010: Directory Traversal in IronWebMail (Fri Oct 13 2006 - 16:02:39 CDT)
Reversemode
- Re: IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 (Fri Oct 27 2006 - 12:14:36 CDT)
- [Reversemode Advisory] Kaspersky Anti-Virus Privilege Escalation (Thu Oct 19 2006 - 19:25:10 CDT)
- [Reversemode Advisory] Symantec Antivirus Engine Privilege Escalation (Thu Oct 05 2006 - 17:05:50 CDT)
Roman Medina-Heigl Hernandez
- Portable shell-exploit for buffer-overflow bugs (Fri Sep 29 2006 - 07:50:08 CDT)
root
- Static fmat exploits with random va (Wed Oct 18 2006 - 10:59:43 CDT)
rPath Update Announcements
- rPSA-2006-0198-1 screen (Thu Oct 26 2006 - 02:28:11 CDT)
- rPSA-2006-0195-2 kdelibs qt-x11-free (Thu Oct 26 2006 - 02:35:42 CDT)
- rPSA-2006-0195-1 kdelibs (Wed Oct 18 2006 - 17:17:19 CDT)
- rPSA-2006-0194-1 kernel (Tue Oct 17 2006 - 16:19:57 CDT)
- rPSA-2006-0187-1 idle python (Tue Oct 10 2006 - 19:54:22 CDT)
- rPSA-2006-0182-1 php php-mysql php-pgsql (Thu Oct 05 2006 - 16:45:48 CDT)
- rPSA-2006-0185-1 gnome-ssh-askpass openssh openssh-client openssh-server (Thu Oct 05 2006 - 16:47:47 CDT)
- rPSA-2006-0183-1 nss_ldap (Thu Oct 05 2006 - 16:46:26 CDT)
RSnake
- Re: Simple Machines Forum (SMF) XSS issue (Sun Oct 22 2006 - 13:06:21 CDT)
Ryan Smith
- Hustle Labs & MNIN eDirectory Vulnerability (Fri Oct 20 2006 - 19:23:44 CDT)
samilinuxmail.org
- Cahier de textes 2.0 Remote SQL injection Exploit (Sat Oct 07 2006 - 09:52:31 CDT)
scottREMOVEvbulletin.com
- Re: vbulletin Exploit Tool Box (Tue Oct 17 2006 - 10:59:01 CDT)
scsantosunigranrio com br
- Re: [Full-disclosure] SQL injection - moodle (Mon Oct 09 2006 - 05:47:18 CDT)
Sean Warnock
- RE: Flaw in Firefox 2.0 RC2 (Thu Oct 19 2006 - 09:38:27 CDT)
secsrasg.stevenroddis.com.au
- TorrentFlux User-Agent XSS Vulnerability (Thu Oct 05 2006 - 20:30:33 CDT)
Secunia Research
- Secunia Research: IBM Lotus Notes Insecure Default Folder Permissions (Wed Oct 18 2006 - 10:39:12 CDT)
- Secunia Research: Joomla BSQ Sitestats Script Insertion and SQL Injection (Wed Oct 18 2006 - 10:35:02 CDT)
- Secunia Research: Microsoft Windows Object Packager Dialog Spoofing (Wed Oct 11 2006 - 10:30:04 CDT)
securesymantec.com
- Symantec Product Security: Symantec Device Driver Elevation of Privileg (Mon Oct 23 2006 - 16:23:32 CDT)
securfroggmail.com
- Re: net2ftp: a web based FTP client :) <= Remote File Inclusion (Mon Oct 02 2006 - 11:13:28 CDT)
security-alerthp.com
- [security bulletin] HPSBTU02168 SSRT061237 rev.1 - HP Tru64 UNIX Running gzip, gunzip, and gzcat, Remote Unauthorized Arbitrary Code Execution or Denial of Service (DoS) (Mon Oct 30 2006 - 14:34:37 CST)
- [security bulletin] HPSBMA02121 SSRT061157 rev.3 - HP OpenView Storage Data Protector Remote Unauthorized Arbitrary Command Execution (Mon Oct 30 2006 - 14:33:47 CST)
- [security bulletin] HPSBMA02138 SSRT061184 rev.2 - HP OpenView Storage Data Protector, Remote Unauthorized Arbitrary Command Execution (Mon Oct 30 2006 - 14:33:03 CST)
- [security bulletin] HPSBMA02133 SSRT061201 rev.2 - HP Oracle for OpenView (OfO) Critical Patch Update (Wed Oct 25 2006 - 14:53:27 CDT)
- [security bulletin] HPSBTU02163 SSRT061223 rev.1 - HP Tru64 UNIX Running dtmail, Local Execution of Arbitrary Code (Fri Oct 20 2006 - 06:22:41 CDT)
- HPSBUX02162 SSRT061223 rev.1 - HP-UX Running dtmail, Local Execution of Arbitrary Code (Fri Oct 20 2006 - 06:23:28 CDT)
- [security bulletin] HPSBST02161 SSRT061264 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS06-056 Through MS06-065 (Thu Oct 19 2006 - 06:48:36 CDT)
- [security bulletin] HPSBUX02155 SSRT061235 rev.2 HP-UX CIFS Server (Samba) Local Unauthorized Access, Elevated Privileges (Tue Oct 17 2006 - 06:14:22 CDT)
- [security bulletin] HPSBST02134 SSRT061187 rev.2 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS06-052, MS06-053 and MS06-054 (Thu Oct 12 2006 - 14:28:07 CDT)
- [security bulletin] HPSBST02160 SSRT061254 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS06-055 (Thu Oct 12 2006 - 14:27:06 CDT)
- [security bulletin] HPSBMA02158 SSRT061251 rev.1 - HP Version Control Agent, Remote Unauthorized Access and Possible Elevation of Privilege (Thu Oct 12 2006 - 06:35:52 CDT)
- [security bulletin] HPSBUX02087 SSRT4728 rev.4 - HP-UX running TCP/IP Remote Denial of Service (DoS) (Tue Oct 10 2006 - 12:41:29 CDT)
- [security bulletin] HPSBUX02129 SSRT061149 rev.1 - HP-UX running SLP, Remote Unauthorized Access (Mon Oct 02 2006 - 13:37:12 CDT)
- [security bulletin] HPSBUX02157 SSRT061220 rev.1 HP-UX Running Ignite-UX Server, Remote Unauthorized Access and Privilege Elevation (Mon Oct 02 2006 - 06:14:15 CDT)
securityarmorize.com
- SQL Injection Vulnerability in bfExplorer 0.0.6 (Mon Oct 30 2006 - 20:41:07 CST)
- Multiple XSS Vulnerabilities in KnowledgeBank 1.01 (Wed Oct 18 2006 - 22:21:23 CDT)
- Re: Multiple XSS Vulnerabilities in Zen Cart 1.3.5 (Sat Oct 14 2006 - 00:59:36 CDT)
- Multiple XSS Vulnerability in Gcontact (Sat Oct 14 2006 - 01:15:34 CDT)
- Directory Traversal Vulnerability in Goop Gallery 2.0.2 (Tue Oct 10 2006 - 20:02:40 CDT)
- Directory Traversal Vulnerability in Goop Gallery 2.0.2 (Wed Oct 04 2006 - 04:24:46 CDT)
securitydimichsoft.com
- vulnerability in Symantec products (Thu Oct 26 2006 - 17:30:11 CDT)
securitymandriva.com
- [ MDKSA-2006:194 ] - Updated PostgreSQL packages fix vulnerabilities (Mon Oct 30 2006 - 19:53:00 CST)
- [ MDKSA-2006:193 ] - Updated ImageMagick packages fix vulnerabilities (Mon Oct 30 2006 - 19:38:00 CST)
- [ MDKSA-2006:191 ] - Updated screen packages fix vulnerability (Fri Oct 27 2006 - 16:04:00 CDT)
- [ MDKSA-2006:192 ] - Updated ruby packages fix DoS vulnerability (Fri Oct 27 2006 - 17:17:21 CDT)
- [ MDKSA-2006:190 ] - Updated mutt packages fix multiple vulnerabilities (Fri Oct 27 2006 - 15:49:00 CDT)
- [ MDKSA-2006:188 ] - Updated mono packages fix vulnerability (Fri Oct 27 2006 - 15:46:00 CDT)
- [ MDKSA-2006:189 ] - Updated xsupplicant fixes possible remote root stack smash vulnerability (Fri Oct 27 2006 - 15:48:00 CDT)
- [ MDKSA-2006:187 ] - Updated Qt packages fix vulnerability (Tue Oct 24 2006 - 20:55:00 CDT)
- [ MDKSA-2006:186 ] - Updated kdelibs packages fix KHTML vulnerability (Thu Oct 19 2006 - 14:10:00 CDT)
- [ MDKSA-2006:185 ] - Updated php packages to address multiple vulnerabilities (Tue Oct 17 2006 - 19:32:00 CDT)
- [ MDKSA-2006:184 ] - Updated clamav packages fix vulnerabilities (Tue Oct 17 2006 - 17:27:00 CDT)
- [ MDKSA-2006:183 ] - Updated libksba packages correct DoS vulnerability (Tue Oct 17 2006 - 16:43:00 CDT)
- [ MDKSA-2006:182 ] - Updated kernel packages fix multiple vulnerabilities and bugs (Wed Oct 11 2006 - 14:31:01 CDT)
- [ MDKSA-2006:181 ] - Updated python packages fix vulnerability (Tue Oct 10 2006 - 17:12:00 CDT)
- [ MDKSA-2006:180 ] - Updated php packages fix integer overflow vulnerability (Thu Oct 05 2006 - 17:24:00 CDT)
- [ MDKSA-2006:179 ] - Updated openssh packages fix DoS vulnerabilities (Tue Oct 03 2006 - 17:12:00 CDT)
- [ MDKSA-2006:178 ] - Updated ntp packages rebuilt against updated openssl. (Mon Oct 02 2006 - 16:59:00 CDT)
- [ MDKSA-2006:177 ] - Updated MySQL packages rebuilt against updated openssl. (Mon Oct 02 2006 - 16:23:00 CDT)
- [ MDKSA-2006:172-1 ] - Updated openssl packages fix vulnerabilities (Mon Oct 02 2006 - 15:52:00 CDT)
securitysoqor.net
- FreeWPS File Upload Command Execution (Thu Oct 05 2006 - 17:13:43 CDT)
securityvigilon.com
- phpFaber CMS Cross Site Scripting (Thu Oct 26 2006 - 12:31:44 CDT)
- ProgSys verion 0.151 XSS vulnerability (Mon Oct 23 2006 - 20:20:20 CDT)
securityproof
- "POC 2006" by Korean hackers (Sun Oct 01 2006 - 11:20:30 CDT)
seejay.11gmail.com
- Spoofing security dialog in object packager - 2 (Sat Oct 14 2006 - 14:34:59 CDT)
Shane Lahey
- Re: Flaw in Firefox 2.0 RC2 (Tue Oct 17 2006 - 22:16:52 CDT)
simomorx.org
- Re: phpAdsNew-2.0.8 <= (adlayer.php) Remote File Include (Sat Oct 28 2006 - 11:59:17 CDT)
Sowhat
- Microsoft Office Malformed Record Memory Corruption Vulnerability (Tue Oct 10 2006 - 23:02:09 CDT)
Stefan Esser
- Advisory 11/2006: Serendipity Weblog XSS Vulnerabilities (Thu Oct 19 2006 - 10:55:28 CDT)
- Advisory 10/2006: ViewVC Undefined Charset UTF-7 XSS Vulnerability (Sun Oct 15 2006 - 09:21:57 CDT)
- Advisory 09/2006: PHP unserialize() Array Creation Integer Overflow (Mon Oct 09 2006 - 01:51:07 CDT)
- Advisory 08/2006: PHP open_basedir Race Condition Vulnerability (Tue Oct 03 2006 - 15:38:30 CDT)
- Advisory 07/2006: phpMyAdmin Multiple CSRF Vulnerabilities (Sun Oct 01 2006 - 12:59:18 CDT)
Steve Kemp
- [SECURITY] [DSA 1166-2] New cheesetraceker packages fix buffer overflow (Fri Oct 13 2006 - 08:44:46 CDT)
Steven M. Christey
- Re: iDefense Security Advisory 10.19.06: Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability (Fri Oct 20 2006 - 16:53:48 CDT)
- Re: The latest version of iSearch is V2.16 <= (index.php) Remote File Inclusion Exploit (Tue Oct 10 2006 - 18:30:15 CDT)
- Re: net2ftp: a web based FTP client :) <= Remote File Inclusion (Mon Oct 09 2006 - 14:26:20 CDT)
- Re: WikyBlog <= v1.4 (WN_BASEDIR) Remote File Inclusion Exploit (Fri Oct 06 2006 - 13:05:11 CDT)
- Vulnerability Type Distributions in CVE (Wed Oct 04 2006 - 18:19:01 CDT)
- Re: WebspotBlogging => 3.0 Remote File Include Vulnerabilities (Mon Oct 02 2006 - 17:42:28 CDT)
stormhackerhotmail.com
- WDT:- osTicket File Include all V (Fri Oct 13 2006 - 19:26:04 CDT)
str0ke
- Re: PHPRecipeBook <= 2.35 ((g_rb_basedir)) Remote File Include Exploit (Wed Oct 18 2006 - 16:23:32 CDT)
- Re: gcards (languagefile) <= Remote File Include (Wed Oct 11 2006 - 14:55:58 CDT)
- Re: The latest version of iSearch is V2.16 <= (index.php) Remote File Inclusion Exploit (Mon Oct 09 2006 - 14:32:50 CDT)
subzero.0000hotmail.com
- ATutor 1.5.3.2=> Remote File Include Vulnerability (Thu Oct 19 2006 - 13:53:21 CDT)
Tamriel
- Re: freenews---> fileinclude (Mon Oct 30 2006 - 15:18:58 CST)
- Re: CentiPaid <= 1.4.2 [$class_pwd] Remote File Include (Mon Oct 30 2006 - 15:14:39 CST)
- Re: phpMyConferences_8.0.2 Remote File Inclusion (Wed Oct 25 2006 - 15:01:50 CDT)
- Xeobook <= 0.93 Multiple SQL Injection Vulnerabilities (Wed Oct 11 2006 - 22:21:09 CDT)
- XeoPort <= 0.81 SQL Injection Vulnerability (Wed Oct 11 2006 - 22:19:57 CDT)
- eXpBlog <= 0.3.5 Cross Site Scripting Vulnerabilities (Mon Oct 09 2006 - 16:19:20 CDT)
the-free_kernelb0rizq.net
- [Xss] IN phplist v 2.10.2, (Mon Oct 16 2006 - 18:46:18 CDT)
the_free_kernelb0rizq.net
- Application orders Linux in WebAPP v0.9.9.2.1 (Mon Oct 23 2006 - 13:48:43 CDT)
- [Xss] IN SMF 1.1 RC2 (Thu Oct 19 2006 - 11:55:30 CDT)
theifgmail.com
- Re: PHPRecipeBook <= 2.35 ((g_rb_basedir)) Remote File Include Exploit (Thu Oct 19 2006 - 06:55:24 CDT)
Thierry Zoller
- Re: [Full-disclosure] hack.lu Bluetooth demo (Mon Oct 23 2006 - 12:18:23 CDT)
Thomas Biege
- SUSE Security Summary Report SUSE-SR:2006:024 (Fri Oct 06 2006 - 08:25:37 CDT)
Thor Larholm
- 0day in Firefox from ToorCon '06 (Sun Oct 01 2006 - 14:20:20 CDT)
Trustix Security Advisor
- TSLSA-2006-0059 - postgresql (Fri Oct 27 2006 - 08:45:18 CDT)
- TSLSA-2006-0057 - multi (Wed Oct 18 2006 - 07:28:37 CDT)
- TSLSA-2006-0055 - multi (Fri Oct 06 2006 - 08:51:53 CDT)
TSRT3com.com
- TSRT-06-11: CA Multiple Product DBASVR RPC Server Multiple Buffer Overflow Vulnerabilities (Thu Oct 05 2006 - 17:18:46 CDT)
- TSRT-06-12: CA BrightStor Discovery Service Mailslot Buffer Overflow Vulnerability (Thu Oct 05 2006 - 17:19:47 CDT)
Uwe Hermann
- [DRUPAL-SA-2006-026] Drupal 4.6.10 / 4.7.4 fixes HTML attribute injection issue (Thu Oct 19 2006 - 12:08:06 CDT)
- [DRUPAL-SA-2006-025] Drupal 4.6.10 / 4.7.4 fixes CRF issue (Thu Oct 19 2006 - 12:08:04 CDT)
- [DRUPAL-SA-2006-024] Drupal 4.6.10 / 4.7.4 fixes multiple XSS issues (Thu Oct 19 2006 - 12:08:01 CDT)
v1per-hackerhotmail.com
- Download-Engine Remote File Include (Thu Oct 12 2006 - 04:09:53 CDT)
Vidar Løkken
- Re: [Full-disclosure] Kmail <= 1.9.1 (table/frameset) DOS (Sat Oct 14 2006 - 20:43:08 CDT)
vulnpost-removevuln.sg
- [vuln.sg] CruiseWorks Directory Traversal and Buffer Overflow Vulnerabilities (Tue Oct 24 2006 - 04:16:33 CDT)
wackyihack.pl
- phpAdsNew include bug! (Tue Oct 17 2006 - 13:02:00 CDT)
webcalendarbouwmansgoed.nl
- Re: WebCalendar-1.0.3 reading of any files (Fri Sep 29 2006 - 17:21:49 CDT)
Williams, James K
- [CAID 34693, 34694]: CA BrightStor ARCserve Backup Multiple Buffer Overflow Vulnerabilities (UPDATED) (Thu Oct 19 2006 - 21:43:03 CDT)
- [CAID 34693, 34694]: CA BrightStor ARCserve Backup Multiple Buffer Overflow Vulnerabilities (Fri Oct 06 2006 - 05:28:30 CDT)
- [CAID 34661]: CA Unicenter WSDM File System Read Access Vulnerability (Tue Oct 03 2006 - 13:57:30 CDT)
Wim Godden
- Re: phpAdsNew include bug! (Tue Oct 17 2006 - 20:49:35 CDT)
Wolf Halton
- RE: Informing Companies about security vulnerabilities... (Wed Oct 04 2006 - 19:34:22 CDT)
x0r0nhotmail.com
- phpBB User Viewed Posts Tracker Version <= 1.0 [phpbb_root_path] File Include Vulnerability (Fri Oct 06 2006 - 16:31:56 CDT)
- FreeForum 0.9.7 (fpath) Remote File Include Vulnerability (Sat Oct 07 2006 - 10:20:48 CDT)
- phpMyTeam v2.0 <= (smileys_dir) Remote File Include Vulnerability (Thu Oct 05 2006 - 08:50:44 CDT)
- phpMyWebmin 1.0 <= (target) Remote File Include Vulnerability (Sat Sep 30 2006 - 11:41:47 CDT)
xorontrgmail.com
- MiniBILL v2006-10-10 (config[page_dir] Remote File Include Vulnerability (Fri Oct 27 2006 - 08:25:02 CDT)
- InteliEditor (sys_path) Remote File Include Vulnerability (Tue Oct 24 2006 - 11:00:59 CDT)
- PHP Generator of Object SQL Database (path) Remote File Include Vulnerability (Sun Oct 22 2006 - 12:22:56 CDT)
- Virtual Law Office (phpc_root_path) Remote File Include Vulnerability (Sat Oct 21 2006 - 08:31:38 CDT)
- Open Meetings Filing Application (PROJECT_ROOT) Remote File Include Vulnerability (Sat Oct 21 2006 - 08:59:40 CDT)
- Re: Jax LinkLists Remote File include (Sat Oct 14 2006 - 04:41:06 CDT)
- Freenews v1.1 <= (chemin) Remote File Include Vulnerability (Sun Oct 08 2006 - 13:08:58 CDT)
- PHPMyNews 1.4 <= (cfg_include_dir) Remote File Include Vulnerability (Sun Oct 08 2006 - 10:51:51 CDT)
xp1omsn.com
- <img src="/imgs/at.gif" border=0 align=middle>lex Guestbook <=(ModeliXe.php) Remote File Inclusion Exploit (Fri Oct 13 2006 - 20:24:10 CDT)
- news7 <= (news.php) Remote File Inclusion Exploit (Thu Oct 12 2006 - 19:27:43 CDT)
- The latest version of iSearch is V2.16 <= (index.php) Remote File Inclusion Exploit (Sat Oct 07 2006 - 17:14:00 CDT)
- phponline <= (LangFile) Remote File Inclusion Exploit (Thu Oct 05 2006 - 13:46:12 CDT)
- WikyBlog <= v1.4 (WN_BASEDIR) Remote File Inclusion Exploit (Wed Oct 04 2006 - 18:28:44 CDT)
xx_hack_xx_2004hotmail.com
- Full Path Disclosure in PHP-Wyana (2) (Sat Oct 14 2006 - 17:33:33 CDT)
- Full Path Disclosure in PHP-Wyana (Sat Oct 14 2006 - 17:18:05 CDT)
xxxxgmail.com
- Re: Re: New Flaw in Firefox 2.0: DoS and possible remote code execution (Tue Oct 31 2006 - 14:00:00 CST)
- New Flaw in Firefox 2.0: DoS and possible remote code execution (Tue Oct 31 2006 - 03:24:53 CST)
zarloule04hotmail.fr
- XSS IN paFileDB 3.1 (Sun Oct 08 2006 - 13:02:24 CDT)
zdi-disclosures3com.com
- ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability (Thu Oct 26 2006 - 16:30:00 CDT)
- ZDI-06-034: Microsoft Office Word Malformed Chart Code Execution Vulnerability (Tue Oct 10 2006 - 15:08:39 CDT)
- ZDI-06-032: Microsoft Office PowerPoint Malformed Slide Notes Rebuilding Vulnerability (Tue Oct 10 2006 - 15:08:31 CDT)
- ZDI-06-033: Microsoft Office Excel File Format DATETIME Record Parsing Vulnerability (Tue Oct 10 2006 - 15:08:38 CDT)
- ZDI-06-031: CA Multiple Product Message Engine RPC Server Code Execution Vulnerability (Thu Oct 05 2006 - 16:35:45 CDT)
- ZDI-06-030: CA Multiple Product Discovery Service Remote Buffer Overflow Vulnerability (Thu Oct 05 2006 - 16:35:36 CDT)
zooz_998hotmail.com
- phpAdsNew-2.0.8 <= (adlayer.php) Remote File Include (Wed Oct 25 2006 - 12:34:21 CDT)
äÍÉÔÒÉÊ Borgir
- PHP "exec", "system", "popen" problem (Wed Oct 18 2006 - 23:53:54 CDT)

Last message date: Tue Oct 31 2006 - 17:00:14 CST
Archived on: Tue Oct 31 2006 - 17:00:14 CST

524 messages sorted by: [ date ] [ thread ] [ subject ]