|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
492 messages sorted by: [ author ] [ date ] [ thread ]
Starting: Mon Apr 02 2007 - 10:29:04 CDT
Ending: Mon Apr 30 2007 - 14:34:50 CDT
- 0day Oracle 10g exploit - dbms_aq.enqueue - become DBA
- 2BGal 3.1.1 <= (admin/index.php) Remote File Include Vulnerability
- 3Com's TippingPoint Denial of Service
- 3proxy 0.5.3i bugfix release
- 3proxy[v0.5.3g]: (linux/win32 service) remote buffer overflow exploits.
- :doruk100net >> RFI
- [ GLSA 200703-27 ] Squid: Denial of Service
- [ GLSA 200703-28 ] CUPS: Denial of Service
- [ GLSA 200704-01 ] Asterisk: Two SIP Denial of Service vulnerabilities
- [ GLSA 200704-02 ] MIT Kerberos 5: Arbitrary remote code execution
- [ GLSA 200704-03 ] OpenAFS: Privilege escalation
- [ GLSA 200704-05 ] zziplib: Buffer Overflow
- [ GLSA 200704-06 ] Evince: Stack overflow in included gv code
- [ GLSA 200704-07 ] libwpd: Multiple vulnerabilities
- [ GLSA 200704-08 ] DokuWiki: Cross-site scripting vulnerability
- [ GLSA 200704-09 ] xine-lib: Heap-based buffer overflow
- [ GLSA 200704-10 ] Inkscape: Two format string vulnerabilities
- [ GLSA 200704-11 ] Vixie Cron: Denial of Service
- [ GLSA 200704-12 ] OpenOffice.org: Multiple vulnerabilities
- [ GLSA 200704-13 ] File: Denial of Service
- [ GLSA 200704-14 ] FreeRADIUS: Denial of Service
- [ GLSA 200704-15 ] MadWifi: Multiple vulnerabilities
- [ GLSA 200704-16 ] Aircrack-ng: Remote execution of arbitrary code
- [ GLSA 200704-17 ] 3proxy: Buffer overflow
- [ GLSA 200704-18 ] Courier-IMAP: Remote execution of arbitrary code
- [ GLSA 200704-19 ] Blender: User-assisted remote execution of arbitrary code
- [ GLSA 200704-20 ] NAS: Multiple vulnerabilities
- [ GLSA 200704-21 ] ClamAV: Multiple vulnerabilities
- [ GLSA 200704-22 ] BEAST: Denial of Service
- [ GLSA 200704-23 ] capi4k-utils: Buffer overflow
- [ MDKSA-2007:074 ] - Updated qt3 packages to address utf8 decoder bug
- [ MDKSA-2007:075 ] - Updated qt4 packages to address utf8 decoder bug
- [ MDKSA-2007:075-1 ] - Updated qt4 packages to address utf8 decoder bug
- [ MDKSA-2007:076 ] - Updated kdelibs packages to address UTF8 issue in KJS
- [ MDKSA-2007:077 ] - Updated krb5 packages fix vulnerabilities
- [ MDKSA-2007:077-1 ] - Updated krb5 packages fix vulnerabilities
- [ MDKSA-2007:078 ] - Updated kernel packages fix multiple vulnerabilities and bugs
- [ MDKSA-2007:079 ] - Updated xorg-x11/XFree86 packages fix integer overflow vulnerabilities
- [ MDKSA-2007:079-1 ] - Updated xorg-x11/XFree86 packages fix integer overflow vulnerabilities
- [ MDKSA-2007:080 ] - Updated tightvnc packages fix integer overflow vulnerabilities
- [ MDKSA-2007:080-1 ] - Updated tightvnc packages fix integer overflow vulnerabilities
- [ MDKSA-2007:081 ] - Updated freetype2 packages fix vulnerability
- [ MDKSA-2007:081-1 ] - Updated freetype2 packages fix vulnerability
- [ MDKSA-2007:082 ] - Updated madwifi-source, wpa_supplicant packages fix vulnerabilities
- [ MDKSA-2007:083 ] - Updated apache-mod_perl packages fix DoS vulnerability
- [ MDKSA-2007:084 ] - Updated ipsec-tools packages fix DoS vulnerability
- [ MDKSA-2007:085 ] - Updated freeradius packages fix DoS vulnerability
- [ MDKSA-2007:086 ] - Updated cups packages fix DoS vulnerability
- [ MDKSA-2007:087 ] - Updated php packages fix multiple vulnerabilities
- [ MDKSA-2007:088 ] - Updated php packages fix multiple vulnerabilities
- [ MDKSA-2007:089 ] - Updated php packages fix multiple vulnerabilities
- [ MDKSA-2007:090 ] - Updated php packages fix multiple vulnerabilities
- [ MDKSA-2007:091 ] - Updated sqlite packages fix vulnerability
- [ MDKSA-2007:092 ] - Updated freeradius packages fix vulnerability
- [ MDKSA-2007:093 ] - Updated zziplib packages fix vulnerability
- [ MDKSA-2007:094 ] - Updated postgresql packages fix vulnerability
- [Argeniss] Hacking Databases for owning your data (paper)
- [CAID 35198, 35276]: CA BrightStor ARCserve Backup Media Server Vulnerabilities
- [CAID 35277]: CA CleverPath Portal SQL Injection Vulnerability
- [CFP] VNSECON 07 - Call for Papers / HCMC - August 03-04, 2007
- [exploits] RPC vuln in DNS Server (fwd)
- [Full-disclosure] [RECTIFY] Oracle 10g exploit - dbms_aq.enqueue - become DBA
- [Full-disclosure] [WEB SECURITY] Persistent CSRF and The Hotlink Hell
- [Full-disclosure] A Botted Fortune 500 a Day
- [Full-disclosure] Cross Domain XMLHttpRequest
- [Full-disclosure] More information on ZERT patch for ANI 0day
- [MajorSecurity Advisory #37]HolaCMS - Cross Site Scripting Issue
- [MajorSecurity Advisory #38]eXV2 CMS - Session fixation and Cross-Site-Scripting Issues
- [MajorSecurity Advisory #39]onelook onebyone CMS - Session fixation Issue
- [MajorSecurity Advisory #40]onelook oboShop - Session fixation Issue
- [MajorSecurity Advisory #41]onelook courts online - Session fixation Issue
- [MajorSecurity Advisory #42]webblizzard CMS - Cross Site Scripting and Session fixation Issues
- [MajorSecurity Advisory #43]Calacode ATMail 5.0 - Cross Site Scripting and Cookie Manipulation Issue
- [MajorSecurity Advisory #44]MailBee WebMail Pro - Cross Site Scripting Issue
- [MajorSecurity Advisory #45]oe2edit CMS - Cross Site Scripting and Cookie Manipulation Issue
- [MajorSecurity Advisory #46]Plogger - Session fixation Issue
- [OPENADS-SA-2007-003] Openads 2.0.11 vulnerability fixed
- [OPENADS-SA-2007-004] Max Media Manager v0.1.29-rc and v0.3.31-alpha-pr2 vulnerability fixed
- [Reversemode advisory] CheckPoint Zonelabs - ZoneAlarm SRESCAN driver local privilege escalation
- [security bulletin] HPSBGN02199 SSRT071312 rev.1 - Mercury Quality Center ActiveX, Remote Unauthorized Arbitrary Code Execution
- [security bulletin] HPSBMA02133 SSRT061201 rev.4 - HP Oracle for OpenView (OfO) Critical Patch Update
- [security bulletin] HPSBMA02197 SSRT061285 rev.1 - HP-UX Running HP Power Manager Remote Agent (RA), Local Execution of Arbitrary Code with Root Privileges
- [security bulletin] HPSBMA02198 SSRT061177 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Access
- [security bulletin] HPSBST02200 SSRT071330 rev.1 - HP StorageWorks Command View Advanced Edition for XP, Local Unauthorized Access
- [security bulletin] HPSBST02206 SSRT071354 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-014
- [security bulletin] HPSBST02206 SSRT071354 rev.2 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-017
- [security bulletin] HPSBST02208 SSRT071365 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-018 to MS07-022
- [security bulletin] HPSBTU02207 SSRT061213, SSRT061239, SSRT071304 rev.1 - HP Tru64 UNIX SSL and BIND Remote Arbitrary Code Execution or Denial of Service (DoS)
- [security bulletin] HPSBUX01137 SSRT5954 rev.9 - HP-UX Running TCP/IP (IPv4), Remote Denial of Service (DoS)
- [security bulletin] HPSBUX02183 SSRT061243 rev.1 - HP-UX sendmail, Remote Denial of Service (DoS)
- [security bulletin] HPSBUX02203 SSRT071339 rev.1 - HP-UX Running Portable File System (PFS), Remote Increase in Privilege
- [security bulletin] HPSBUX02204 SSRT071341 rev.1 - HP-UX Running CIFS Server (Samba), Remote Denial of Service (DoS)
- [SECURITY] [DSA 1274-1] New file packages fix arbitrary code execution
- [SECURITY] [DSA 1275-1] New zope2.7 packages fix cross-site scripting flaw
- [SECURITY] [DSA 1276-1] New krb5 packages fix several vulnerabilities
- [SECURITY] [DSA 1277-1] New XMMS packages fix arbitrary code execution
- [SECURITY] [DSA 1278-1] New man-db packages fix arbitrary code execution
- [SECURITY] [DSA 1279-1] New webcalendar packages fix cross-site scripting
- [SECURITY] [DSA 1280-1] New aircrack-ng packages fix arbitrary code execution
- [SECURITY] [DSA 1281-1] New clamav packages fix several vulnerabilities
- [SECURITY] [DSA 1282-1] New php4 packages fix several vulnerabilities
- [SECURITY] [DSA 1283-1] New php5 packages fix several vulnerabilities
- [USN-448-1] X.org vulnerabilities
- [USN-449-1] krb5 vulnerabilities
- [USN-450-1] ipsec-tools vulnerability
- [USN-451-1] Linux kernel vulnerabilities
- [USN-452-1] KDE library vulnerability
- [USN-453-1] X.org vulnerability
- [USN-453-2] rdesktop regression
- [USN-454-1] PostgreSQL vulnerability
- [USN-455-1] PHP vulnerabilities
- [waraxe-2007-SA#048] - Multiple vulnerabilities in Virtual War 1.5 module for PhpNuke
- [waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20
- [WEB SECURITY] Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug
- [WEB SECURITY] Persistent CSRF and The Hotlink Hell
- ACLS ineffective in SQL-Ledger and LedgerSMB
- ActionPoll Script (actionpoll.php) Remote File Include // starhack.org
- acvsws_php5_v1.0 <= Multiple Remote File Include Vulnerablitiy
- adrevenue script (CyKuH.com)>> RFI
- Advisory: Bypass Oracle Logon Trigger
- Advisory: Shutdown unprotected Oracle TNS Listener via Oracle Discoverer Servlet [AS01]
- Advisory: SQL Injection in package SYS.DBMS_AQADM_SYS
- Advisory: SQL Injection in package SYS.DBMS_UPGRADE_INTERNAL
- Advisory: XSS Vulnerability in Oracle Secure Enterprise Search [SES01]
- AFFLIB(TM): Multiple Buffer Overflows
- AFFLIB(TM): Multiple Format String Injections
- AFFLIB(TM): Multiple Shell Metacharacter Injections
- AFFLIB(TM): Time-of-Check-Time-of-Use File Race
- Aircrack-ng (airodump-ng) remote buffer overflow vulnerability
- AIX 4.3 lsmcode local root command execution
- Akamai Technologies Security Advisory 2007-0001
- Allfaclassfieds (level2.php dir) remote file inclusion
- Analysis of the Oracle April 2007 Critical Patch Update
- AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption
- AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero)
- AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption
- APOP vulnerability
- ASA-2007-010: Two stack buffer overflows in SIP channel's T.38 SDP parsing code
- ASA-2007-011: Multiple problems in SIP channel parser handling response codes
- ASA-2007-012: Remote Crash Vulnerability in Manager Interface
- B2 Weblog and News Publishing Tool v0.6.1 >> RFI
- B2evolution 1.6 RFi
- Back-End CMS Database Tables v0.4.7 Cross Site Scripting
- Back-End CMS Database Tables v0.4.7 Remote File Include Vulnerabilities
- bibtex mase Remote File Inclusion
- Big Blue Guestbook HTML Injection Vulnerabilities
- blogsystem 1.4 >> local & remote = -rfi & lfi & -xss
- bloofoxCMS 0.2.2 Cross Site Scripting
- bloofoxCMS 0.2.2 Remote File Include Vulnerabilitiy
- BlueArc Firmware 4.2.944b FTP bounce
- Built2Go_PHP_Link_Portal_v1.79 >> RFI
- Burak Yılmaz Blog (tr) v1.0 SQL injection vulnerability
- c-arbre <= Multiple Remote File Include Vulnerablitiy
- CfP Hack.lu 2007
- CFP: 3rd European Conference on Computer Network Defense (EC2ND)
- Chatness <= 2.5.3 - Arbitrary Code Execution
- Chicken of the VNC 2.0 remote DoS
- Cisco Security Advisory: Default Passwords in NetFlow Collection Engine
- Cisco Security Advisory: Multiple Vulnerabilities in the Cisco Wireless Control System
- Cisco Security Advisory: Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points
- claroline <= Multiple Remote File Include Vulnerablitiy
- CmailServer WebMail <= V.5.3.4 (signup) Remote XSS Exploit
- CodeBreak (codebreak.php process_method) - Remote File Inclusion Vulnerability
- comus 2.0 Final >> RFI
- Cosign SSO Authentication Bypass
- Critical phpwiki c99shell exploit
- Cross Domain XMLHttpRequest
- Cross site scripting in mephisto 0.7.3
- CVE-2007-1871: Cross site scripting in chcounter 3.1.3
- CVE-2007-1872: Cross site scripting in toendaCMS 1.5.3
- CYBSEC Pre-Advisory: SAP TRUSTED_SYSTEM_SECURITY RFC Function Information Disclosure
- CYBSEC Release: SAP Security - Paper & Tool release
- CYBSEC Security Pre-Advisory: SAP RFC_SET_REG_SERVER_PROPERTY RFC Function Denial Of Service
- CYBSEC Security Pre-Advisory: SAP RFC_START_GUI RFC Function Buffer Overflow
- CYBSEC Security Pre-Advisory: SAP RFC_START_PROGRAM RFC Function Multiple Vulnerabilities
- CYBSEC Security Pre-Advisory: SAP SYSTEM_CREATE_INSTANCE RFC Function Buffer Overflow
- dcp-portal v611 >> RFi
- DEF CON One Five CfP in effect!
- Denial of Service Vulnerabilities in TrueCrypt 4.3 Linux (re. bid 23180)
- DeskPRO v2.0.1 - Cross-Site Scripting Vulnerability
- DirectAdmin persistant XSS [takeover an Administrator`s account]
- DmCMS Shell Uploading
- download engine V1.4.1 >> RFI (local)
- Drake CMS v0.3.2 < = RFi Vulnerabilities
- DynaTracker &v151>> RFI
- E-Annu (home.php) Remote SQL Injection Vulnerability
- E107 - (v0.7.8) Access Escalation Vulnerbility - PoC
- Eba News Version : v1.1 <= (webpages.php) Remote File Include // starhack.org
- EclipseBB Remote File Inclusion
- EEYE: Windows VDM Zero Page Race Condition Privilege Escalation
- EEYE: Windows Vista CSRSS Dangling Process Pointer Privilege Escalation
- EsForum <= 3.0 SQL Injection Vulnerability
- Exploiting Microsoft dynamic Dns updates
- Extreme PHPBB2 Remote File Inclusion
- FAC GuestBook v2.0 remote database disclosure vulnerability
- File117 Remote File Inclusion
- Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug
- Flaw in about.r OS and Progress version disclosure
- FLEA-2007-0006-1: ImageMagick
- FLEA-2007-0006-2: ImageMagick
- FLEA-2007-0007-1: nas
- FLEA-2007-0008-1: krb5
- FLEA-2007-0009-1: xorg-x11 freetype
- FLEA-2007-0010-1: evolution
- FLEA-2007-0011-1: lighttpd
- FLEA-2007-0012-1: madwifi
- FLEA-2007-0013-1: xine-lib
- FLEA-2007-0014-1: vim
- FLEA-2007-0015-1: gimp
- Flip-search-add-on 2.0
- FloweRS v2.0 Cross Site Scripting
- FreeBSD Security Advisory FreeBSD-SA-07:03.ipv6
- FullyModdedphpBB2 Remote File Inclusion
- gallery >> 1.5.6 Remote File Inclusion
- Gazi Okul Sitesi 2007(tr)(fotokategori.asp) Remote SQL Injection
- GHH Portal 1.1 (passwd.txt) Remote Password Disclosure Vulnerability
- Gizzar <= (basePath) Remote File Include Vulnerability
- Gsylvain35 Portail Web Remote File Include Vulnerabilities
- High Risk Vulnerability in OpenOffice
- Hot Editor v4.0 Local File Inclusion
- HPSBUX02205 SSRT061120 rev.1 - HP-UX Running ARPA Transport, Local Denial of Service (DoS)
- HTMLeditbox & 2.2 >> RFI
- HYIP Manager Pro Script >> Remote file Include
- iDefense Security Advisory 03.31.07: IBM Tivoli Provisioning Manager for OS Deployment Multiple Vulnerabilities
- iDefense Security Advisory 03.31.07: Multiple Vendor ImageMagick DCM and XWD Buffer Overflow Vulnerabilities
- iDefense Security Advisory 04.02.07: Hewlett-Packard Mercury Quality Center ActiveX Control ProgColor Buffer Overflow Vulnerability
- iDefense Security Advisory 04.03.07: Microsoft Windows WMF Triggerable Kernel Design Error DoS Vulnerability
- iDefense Security Advisory 04.03.07: Multiple Vendor Kerberos kadmind Buffer Overflow Vulnerability
- iDefense Security Advisory 04.03.07: Multiple Vendor X Server BDF Font Parsing Integer Overflow Vulnerability
- iDefense Security Advisory 04.03.07: Multiple Vendor X Server fonts.dir File Parsing Integer Overflow Vulnerability
- iDefense Security Advisory 04.03.07: Multiple Vendor X Server XC-MISC Extension Memory Corruption Vulnerability
- iDefense Security Advisory 04.04.07: ESRI ArcSDE Buffer Overflow Vulnerability
- iDefense Security Advisory 04.04.07: Kaspersky AntiVirus SysInfo ActiveX Control Information Disclosure Vulnerability
- iDefense Security Advisory 04.04.07: Kaspersky Internet Security Suite klif.sys Heap Overflow Vulnerability
- iDefense Security Advisory 04.09.07: AOL AIM and ICQ File Transfer Path-Traversal Vulnerability
- iDefense Security Advisory 04.10.07: Microsoft Windows Universal Plug and Play Memory Corruption Vulnerability
- iDefense Security Advisory 04.11.07: Apache HTTPD suEXEC Multiple Vulnerabilities
- iDefense Security Advisory 04.12.07: Hewlett Packard HP-UX Remote pfs_mountd.rpc Buffer Overflow Vulnerability
- iDefense Security Advisory 04.16.07: Akamai Download Manager ActiveX Stack Buffer Overflow Vulnerability
- iDefense Security Advisory 04.16.07: ClamAV CAB File Unstore Buffer Overflow Vulnerability
- iDefense Security Advisory 04.17.07: McAfee E-Business Admin Server Invalid Data Length DoS Vulnerability
- iDefense Security Advisory 04.17.07: McAfee VirusScan On-Access Scanner Long Unicode File Name Buffer Overflow
- iDefense Security Advisory 04.20.07: Check Point Zone Labs SRESCAN IOCTL Local Privilege Escalation Vulnerability
- iDefense Security Advisory 04.26.07: Novell eDirectory NCP Fragment Denial of Service Vulnerability
- iDefense Security Advisory 04.26.07: Symantec Norton Ghost 10 Recovery Points Insecure Password Storage Vulnerability
- iDefense Security Advisory 04.26.07: Symantec Norton Ghost 10 Service Manager Buffer Overflow Vulnerability
- iDefense Security Advisory 04.27.07: VMware Workstation Shared Folders Directory Traversal Vulnerability
- IE 7 and Firefox Browsers Digest Authentication Request Splitting
- ImageProcessing ... Local (Denial of Service Exploit)
- INFIGO-2007-04-05: Enterprise Security Analyzer server remote buffer overflows
- Internet Explorer Crash
- IPB (Invision Power Board) Full Path Disclusure
- Ivan Gallery Script V.0.1 (index.php) Remote File Include Exploit
- iXon_CMS 0.30 Remote File Include Vulnerabilities
- Joomla/Mambo Jambook v1.0 beta7 Rfi Vuln.
- K-CMS v1.0 Remote File Include Vulnerabilities
- Latinchat Denial Of Service
- LayerOne 2007 - Speaker Line up Announced
- LedgerSMB 1.2.0 finally released, fixes CVE-2006-5589
- Linksys WAG200G - Information disclosure
- lite-cms-0.2.1 Remote File Include Vulnerabilities
- livor 2.5 Cross-Site Scripting Vulnerability
- lms 1.5.3 Remote File Inclusion
- LS simple guestbook - arbitrary code execution
- Maian Gallery v1.0
- Maian Search v1.1
- Maian Weblog v3.1
- Mambo/Joomla Component New Article Component RFI
- Maplab <= 2.2.1 (gszAppPath) Remote File Inclusion Vulnerability
- MediaBeez Sql query Execution .. Wear isn't ?? :)
- Microsoft .NET request filtering bypass vulnerability (BID 20753)
- Microsoft DNS Server Remote Code execution: Analysis and exploit
- MITKRB5-SA-2007-001: telnetd allows login as arbitrary user [CVE-2007-0956]
- MITKRB5-SA-2007-002: KDC, kadmind stack overflow in krb5_klog_syslog [CVE-2007-0957]
- MITKRB5-SA-2007-003: double-free vulnerability in kadmind (via GSS-API library) [CVE-2007-1216]
- MobilePublisherphp v1.1.2 Remote File Include Vulnerabilities
- modbuild >> 4.1 Remote File Inclusion
- Monkey CMS v0.0.3 Remote File Include Vulnerabilitiy
- More information on ZERT patch for ANI 0day
- Mozilla Firefox Insecure Element Stealth Injection Vulnerability
- MS announces out-of-band patch for ANI 0day
- Multiple Ask IE Toolbar denial of service vulnerabilities
- my little forum 1.7 Remote File Include Vulnerabilitiy
- my little weblog Cross Site Scripting
- Mybb Hot Editor Plugin Local File Inclusion
- MyBlog <= 0.9.8 Remote Command Execution Exploit
- MyBlog: PHP and MySQL Blog/CMS software Cross-Site Scripting Vulnerabilitiy
- MyBlog: PHP and MySQL Blog/CMS software Remote File Include Vulnerabilitiy
- MyBulletinBoard (MyBB) <= 1.2.3 Remote Code Execution Exploit
- MyNewsGroups >> RFI in include.php
- MySpeach v1.9
- n.runs-SA-2007.007 - Sun Solaris 10 - Format string vulnerability
- NeatUpload vulnerability and fix
- netbingo v 2000 >> RFI
- Netsprint Toolbar 1.1 arbitrary remote code vulnerability
- New bug :)
- nEw Bug :D
- Nine Vista CVEs, including Microsoft inaccurate Teredo use case documentation
- Norton Multiple insufficient argument validation of hooked SSDT function Vulnerability
- NuclearBB Alpha 1 - Multiple Blind SQL/XPath Injection Vulnerabilities
- nucleus 3.22 >> RFI
- NukeSentinel Bypass SQL Injection & Nuke Evolution <= 2.0.3 SQL Injections
- On-going Internet Emergency and Domain Names
- Oracle Database Buffer overflow vulnerabilities in package DBMS_SNAP_INTERNAL
- Persistent CSRF and The Hotlink Hell
- PHP <= 5.2.1 wbmp file handling integer overflow
- PHP Nuke <= 8.0.0.3.3b SQL Injections and Bypass SQL Injection Protection vulnerabilities
- phpContact Multiple Remote File Inclusion Vulnerabilities
- phpechocms v.2 Cross-Site Scripting Vulnerabilitiy
- phpechocms2 Remote File Include Vulnerabilities
- phpGalleryScript 1.0 - File Inclusion Vulnerabilities
- phpMyAdmin 2.6.1 Local Cross Site Scripting
- PHPMyBibli <= Multiple Remote File Include
- phpMyChat-0.14.5
- phpMySpace Gold (v8.10) - Blind SQL/XPath Injection Exploit
- phpMYTGP v v1.4b >> RFI
- PhpOpenChat <= 3.0.1 (poc.php) Multiple Remote File Include Vulnerabilities
- phpwebnews v.1 Multiple Cross Site Scripting Vulnerabilites
- Pixaria Gallery 1.0 (class.Smarty.php) Remote File Include Vulnerability
- pL-PHP beta 0.9 - Multiple Vulnerabilities
- please retract CVE-2007-2056 "Time-of-Check-Time-of-Use File Race in AFFLIB"
- Post Revolution Remote File Inclusion
- Progress Webspeed exploit for all releases
- PunBB <= 1.2.14 Multiple Vulnerabilities (Advisory)
- PunBB <= 1.2.14 Remote Code Execution (Exploit)
- QuizShock 1.6.1 - Cross-Site Scripting Vulnerability
- RaidenFTPd IXceedCompression multiple denial of service vulnerabilities
- Reminder: HITBSecConf2007 - Malaysia: Call for Papers closing in 2 weeks
- Remot File Include download_engine_V1.4.3
- Remot File Include In phpexplorator_2_0
- Remot File Include In Script Lore v1
- Remot File Include In Script phphd_downloads
- Remote File Include In Script stat12
- Remote File Inclusion
- Remote file inclusion in Joomla 1.5.0 Beta
- Request It : Song Request System 1.0b - remote file inclusion
- Ripe Website Manager (<= 0.8.4) - SQL Injection Vulnerability and Cross-Site Scripting Exploit
- rPSA-2007-0062-1 firefox
- rPSA-2007-0063-1 krb5 krb5-server krb5-services krb5-test krb5-workstation
- rPSA-2007-0064-1 ImageMagick
- rPSA-2007-0065-1 freetype xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs
- rPSA-2007-0066-1 kdelibs qt-x11-free
- rPSA-2007-0067-1 nas
- rPSA-2007-0070-1 openoffice.org
- rPSA-2007-0071-1 kernel
- rPSA-2007-0072-1 lighttpd
- rPSA-2007-0073-1 php php-mysql php-pgsql
- rPSA-2007-0074-1 dovecot
- rPSA-2007-0081-1 postgresql postgresql-server
- Scorp Book <== v1.0 (smilies.php) Remote File Include Exploit
- Searchactivity >> RFI
- Secunia Research: Microsoft Agent URL Parsing Memory Corruption Vulnerability
- Security Advisory: CA CleverPath SQL Injection
- Security Concerns in Web 2.0
- Seir Anphin (file.php a[filepath]) Remote File Disclosure Vulnerability
- Several Windows image viewers vulnerabilities
- Shop-Script v 2.0 >> RFI
- ShoutPro 1.5.2 - arbitrary code execution
- SineCMS
- Sitebar 3.3.5 (index.php writerFile)Remote File Include Vulnerabilities
- sitex multiple vulnerabilities
- Sphider Version 1.2.x (include_dir) file include
- Steganos Encrypted Safe NOT so safe
- sunshop v4 >> RFI
- SYMSA-2007-003 Macrovision InstallAnywhere Password and Serial Number Bypass
- Take Control In Script Jeebles Directory
- Three New Papers on Oracle Forensics
- TJSChat Version 0.95 Cross Site Scripting
- Top Auction 1.0 (viewcat.php) Remote Blind SQL Injection // starhack.org
- TSLSA-2007-0013 - multi
- TSLSA-2007-0015 - postgresql
- TSRT-07-04: LANDesk Management Suite Alert Service Stack Overflow Vulnerability
- TuMusika Evolution 1.6 Cross Site Scripting Vulnerabilitiy
- turbolence core 0.0.1 alpha Remote File Inclusion
- TWOVB][ The Week Of Vista Bugs: the truth is out there
- UBB.threads (<= 6.1.1) SQL Injection Vulnerability
- UseBB Version 1.0.4 Path Disclosure Vulnerability
- Vbulletin 3.6.5 Sql Injection ! [misc.php]
- vbulletin admincp sql injection
- VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit
- VirtuaNews.Pro.v1.0.3.Retail.+All.Plugins Remote file Include
- VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates
- Wabbit PHP Gallery v0.9 Cross Site Scripting
- WASC-Articles: 'The business case for security frameworks'
- WASC-Articles: 'The Importance of Application Classification in Secure Application Development'
- webMethods Glue Management Console Directory Traversal
- webMethods Security Advisory: Glue console directory traversal vu lnerability
- Winamp <= (WMV) 5.3 Buffer Overflow DOS Exploit (0-DAY)
- Windows DNS Cache Poisoning by Forwarder DNS Spoofing
- Windows XP/Vista (.ANI) Remote Exploit (bypass eeye patch)
- witshare 0.9 Remote File Include Vulnerabilitiy
- WordPress v2.1.3 >> remote file include~
- WOVB #01: Bypassing Vista Firewall, Flying over obstructive line
- WS_FTP Home 2007 NetscapeFTPHandler denial of service
- Wserve HTTP Server 4.6 Version (Long Directory Name) Buffer Overflow - Denial Of Service
- xodagallery Remote Code Execution Vulnerability
- Xoops All Version -Articles- Print.PHP (ID) Blind SQL Injection Exploit And PoC
- YA Book 0.98 Persistent XSS
- Yet another SQL injection framework
- Yet another SQL injection framework (file corruption)
- ZDI-07-012: Yahoo! Messenger AudioConf ActiveX Control Buffer Overflow
- ZDI-07-013: Kaspersky AntiVirus Engine ARJ Archive Parsing Heap Overflow Vulnerability
- ZDI-07-014: Kaspersky Anti-Virus ActiveX Control Unsafe Method Exposure Vulnerablity
- ZDI-07-015: Novell Groupwise WebAccess Base64 Decoding Stack Overflow Vulnerability
- ZDI-07-016: Oracle E-Business Suite Arbitrary Node Deletion Vulnerability
- ZDI-07-017: Oracle E-Business Suite Arbitrary Document Download Vulnerability
- ZDI-07-018: IBM Tivoli Monitoring Express Universal Agent Heap Overflow Vunlerability
- ZDI-07-019: BMC Patrol PerformAgent bgs_sdservice Memory Corruption Vulnerability
- ZDI-07-020: BMC Performance Manager SNMP Command Execution Vulnerability
- ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability
- ZDI-07-022: CA BrightStor ArcServe Media Server Multiple Buffer Overflow Vulnerabilities
- ZoneAlarm Multiple insufficient argument validation of hooked SSDT function Vulnerability
3com.com
Last message date: Mon Apr 30 2007 - 14:34:50 CDT
Archived on: Mon Apr 30 2007 - 14:34:50 CDT
492 messages sorted by: [ author ] [ date ] [ thread ]