Section: .. / Last 20 Files /
| /// File Name: | hispah-sql.txt | Description:
| HispaH Model Search suffers from a remote SQL injection vulnerability in cat.php. | | Author: | cyb3r-1st | | File Size: | 963 | | Last Modified: | May 9 20:06:40 2008 | | MD5 Checksum: | 56372410603357c087d00006cb931d71 |
|
| /// File Name: | admidio-disclose.txt | Description:
| Admidio version 1.4.8 suffers from a remote file disclosure vulnerability. | | Author: | n3v3rh00d | | Homepage: | http://forum.antichat.ru/ | | File Size: | 1398 | | Last Modified: | May 9 20:04:34 2008 | | MD5 Checksum: | fb96b4a0cd332e49bb1509f593db6916 |
|
| /// File Name: | wpgallery-sql.txt | Description:
| The WordPress Photo Gallery module suffers from a remote SQL injection vulnerability. | | Author: | THE_MILLER | | File Size: | 405 | | Last Modified: | May 9 13:59:35 2008 | | MD5 Checksum: | 6ad18afafb09a0396e624aa6cdc26680 |
|
| /// File Name: | glsa-200805-08.txt | Description:
| Gentoo Linux Security Advisory GLSA 200805-08 - The namesx and uhnames modules do not properly validate network input, leading to a buffer overflow. Versions less than 1.1.19 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2399 | | Related CVE(s): | CVE-2008-1925 | | Last Modified: | May 9 13:53:32 2008 | | MD5 Checksum: | cdb2393100a4faec5400559fd35ff0f8 |
|
| /// File Name: | glsa-200805-07.txt | Description:
| Gentoo Linux Security Advisory GLSA 200805-07 - LTSP version 4.2, ships prebuilt copies of programs such as the Linux Kernel, the X.org X11 server (GLSA 200705-06, GLSA 200710-16, GLSA 200801-09), libpng (GLSA 200705-24, GLSA 200711-08), Freetype (GLSA 200705-02, GLSA 200705-22) and OpenSSL (GLSA 200710-06, GLSA 200710-30) which were subject to multiple security vulnerabilities since 2006. Please note that the given list of vulnerabilities might not be exhaustive. Versions less than 5.0 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 4366 | | Last Modified: | May 9 13:53:07 2008 | | MD5 Checksum: | b99107d7cc4efe620d3b52050bad0f8f |
|
| /// File Name: | glsa-200805-06.txt | Description:
| Gentoo Linux Security Advisory GLSA 200805-06 - Viesturs reported that the default configuration for Gentoo's init script (/etc/conf.d/firebird) sets the ISC_PASSWORD environment variable when starting Firebird. It will be used when no password is supplied by a client connecting as the SYSDBA user. Versions less than 2.0.3.12981.0-r6 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2857 | | Related CVE(s): | CVE-2008-1880 | | Last Modified: | May 9 13:52:37 2008 | | MD5 Checksum: | 85f645f65baa0b3fe9c141d775831681 |
|
| /// File Name: | oracleasp-bypass.txt | Description:
| The Oracle Application Server Portal 10G suffers from an authentication bypass vulnerability. Details are provided. | | Author: | Deniz Cevik | | Homepage: | http://www.intellectpro.com.tr/ | | File Size: | 944 | | Last Modified: | May 9 13:51:21 2008 | | MD5 Checksum: | 949ba1c17d5c6ccbaf300ec9175e3dd4 |
|
| /// File Name: | cyberfolio-rfi.txt | Description:
| Cyberfolio version 7.2 suffers from a remote file inclusion vulnerability. | | Author: | RoMaNcYxHaCkEr | | File Size: | 1055 | | Last Modified: | May 9 13:45:41 2008 | | MD5 Checksum: | b1f29ba626cf616a3523dd8a19714c8f |
|
| /// File Name: | sazcart151-rfi.txt | Description:
| SazCart version 1.5.1 suffers from multiple remote file inclusion vulnerabilities. | | Author: | RoMaNcYxHaCkEr | | File Size: | 1214 | | Last Modified: | May 9 13:45:07 2008 | | MD5 Checksum: | f6972dda22f21e2d1b7c152ccfebae41 |
|
| /// File Name: | MDVSA-2008-099.txt | Description:
| Mandriva Linux Security Advisory - A heap-based buffer overflow vulnerability was found in how ImageMagick parsed XCF files. If ImageMagick opened a specially-crafted XCF file, it could be made to overwrite heap memory beyond the bounds of its allocated memory, potentially allowing an attacker to execute arbitrary code on the system running ImageMagick. Another heap-based buffer overflow vulnerability was found in how ImageMagick processed certain malformed PCX images. If ImageMagick opened a specially-crafted PCX image file, an attacker could possibly execute arbitrary code on the system running ImageMagick. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7839 | | Related CVE(s): | CVE-2008-1096, CVE-2008-1097 | | Last Modified: | May 9 13:43:27 2008 | | MD5 Checksum: | 80671fb91b231ddf51ff6f60aef286c4 |
|
| /// File Name: | apache-utf7xss.txt | Description:
| Apache versions 2.2.x and 1.3.x suffer from a cross site scripting vulnerability leveraging UTF-7 encoding on 403 forbidden pages. | | Author: | Yaniv Miron, Yossi Yakubov | | File Size: | 1125 | | Last Modified: | May 9 13:40:07 2008 | | MD5 Checksum: | 776e48651cff4b6c45bf15019e486f5c |
|
| /// File Name: | minibloggie-delete.txt | Description:
| miniBloggie version 1.0 suffers from an arbitrary post deletion vulnerability in del.php. | | Author: | Cod3rZ | | Homepage: | http://cod3rz.helloweb.eu/ | | File Size: | 574 | | Last Modified: | May 9 13:37:53 2008 | | MD5 Checksum: | 48a0ab7a653384c0a40f7474400937f7 |
|
| /// File Name: | vshare-sql.txt | Description:
| vShare Youtube Clone version 2.6 suffers from a remote SQL injection vulnerability in group_posts.php. | | Author: | Saime | | File Size: | 1126 | | Last Modified: | May 9 13:37:00 2008 | | MD5 Checksum: | f6ed0f3a4f6d2bf9adf61c3530025f07 |
|
| /// File Name: | shadertv-sql.txt | Description:
| Shader TV Beta suffers from multiple SQL injection vulnerabilities allowing for login bypass and more. | | Author: | U238 | | Homepage: | http://noexec.blogspot.com/ | | File Size: | 1476 | | Last Modified: | May 9 13:35:06 2008 | | MD5 Checksum: | 9f14c2db07c26bca40e8b991829c03ee |
|
| /// File Name: | USN-611-3.txt | Description:
| Ubuntu Security Notice 611-3 - USN-611-1 fixed a vulnerability in Speex. This update provides the corresponding update for GStreamer Good Plugins. It was discovered that Speex did not properly validate its input when processing Speex file headers. If a user or automated system were tricked into opening a specially crafted Speex file, an attacker could create a denial of service in applications linked against Speex or possibly execute arbitrary code as the user invoking the program. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 15260 | | Related CVE(s): | CVE-2008-1686 | | Last Modified: | May 9 13:31:28 2008 | | MD5 Checksum: | 26dd30b7333f05b291b099650b8a9e89 |
|
| /// File Name: | USN-611-2.txt | Description:
| Ubuntu Security Notice 611-2 - USN-611-1 fixed a vulnerability in Speex. This update provides the corresponding update for ogg123, part of vorbis-tools. It was discovered that Speex did not properly validate its input when processing Speex file headers. If a user or automated system were tricked into opening a specially crafted Speex file, an attacker could create a denial of service in applications linked against Speex or possibly execute arbitrary code as the user invoking the program. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 7294 | | Related CVE(s): | CVE-2008-1686 | | Last Modified: | May 9 13:30:57 2008 | | MD5 Checksum: | a2c8b46ce1f3301d099c7eb67973f3b0 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
