Secunia Security Advisory - A vulnerability has been reported in Pre Multi-Vendor Ecommerce Solution, which can be exploited by malicious people to conduct cross-site scripting attacks.
eac19479b4cd5f22111ee2beefdbeab1d521745fc0e7cc101d0ab1e958a73884Secunia Security Advisory - wlhaan Hacker has discovered a vulnerability in Max's Photo Album, which can be exploited by malicious people to compromise a vulnerable system.
382b51baaff9dea3cbf9f447bf4330654e3ac29fc7983e9a6298a98da2f9a865Secunia Security Advisory - Dominick LaTrappe has discovered a security issue in VideoCache, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
a54a4a2cec9d3a7c3661bb1d9c01c2219297e5719b1783160367cda4da3edfadSecunia Security Advisory - A vulnerability has been discovered on phpLDAPadmin, which can be exploited by malicious people to disclose sensitive information.
e8454f613dc6c328c27476840d99111bcd089f25268b626d07491e582a6d1155Secunia Security Advisory - gerry has reported a vulnerability in D-Link DIR-615, which can be exploited by malicious people to bypass certain security restrictions.
0ebcb4182b461777d7c3649a209ec00aa0f3699d836c493944b376dee907a8afSecunia Security Advisory - Hadi Kiamarsi has discovered a vulnerability in Rumba XML, which can be exploited by malicious people to conduct cross-site scripting attacks.
78c46b38573a652e786ed97f98b7edeb2ebe9a8317071326ade42c5cfa08f31dSecunia Security Advisory - Fl0riX has reported a vulnerability in the JoomPortfolio component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
29cf89ed9fad7497eb5156b997d7ae4aee5ad5a0508050743a847040bed9941cSecunia Security Advisory - A vulnerability has been reported in Sitecore Staging Module, which can be exploited by malicious people to bypass certain security restrictions.
e195ab35dca62d2ab3aae700f769070f4786c5ede2027e4d0cdd9b3330a82b62Secunia Security Advisory - bi0 has reported a vulnerability in Matrimony Script, which can be exploited by malicious people to conduct cross-site request forgery attacks.
f6f0f3a3a1e5b1a0b26992acf151bfdc6045ec6e91c29649f2c018cff341f5e8Secunia Security Advisory - Multiple vulnerabilities have been reported in OSSIM, which can be exploited by malicious users to conduct SQL injection attacks and to compromise a vulnerable system.
c31b3bfefad15e847860c7d493d54ac407b8899237912fb5b9b7b55369f6ae44Secunia Security Advisory - A vulnerability has been reported in ScriptsEz Ez Faq Maker, which can be exploited by malicious people to conduct cross-site scripting attacks.
1128aefaf381c1f9ae90e52783e5deeda09b1e096912e74ef0b714643fc933c1Secunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in Winamp, which can be exploited by malicious people to compromise a user's system.
0a2134414c3591be6eea83b8d9d0e3c671ce18a55aaa23546cd918f9a890998bMandriva Linux Security Advisory 2009-336 - Security vulnerabilities have been discovered and fixed in pdf processing code embedded in koffice package. This update fixes these vulnerabilities. Packages for 2008.0 are being provided due to extended support for Corporate products.
a2ef2d5e30130afa9fad89e1222ba735868ee5d7ca2b28bab7a104774565a186CeleronDude version 5.3.0 suffers from a remote shell upload vulnerability.
cbc4ae761e8b11aa86d5726855386ab57543f92a4b68804a96c45bd87fba433aReVou Micro Blogging suffers from a cross site scripting vulnerability.
6ac6ecc702d6bb2024aabdf31757808c11ca84f96cfc1303de96b728d00d29c2Zero Day Initiative Advisory 09-099 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Storage Data Protector. Authentication is not required to exploit this vulnerability. The specific flaw exists within the backup client service daemon (OmniInet.exe), which binds to TCP port 5555. During the processing of long arguments to the 'MSG_PROTOCOL' command, a stack based buffer overflow occurs and can result in code execution under the context of the daemon.
0f9de733412a100a34ae3d1de1051cd6038931fcd0ebdc100541b769c8372c53Multi-Lingual Application suffers from a blind SQL injection vulnerability.
3e9d87623e42fdfde137235654abc3193f6e3114dc5e48f75bdfb3d0a00744b6Pluxml-Blog Beta version 4.2 suffers from a cross site scripting vulnerability.
5e7028d5b79d317e58b394bbe91fb5d803cb93ea60a743e8f57e75bbc75a9958Charon Cart version 3 suffers from a remote blind SQL injection vulnerability.
2d0969c410f1ce6f17386ff245187c487b825b3a76bb29ec95bb8b4aa2473541Cpanel version 11 suffers from a cross site scripting vulnerability.
be081aa7a0cb0191c17e2fa7de8336b4f36e746c883f1ca4d306eeaa07cf4c35Pre Jobo .NET suffers from a remote SQL injection vulnerability that allows for authentication bypass.
398dc065e7c1dfde367e2d2de447d3931aeaa9dc4f7e086e7dea48fe30a705b5Pre MultiVendor E-Commerce Solution suffers from a cross site scripting vulnerability.
848399255cf6d32c6c2e22562396372e60577e360c2f999a6ca971e1e86c3dd4Mandriva Linux Security Advisory 2009-335 - MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different vectors than CVE-2007-6718. Packages for 2008.0 are being provided due to extended support for Corporate products. This update provides a solution to this vulnerability.
08d37c9ccfdd420b03fcf030695f41362afa42c558d44cabda2a9191f2776fb4MOJO's IWMS login page suffers from cross site scripting and cookie manipulation vulnerabilities.
9ba66f0415d2ba1ba3bad6d05407c6533e939d762de4d304b17762b96ecd4c06Active Photo Gallery version 6.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
bea4eb51d48e3e6c123097fde96043330598c8210d9c2659d89dd2a39f555b59
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed