Secunia Security Advisory 41680
Secunia Security Advisory - A vulnerability has been reported in the JomSocial component for Joomla!, which can be exploited by malicious users to compromise a vulnerable system.
View ArticleSecunia Security Advisory 41640
Secunia Security Advisory - Fedora has issued an update for mysql. This fixes some security issues, where one has unknown impacts while others can be exploited by malicious users to cause a DoS (Denial...
View ArticleSecunia Security Advisory 41677
Secunia Security Advisory - David Hoyt has discovered some vulnerabilities in SmarterMail, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to...
View ArticleSecunia Security Advisory 41562
Secunia Security Advisory - A vulnerability has been reported in activeCollab, which can be exploited by malicious users to bypass certain security restrictions.
View ArticleSecunia Security Advisory 40905
Secunia Security Advisory - Debian has issue an update for apr-util. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
View ArticleSecunia Security Advisory 41718
Secunia Security Advisory - Two vulnerabilities have been discovered in AD-EDIT2, which can be exploited by malicious people to conduct cross-site scripting attacks.
View ArticleDebian Linux Security Advisory 2116-1
Debian Linux Security Advisory 2116-1 - Marc Schoenefeld has found an input stream position error in the way the FreeType font rendering engine processed input file streams. If a user loaded a...
View ArticleDebian Linux Security Advisory 2117-1
Debian Linux Security Advisory 2117-1 - APR-util is part of the Apache Portable Runtime library which is used by projects such as Apache httpd and Subversion. Jeff Trawick discovered a flaw in the...
View ArticleGlobal Travel SQL Injection
Global Travel suffers from a remote SQL injection vulnerability.
View ArticleCag CMS 0.2 Blind SQL Injection / Cross Site Scripting
Cag CMS versions 0.2 and below suffer from cross site scripting and remote blind SQL injection vulnerabilities.
View ArticleElxis CMS 2009.2 Electra Rev2631 Cross Site Scripting / SQL Injection
Elxis CMS version 2009.2 electra rev2631 suffers from SQL injection and cross site scripting vulnerabilities.
View ArticleHP Security Bulletin HPSBTU02496 SSRT090245
HP Security Bulletin HPSBTU02496 SSRT090245 - A potential security vulnerability has been identified on the HP Tru64 Operating System when running NTP Server. The vulnerability could be remotely...
View ArticleSPAW Editor Local File Inclusion
SPAW Editor suffers from a local file inclusion vulnerability.
View ArticleCleanerSoft's Free Hide Folder Proof Of Concept
This tool is a proof of concept utility that demonstrates how CleanerSoft's Free Hide Folder is insecure. It uncovers the master password, shows what folders are hidden and can unhide them.
View ArticleIMF 2011 Call For Papers
IMF 2011 Call For Papers - The International Conference on IT-Incident Management and IT-Forensics invites submissions for IMF 2011 being held from May 10th through the 12th, 2011 in Stuttgart, Germany.
View ArticleDocebo 3.6.0.4 Cross Site Scripting
Docebo version 3.6.0.4 suffers from a cross site scripting vulnerability.
View ArticleSquirrelMail Virtual Keyboard 0.9.1 Cross Site Scripting
SquirrelMail Virtual Keyboard plugin versions 0.9.1 and suffer from a cross site scripting vulnerability.
View ArticleZed Attack Proxy (ZAP) 1.0.0
The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security...
View ArticleMIT krb5 Security Advisory 2010-006
MIT krb5 Security Advisory 2010-006 - When the MIT krb5 KDC receives certain Kerberos TGS request messages, it may dereference an uninitialized pointer while processing authorization data, causing a...
View ArticleXplico Network Forensic Analysis Tool 0.6.0
Xplico is an open source Network Forensic Analysis Tool (NFAT) that allows for data extraction from traffic captures. It supports extraction of mail from POP, IMAP, and SMTP, can extract VoIP streams,...
View ArticleGentoo Linux Security Advisory 201010-1
Gentoo Linux Security Advisory 201010-1 - Multiple vulnerabilities in libpng might lead to privilege escalation or a Denial of Service. Versions less than 1.4.3 are affected.
View ArticleUbuntu Security Notice 999-1
Ubuntu Security Notice 999-1 - Mike Roszkowski discovered that the Kerberos KDC did not correctly validate the contents of certain messages. If an authenticated remote attacker sent specially crafted...
View Article
