[bugtraq] Chronological Index

• Thread Index · RSS feed

• May 23, 2008
  • PR07-15: Cross-site Scripting (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.logon.php3' server-side script, Ricardo Martins - Chief Security Officers   (May 23, 2008)
  • [DSECRG-08-025] Local File Include in OneCMS 2.5, Digital Security Research Group   (May 23, 2008)
  • e107 Plugin BLOG Engine v2.2 (macgurublog.php/uid) Blind SQL Injection Vulnerability, hadihadi_zedehal_2006   (May 23, 2008)
  • [DSECRG-08-024] Multiple Security Vulnerabilities (RFI,LFI,XSS) in QuateCMS, Digital Security Research Group   (May 23, 2008)
  • Re: Re: Vbulletin 3.7.0 Gold >> Sql injection on faq.php, andy . huang   (May 23, 2008)
• May 22, 2008
  • Re: /home/putnopvut/asa/AST-2008-007/AST-2008-007: AST-2008-007 Cryptographic keys generated by OpenSSL on Debian-based systems compromised, Florian Weimer   (May 22, 2008)
  • [SECURITY] [DSA 1586-1] New xine-lib packages fix several vulnerabilities, Devin Carraway   (May 22, 2008)
  • abledating 2.4 >> Sql injection and cross site scripting on search_results.php, a . jasbi   (May 22, 2008)
  • IRM Security Advisory : Barracuda Networks Spam Firewall Cross-Site Scripting Vulnerability, Mark Crowther   (May 22, 2008)
  • rPSA-2008-0174-1 gnutls, rPath Update Announcements   (May 22, 2008)
  • /home/putnopvut/asa/AST-2008-007/AST-2008-007: AST-2008-007 Cryptographic keys generated by OpenSSL on Debian-based systems compromised, Asterisk Security Team   (May 22, 2008)
  • BMForum Remote 5.6 Miltiple XSS Vulnerability, tan_prathan   (May 22, 2008)
  • Exteen Blog XSS Remote Cookie Disclosure Exploit, tan_prathan   (May 22, 2008)
  • [security bulletin] HPSBUX02337 SSRT080072 rev.1 - HP-UX Running HP-UX Secure Shell, Local Unauthorized Access and Denial of Service (DoS), security-alert   (May 22, 2008)
  • phpSQLiteCMS Multiple Remote XSS Vulnerability, tan_prathan   (May 22, 2008)
  • PHPFreeForum <= 1.0 RC2 Remote XSS Vulnerability, tan_prathan   (May 22, 2008)
  • ZDI-08-031: Trillian MSN MIME Header Stack-Based Overflow Vulnerability, zdi-disclosures   (May 22, 2008)
  • ZDI-08-030: Trillian Multiple Protocol XML Parsing Memory Corruption Vulnerability, zdi-disclosures   (May 22, 2008)
  • ZDI-08-029: Trillian AIM.DLL Long HTML Font Parameter Stack Overflow Vulnerability, zdi-disclosures   (May 22, 2008)
  • ZDI-08-028: IBM Lotus Sametime Community Services Multiplexer Stack Overflow Vulnerability, zdi-disclosures   (May 22, 2008)
  • [ GLSA 200805-20 ] GnuTLS: Execution of arbitrary code, Robert Buchholz   (May 22, 2008)
  • MDAP ANTs PWNAGE: dumping the admin password of the BT Home Hub, Adrian Pastor   (May 22, 2008)
• May 21, 2008
  • iDefense Security Advisory 05.21.08: Multiple Vendor Snort IP Fragment TTL Evasion Vulnerability, iDefense Labs   (May 21, 2008)
  • www file share pro 5.30 insecure multiple, output   (May 21, 2008)
  • CORE-2008-0126: Multiple vulnerabilities in iCal, Core Security Technologies Advisories   (May 21, 2008)
  • Re: Vbulletin 3.7.0 Gold >> Sql injection on faq.php, Matias Blanco   (May 21, 2008)
  • [SECURITY] [DSA 1584-1] New libfissound packages fix execution of arbitrary code, Steve Kemp   (May 21, 2008)
  • [USN-612-8] openssl-blacklist update, Jamie Strandboge   (May 21, 2008)
  • Cisco Security Advisory: Cisco Voice Portal Privilege Escalation Vulnerability, Cisco Systems Product Security Incident Response Team   (May 21, 2008)
  • Cisco Security Advisory: Cisco IOS Secure Shell Denial of Service, Cisco Systems Product Security Incident Response Team   (May 21, 2008)