[bugtraq] Chronological Index

• Thread Index · RSS feed

• January 24, 2008
  • Tiger PHP News System SQL Injection, 0in . email   (January 24, 2008)
  • [ MDVSA-2008:024 ] - Updated libxfont packages fix font handling vulnerability, security   (January 24, 2008)
  • [ MDVSA-2008:023 ] - Updated x11-server packages fix multiple vulnerabilities, security   (January 24, 2008)
  • [ MDVSA-2008:022 ] - Updated xorg-x11 packages fix multiple vulnerabilities, security   (January 24, 2008)
  • [ MDVSA-2008:021 ] - Updated XFree86 packages fix multiple vulnerabilities, security   (January 24, 2008)
  • ImageShack Toolbar FileUploader Class insecurities, retrog   (January 24, 2008)
  • [ MDVSA-2008:025 ] - Updated x11-server-xgl packages fix multiple vulnerabilities, security   (January 24, 2008)
  • PIX Privilege Escalation Vulnerability, tbbunn   (January 24, 2008)
  • [SECURITY] [DSA 1444-2] New php5 packages fix regression, Moritz Muehlenhoff   (January 24, 2008)
  • [ GLSA 200801-10 ] TikiWiki: Multiple vulnerabilities, Raphaël Marichez   (January 24, 2008)
  • [SECURITY] [DSA 1474-1] New exiv2 packages fix arbitrary code execution, Moritz Muehlenhoff   (January 24, 2008)
• January 23, 2008
  • RE: Cisco Security Advisory: Cisco PIX and ASA Time-to-Live Vulnerability, Eric Davis   (January 23, 2008)
  • Woltlab Burning Board 2.3.6 PL2 Remote Delete Thread XSRF Vulnerability, nbbn   (January 23, 2008)
  • Syhunt: HFS (HTTP File Server) Username Spoofing and Log Forging/Injection Vulnerability, Felipe M. Aragon   (January 23, 2008)
  • Syhunt: HFS (HTTP File Server) Log Arbitrary File/Directory Manipulation and Denial-of-Service Vulnerabilities, Felipe M. Aragon   (January 23, 2008)
  • Syhunt: HFS (HTTP File Server) Template Cross-Site Scripting and Information Disclosure Vulnerabilities, Felipe M. Aragon   (January 23, 2008)
  • Cisco Security Advisory: Default Passwords in the Application Velocity System, Cisco Systems Product Security Incident Response Team   (January 23, 2008)
  • Cisco Security Advisory: Cisco PIX and ASA Time-to-Live Vulnerability, Cisco Systems Product Security Incident Response Team   (January 23, 2008)
  • [ MDVSA-2008:020 ] - Updated xine-lib packages fix remote code execution vulnerabilities, security   (January 23, 2008)
  • Web Wiz NewsPad Directory traversal, admin   (January 23, 2008)
  • Web Wiz Rich Text Editor Directory traversal + HTM/HTML file creation on the server, admin   (January 23, 2008)
  • Web Wiz Forums Directory traversal, admin   (January 23, 2008)
  • UPDATED VMSA-2008-0001.1 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages, VMware Security team   (January 23, 2008)
  • [security bulletin] HPSBUX02306 SSRT071463 rev.1 - HP-UX Running ARPA Transport, Remote Denial of Service (DoS), security-alert   (January 23, 2008)
  • PHP 5.2.5 cURL safe_mode bypass, cxib   (January 23, 2008)
  • SDL_Image 1.2.6 and prior GIF handling buffer overflow, Gynvael Coldwind   (January 23, 2008)
• January 22, 2008
  • Apache mod_negotiation Xss and Http Response Splitting, Minded Security Research Labs   (January 22, 2008)
  • XSRF under Dean’s Permalinks Migration 1.0, g30rg3_x   (January 22, 2008)
  • Re: PR07-38: XSS on sIFR, bugs+securityfocus   (January 22, 2008)
  • Belong Site Builder 0.1b Bypass Admincp, رومانسي هكر   (January 22, 2008)