[bugtraq] Thread Index

• Chronological Index · RSS feed

• Arbitrary file overwrite possible by Musicmatch ActiveX control, Hyperdose Security   (April 15, 2005)
• Enumeration of AS/400 users and their status via POP3, Shalom Carmel   (April 15, 2005)
• [ GLSA 200504-14 ] monkeyd: Multiple vulnerabilities, Sune Kloppenborg Jeppesen   (April 15, 2005)
• Vulnerabilities in sphpblog, echo staff   (April 15, 2005)
• [ECHO_ADV_12$2005] Vulnerabilities in sphpblog, echo staff   (April 15, 2005)
• Mafia Blog, Francisco Alisson   (April 15, 2005)
• [Overflow.pl] Libsafe - Safety Check Bypass Vulnerability, Overflow.pl   (April 15, 2005)
• Http Response Splitting Vulnerability In PHP-NUKE 7.6 and below, dcrab   (April 15, 2005)
  • Re: Http Response Splitting Vulnerability In PHP-NUKE 7.6 and below, Amit Klein (AKsecurity)   (April 18, 2005)  
  • <Possible follow-ups>
  • Re: Http Response Splitting Vulnerability In PHP-NUKE 7.6 and below, JeiAr   (April 15, 2005)
    • Re: Http Response Splitting Vulnerability In PHP-NUKE 7.6 and below, Paul Laudanski   (April 16, 2005)  
     
   
• [DR001] AppleWebKit XMLHttpRequest arbitrary file disclosure vulnerability, David Remahl   (April 16, 2005)
• phpBB datenbank mod has XSS/SQL Injection in the id variable, tom cruise   (April 16, 2005)
• Require many large corporate emails for contact regarding vulnerability., dcrab   (April 16, 2005)
• SUSE Security Announcement: cvs (SUSE-SA:2005:024), Sebastian Krahmer   (April 18, 2005)
• Vulnerability in Coppermine Photo Gallery 1.3.*, GHC team   (April 18, 2005)
  • <Possible follow-ups>
  • Re: Vulnerability in Coppermine Photo Gallery 1.3.*, nibbler999   (April 20, 2005)  
   
• Firelinking [Firefox 1.0.2], mikx   (April 18, 2005)
• [ GLSA 200504-15 ] PHP: Multiple vulnerabilities, Thierry Carrez   (April 18, 2005)
• [ECL] Windows IP Options DoS POC [ECL], Yuri Gushin   (April 18, 2005)
• Firesearching 1 + 2 [Firefox 1.0.2], mikx   (April 18, 2005)
• phpBB - Knowledge Base MOD - SQL-Injection and Full Path Disclosure, deluxe   (April 18, 2005)
• [SECURITY] [DSA 710-1] New gtkhtml packages fix denial of service, Martin Schulze   (April 18, 2005)
• ERNW Security Advisory 01/2005, Mailinglists   (April 18, 2005)
• [AppSecInc Team SHATTER Security Advisory] Multiple SQL Injection vulnerabilities in DBMS_CDC_SUBSCRIBE and DBMS_CDC_ISUBSCRIBE packages, Team SHATTER   (April 18, 2005)
• [AppSecInc Team SHATTER Security Advisory] SQL Injection in CREATE_SCN_CHANGE_SET procedure, Team SHATTER   (April 18, 2005)
• [AppSecInc Team SHATTER Security Advisory] Denial of Service in Oracle interMedia, Team SHATTER   (April 18, 2005)
• [AppSecInc Team SHATTER Security Advisory] Multiple SQL Injection vulnerabilities in DBMS_METADATA package, Team SHATTER   (April 18, 2005)
• [AppSecInc Team SHATTER Security Advisory] SQL Injection in ALTER_MANUALLOG_CHANGE_SOURCE procedure, Team SHATTER   (April 18, 2005)
• [ GLSA 200504-16 ] CVS: Multiple vulnerabilities, Sune Kloppenborg Jeppesen   (April 18, 2005)