[bugtraq] Thread Index

• Chronological Index · RSS feed

• Re: IndonesiaHack Advisory HTML injection in PHP Fusebox, (continued)
  • Re: IndonesiaHack Advisory HTML injection in PHP Fusebox, brian428   (January 26, 2006)  
  • Re: Re: IndonesiaHack Advisory HTML injection in PHP Fusebox, pr1nce_empire   (January 30, 2006)  
• ERRATA: [ GLSA 200601-09 ] Wine: Windows Metafile SETABORTPROC vulnerability, Sune Kloppenborg Jeppesen   (January 17, 2006)
• XSS in WBNews < = v1.1.0, dragonjar   (January 17, 2006)
• [eVuln] BlogPHP Authentication Bypass, alex   (January 17, 2006)
• [eVuln] microBlog SQL Injection Vulnerability, alex   (January 17, 2006)
• [eVuln] microBlog BBCode XSS Vulnerability, alex   (January 17, 2006)
• Secunia Research: Mozilla Thunderbird Attachment Spoofing Vulnerability, Secunia Research   (January 17, 2006)
• PowerPortal Cross-Site Scripting Vulnerability, night_warrior771   (January 17, 2006)
• [SECURITY] [DSA 944-1] New mantis packages fix several vulnerabilities, Martin Schulze   (January 17, 2006)
• [SECURITY] [DSA 945-1] New antiword packages fix insecure temporary file creation, Martin Schulze   (January 17, 2006)
• Microsoft(R) Internet Explorer 5 & 6 Remote Denial of Service (DoS) using IMG & XML elements, inge . henriksen   (January 18, 2006)
• White Album Sql &#304;njection biyosecurity.be, liz0   (January 18, 2006)
• [SECURITY] [DSA 942-1] New albatross packages fix arbitrary code execution, Martin Schulze   (January 18, 2006)
• [USN-243-1] tuxpaint vulnerability, Martin Pitt   (January 18, 2006)
• Attacking Automatic Wireless Network Selection, Dino A. Dai Zovi   (January 18, 2006)
• Oracle DBMS Access Control Bypass in Login, shulman   (January 18, 2006)
• Oracle Database 10g Rel. 2 - Event 10053 logs TDE wallet password in cleartext, ak   (January 18, 2006)
• [HSC Security Group] Multiple SQL injection/XSS in SimpleBlog 2.1, zinho   (January 18, 2006)
• Oracle Reports - Read parts of files via desname (fixed after 874 days), ak   (January 18, 2006)
• Oracle Reports - Overwrite any application server file via desname (fixed after 889 days), ak   (January 18, 2006)
• Oracle Critical Patch Update - January 2006, NGSSoftware Insight Security Research   (January 18, 2006)
• Oracle Reports - Read parts of files via customize(fixed after 875 days), ak   (January 18, 2006)
• Oracle Database 10g Rel. 2- Transparent Data Encryption plaintext masterkey in SGA, ak   (January 18, 2006)
• [ TZO-012006 ] Checkpoint VPN-1 SecureClient insecure usage of CreateProcess(), Thierry Zoller   (January 18, 2006)
• Phpclanwebsite BBCode IMG Tag XSS Vulnerability, [at]   (January 18, 2006)
  • <Possible follow-ups>
  • Phpclanwebsite BBCode IMG Tag XSS Vulnerability, [at]   (January 20, 2006)  
   
• [eVuln] CaLogic Calendars Multiple XSS Vulnerabilities, alex   (January 18, 2006)
• [eVuln] Flog Information Disclosure Vulnerability, alex   (January 18, 2006)
• [eVuln] aoblogger Multiple Vulnerabilities, alex   (January 18, 2006)