[bugtraq] Thread Index

• Chronological Index · RSS feed

• [SECURITY] [DSA 1025-1] New dia packages fix arbitrary code execution, Martin Schulze   (April 10, 2006)
• IE6 Crash, tel   (April 10, 2006)
  • Re: IE6 Crash, H D Moore   (April 10, 2006)  
   
• [Overflow.pl] Clam AntiVirus Win32-UPX Heap Overflow (not default configuration), Damian Put   (April 10, 2006)
• XMB Forum 1.9.5-Final XSS, r0xes . ratm   (April 10, 2006)
• Vulnerabilities in SPIP, crasher   (April 10, 2006)
• PhpOpenChat 3.0.x ADODB Server.php "sql" SQL injection, rgod   (April 10, 2006)
• TUGZip Archive Extraction Directory traversal, h e   (April 10, 2006)
• phpinfo() Cross Site Scripting PHP 5.1.2 and 4.4.2, cxib   (April 10, 2006)
• Oracle read-only user can insert/update/delete data via specially crafted views, ak   (April 10, 2006)
• function *() php/apache Crash PHP 4.4.2 and 5.1.2, cxib   (April 10, 2006)
  • Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2, Michal Zalewski   (April 11, 2006)  
  • <Possible follow-ups>
  • Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2, Steven M. Christey   (April 12, 2006)
    • Exploiting out of memory crashes and null pointers [was: Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2], 86400s   (April 12, 2006)  
    • Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2, Michal Zalewski   (April 13, 2006)  
     
  • Re: Re: function *() php/apache Crash PHP 4.4.2 and 5.1.2, sp3x   (April 15, 2006)  
   
• tempnam() open_basedir bypass PHP 4.4.2 and 5.1.2, cxib   (April 10, 2006)
• copy() Safe Mode Bypass PHP 4.4.2 and 5.1.2, cxib   (April 10, 2006)
• MyBB 1.10 'newthread.php' < CrossSiteScripting >, o . y . 6   (April 10, 2006)
• Myspace.com - Intricate Script Injection, silentproducts   (April 10, 2006)
• Vegadns blind sql injection and cross site scripting, king_purba   (April 10, 2006)
• PHPList <= 2.10.2 remote commands execution, rgod   (April 10, 2006)
  • <Possible follow-ups>
  • Re: PHPList <= 2.10.2 remote commands execution, secfoc   (April 11, 2006)  
  • Re: Re: PHPList <= 2.10.2 remote commands execution, rg . viza   (April 11, 2006)  
   
• Jbook Cross Site Scripting, root__   (April 10, 2006)
• phpMyForum Cross Site Scripting & CRLF injection, root__   (April 10, 2006)
  • <Possible follow-ups>
  • Re: phpMyForum Cross Site Scripting & CRLF injection, chris   (April 29, 2006)  
   
• PHPWebGallery Multiple Cross Site Scripting Vulnerabilities, root__   (April 10, 2006)
• [USN-269-1] xscreensaver vulnerability, Martin Pitt   (April 11, 2006)
• Confixx 3.1.2 <= Cross Site Scripting Vuln, sn4k3 . 23   (April 11, 2006)