[bugtraq] Thread Index

• Chronological Index · RSS feed

• eShopping SQL Injection, Advisory   (November 14, 2006)
• ECommerce Store Shop Builder, Advisory   (November 14, 2006)
• Engine Manager SQL Injection, Advisory   (November 14, 2006)
• BPG Content Management System SQL Injection, Advisory   (November 14, 2006)
• Apple Safari "match" Buffer Overflow Vulnerability, jbh_cg   (November 14, 2006)
  • Re: Apple Safari "match" Buffer Overflow Vulnerability, J. Oquendo   (November 16, 2006)  
   
• Advisory 14/2006: Dotdeb PHP Email Header Injection Vulnerability, Stefan Esser   (November 14, 2006)
  • Re: Advisory 14/2006: Dotdeb PHP Email Header Injection Vulnerability, Marcello Barnaba   (November 16, 2006)  
   
• Inventory Manager [injection sql & xss (get)], saps . audit   (November 14, 2006)
• Car Site Manager [injection sql & xss (get)], saps . audit   (November 14, 2006)
• Evolve Merchant[ injection sql ], saps . audit   (November 14, 2006)
  • <Possible follow-ups>
  • Re: Evolve Merchant[ injection sql ], tony   (December 05, 2006)  
   
• FunkyASP Glossary v1.0 [injection sql], saps . audit   (November 14, 2006)
• Blogme v3 [admin login bypass & xss (post)], saps . audit   (November 14, 2006)
• Property Site Manager [login bypass ,multiples injection sql & xss (get)], saps . audit   (November 14, 2006)
• [Fwd: DMA[2006-1031a] - 'Intego VirusBarrier X4 definition bypass exploit'], K F (lists)   (November 15, 2006)
• [Fwd: OpenBase SQL multiple vulnerabilities Part Deux], K F (lists)   (November 15, 2006)
• EEYE: Workstation Service NetpManageIPCConnect Buffer Overflow, eEye Advisories   (November 15, 2006)
  • Re: EEYE: Workstation Service NetpManageIPCConnect Buffer Overflow, security-list   (November 18, 2006)  
   
• ZDI-06-040: WinZip FileView ActiveX Control Unsafe Method Exposure Vulnerability, zdi-disclosures   (November 15, 2006)
  • Re: [Full-disclosure] ZDI-06-040: WinZip FileView ActiveX Control Unsafe Method Exposure Vulnerability, Micheal Turner   (November 15, 2006)  
   
• ZDI-06-041: Microsoft Internet Explorer CSS Float Property Memory Corruption Vulnerability, zdi-disclosures   (November 15, 2006)
• A+ Store E-Commerce[ injection sql & xss (post) ], saps . audit   (November 15, 2006)
• A-Cart pro[ injection sql (post&get)], saps . audit   (November 15, 2006)
• hpecs shopping cart[login bypass & injection sql (post)], saps . audit   (November 15, 2006)
• Dragon calendar [ login bypass & injection sql ], saps . audit   (November 15, 2006)
• [SECURITY] [DSA 1211-1] New pdns packages fix arbitrary code execution, Moritz Muehlenhoff   (November 15, 2006)
• MultiCalendars [ multiples injection sql ], saps . audit   (November 15, 2006)
• NetBSD all versions FireWire IOCTL kernel integer overflow information disclousure, Rodrigo Rubira Branco (BSDaemon)   (November 15, 2006)
• [OpenPKG-SA-2006.034] OpenPKG Security Advisory (texinfo), OpenPKG   (November 15, 2006)