[bugtraq] Thread Index

• Chronological Index · RSS feed

• SecurityFocus is turning seven. What's next? - OFFTOPIC - Please excuse the X-Post, Alfred Huger   (March 09, 2007)
• SEC Consult SA-20070309-0 :: MySQL 5 Single Row Subselect Denial of Service, research   (March 09, 2007)
• HC NEWSSYSTEM 1.0-4 (index.php "ID") Blind SQL Injection, UniquE   (March 09, 2007)
• [ MDKSA-2007:058 ] - Updated ekiga packages fix string vulnerabilities., security   (March 09, 2007)
• [ MDKSA-2007:060 ] - Updated kernel packages fix multiple vulnerabilities and bugs, security   (March 09, 2007)
• WordPress XSS under function wp_title(), g30rg3_x   (March 09, 2007)
• Security bypass vulnerability in LedgerSMB and SQL-Ledger (fixes released today), Chris Travers   (March 09, 2007)
• [ GLSA 200703-08 ] SeaMonkey: Multiple vulnerabilities, Raphael Marichez   (March 09, 2007)
• wwwpaintboar(newsfile) Remote File Inclusion Vulnerability, saw_xyz   (March 10, 2007)
• [ECHO_ADV_67$2007] WEBO (Web Organizer) <= 1.0 (baseDir) Remote File Inclusion Vulnerability, erdc   (March 10, 2007)
• [USN-433-1] Xine vulnerability, Kees Cook   (March 10, 2007)
• [ GLSA 200703-09 ] Smb4K: Multiple vulnerabilities, Raphael Marichez   (March 10, 2007)
• [Argeniss] Practical 10 minutes security audit: Oracle Case (Paper), Cesar   (March 10, 2007)
• PHP-Nuke <= 8.0 Cookie Manipulation (lang), programmer   (March 10, 2007)
  • Re: PHP-Nuke <= 8.0 Cookie Manipulation (lang), Paul Laudanski   (March 12, 2007)  
   
• Remote File Include In Script Premod SubDog 2, RaeD Hasadya   (March 10, 2007)
• Remote File Include In Script SoftNews Media Group, RaeD Hasadya   (March 10, 2007)
  • <Possible follow-ups>
  • Re: Remote File Include In Script SoftNews Media Group, foster   (July 04, 2007)  
   
• F&#305;st&#305;q Duyuru Scripti Remote Sql &#304;njection Exploit, crazy_king   (March 10, 2007)
• WWWboard password disclosure, r00t2000   (March 10, 2007)
• Grayscale <= 0.8.0 Multiple Vulnerabilities, omnipresent   (March 10, 2007)
• Pre-open files attack agains locked file, 3APA3A   (March 10, 2007)
• [ECHO_ADV_68$2007] PMB Services <= 3.0.13 Multiple Remote File Inclusion Vulnerability, erdc   (March 10, 2007)
• NukeSentinel <= 2.5.06 SQL Injection (mysql >= 4.0.24) Exploit, gmdarkfig   (March 10, 2007)
• Re: [Full-disclosure] PHP import_request_variables() arbitrary variable overwrite, Stefan Esser   (March 10, 2007)
  • Re: [Full-disclosure] PHP import_request_variables() arbitrary variable overwrite, Stefano Di Paola   (March 10, 2007)
    • Re: [Full-disclosure] PHP import_request_variables() arbitrary variable overwrite, Stefan Esser   (March 10, 2007)  
     
  • Re: [Full-disclosure] PHP import_request_variables() arbitrary variable overwrite, ascii   (March 10, 2007)  
  • <Possible follow-ups>
  • Re: [Full-disclosure] PHP import_request_variables() arbitrary variable overwrite, Steven M. Christey   (March 13, 2007)  
  • Re: Re: [Full-disclosure] PHP import_request_variables() arbitrary variable overwrite, retrog   (March 14, 2007)