[bugtraq] Thread Index

• Chronological Index · RSS feed

• Airscanner Advisory #07062901: FlexiSPY Victim/User Database Exposure (Full world readable access to ALL SMS/Emails/Voice data from victims/users), Airscanner Corp.   (June 29, 2007)
• WheatBlog 1.1 RFI/SQL Injection, underwater   (June 30, 2007)
• akocomment SQL INJECTION (all version), Emanuele Gentili   (July 02, 2007)
• [SECURITY] [DSA 1327-1] New gsambad packages fix unsafe temporary files, Steve Kemp   (July 02, 2007)
• [ GLSA 200707-01 ] Firebird: Buffer overflow, Raphael Marichez   (July 02, 2007)
• [SECURITY] [DSA 1326-1] New fireflier-server packages fix unsafe temporary files, Steve Kemp   (July 02, 2007)
• eTicket v.1.5.1.1 Multiple Cross-Site Scripting, darkz . gsa   (July 02, 2007)
• FreeDomain.co.nr Clone SQL Injection, teh_lost_byte   (July 02, 2007)
• Advisory : Internet Explorer Zone Domain Specification Dos and Page suppressing., Aditya K Sood   (July 02, 2007)
• PHPDirector <= 0.21 (SQL injection/Upload SHELL) Remote Vulnerabilities, teh_lost_byte   (July 02, 2007)
• AV Arcade 2.1b (view_page.php) Remote SQL Injection, teh_lost_byte   (July 02, 2007)
• [SECURITY] [DSA 1328-1] New unicon-imc2 packages fix buffer overflow, Steve Kemp   (July 02, 2007)
• AV Arcade 2.1b (COOKIE[ava_userid]) Get Admin Rights, teh_lost_byte   (July 02, 2007)
• High Risk Flaw in Sun's Java Web Start, NGSSoftware Insight Security Research   (July 02, 2007)
• [ GLSA 200707-02 ] OpenOffice.org: Two buffer overflows, Raphael Marichez   (July 03, 2007)
• Two Unpublished IE Cases, LIUDIEYU dot COM   (July 03, 2007)
• Moodle XSS / Liesbeth base CMS sensitive information disclosure, 3APA3A   (July 03, 2007)
• Buffer overflow in HP Instant Support Driver Check (SDD) ActiveX control, NGSSoftware Insight Security Research   (July 03, 2007)
• iPhone Security Settings, John Smith   (July 03, 2007)
• Cross Site Scripting in Oliver Library Management System, A. R.   (July 03, 2007)
• [ MDKSA-2007:138 ] - Updated kdebase packages fix Flash Player interaction vulnerability, security   (July 03, 2007)
• [ GLSA 200707-04 ] GNU C Library: Integer overflow, Raphael Marichez   (July 03, 2007)
• MySQLDumper vulnerability: Bypassing Apache based access control possible, bugtraq   (July 03, 2007)
  • <Possible follow-ups>
  • Re: MySQLDumper vulnerability: Bypassing Apache based access control possible, admin   (August 04, 2007)  
   
• SQL Injection in saphp "showcat.php", Sw33t . h4cK3r   (July 04, 2007)
  • Re: SQL Injection in saphp "showcat.php", security curmudgeon   (December 03, 2007)  
   
• Fujitsu-Siemens ServerView Remote Command Execution, RedTeam Pentesting GmbH   (July 04, 2007)
• Fujitsu-Siemens PRIMERGY BX300 Switch Blade Information Disclosure, RedTeam Pentesting GmbH   (July 04, 2007)
• SQL Injection in SaphpLesson2.0 "show.php", Sw33t . h4cK3r   (July 04, 2007)
  • Re: SQL Injection in SaphpLesson2.0 "show.php", security curmudgeon   (December 03, 2007)