[bugtraq] Thread Index

• Chronological Index · RSS feed

• Tilde CMS <= v. 4.x "aarstal" parameter of "yeardetail" SQL Injection, kingoftheworld92   (November 26, 2007)
• SimpleGallery v0.1.3 (index.php) Cross-Site Scripting Vulnerability, sys-project   (November 26, 2007)
• PHP-Nuke NSN Script Depository module <= 1.0.3 Remote Source / DB Credentials Disclosure, kingoftheworld92   (November 26, 2007)
  • <Possible follow-ups>
  • Re: PHP-Nuke NSN Script Depository module <= 1.0.3 Remote Source / DB Credentials Disclosure, kingoftheworld92   (November 26, 2007)  
   
• Directory Traversal in SafeNet Sentinel Protection Server and Keys Server, Elliot Kendall   (November 26, 2007)
• ZDI-07-069: CA BrightStor ARCserve Backup Message Engine Insecure Method Exposure Vulnerability, zdi-disclosures   (November 26, 2007)
• JLMForo System (modificarPerfil.php) Cross-Site Scripting Vulnerability, sys-project   (November 26, 2007)
• FIGIS (FILogin.do) Bypass SQL Injection Vulnerability, sys-project   (November 26, 2007)
• CONFidence 2008 CfP, andrzej . targosz   (November 26, 2007)
• [USN-545-1] link-grammar vulnerability, Kees Cook   (November 27, 2007)
• Creating Backdoors in Cisco IOS using Tcl, IRM Research   (November 27, 2007)
  • Re: [Full-disclosure] Creating Backdoors in Cisco IOS using Tcl, Nicolas FISCHBACH   (November 27, 2007)  
  • <Possible follow-ups>
  • Re: Creating Backdoors in Cisco IOS using Tcl, michael   (November 27, 2007)  
   
• [USN-546-1] Firefox vulnerabilities, Kees Cook   (November 27, 2007)
• [USN-547-1] PCRE vulnerabilities, Kees Cook   (November 27, 2007)
• Announce: RFIDIOt release RFIDIOt-0.1r, November 2007, Adam Laurie   (November 27, 2007)
• National Computer and Information Security Conferences ACIS 2008 - COLOMBIA, Jeimy Cano   (November 27, 2007)
• [SECURITY] [DSA 1414-1] New wireshark packages fix several vulnerabilities, Moritz Muehlenhoff   (November 27, 2007)
• OWASP Israel Conference 2007, Dec 3rd 2007, Ofer Shezaf   (November 27, 2007)
• [security bulletin] HPSBUX02251 SSRT071449 rev.3 - HP-UX Running BIND, Remote DNS Cache Poisoning, security-alert   (November 27, 2007)
• Ruby/Gnome2 0.16.0 Format String Vulnerability, chris . rohlf   (November 27, 2007)
• Eurologon CMS Multiple SQL Injection, kingoftheworld92   (November 27, 2007)
• Eurologon CMS Db credentials disclosure / files download, kingoftheworld92   (November 27, 2007)
• CORE-2007-0821: Lotus Notes buffer overflow in the Lotus WorkSheet file processor, Core Security Technologies Advisories   (November 27, 2007)
• Liferay Enterprise Portal multiple XSS, morin . josh   (November 27, 2007)
• PHPSlideShow XSS Update, morin . josh   (November 27, 2007)
• [SECURITY] [DSA 1416-1] New tk8.3 packages fix arbitrary code execution, Moritz Muehlenhoff   (November 27, 2007)
• PHPkit 1.6.1 (include.php?path=) Remote File Inclusion, sys-project   (November 27, 2007)
• [SECURITY] [DSA 1415-1] New tk8.4 packages fix arbitrary code execution, Moritz Muehlenhoff   (November 28, 2007)
• Win2K3 Priv Escalation, justin   (November 28, 2007)