[bugtraq] Thread Index

• Chronological Index · RSS feed

• Re: Vulnerability CVE-2008-3671 - MyReview's vulnerability in the access control system, (continued)
  • Re: Vulnerability CVE-2008-3671 - MyReview's vulnerability in the access control system, alexchf . fyp   (March 09, 2009)
    • Re: Vulnerability CVE-2008-3671 - MyReview's vulnerability in the access control system, Julien Thomas   (March 09, 2009)  
     
• Maran PHP Blog Xss By Khashayar Fereidani, irancrash   (July 21, 2008)
• MyBlog <=0.9.8 Multiple Vulnerabilities, admin   (July 21, 2008)
• Easydynamicpages 30tr Multipe Vulerabilities ( Xss / Sql Injection Exploit / File Disclosure Exploit ), irancrash   (July 21, 2008)
• Vim: Improper Implementation of shellescape()/Arbitrary Code Execution, Jan Minář   (July 21, 2008)
• FGA-2008-16: EMC Dantz Retrospect 7 backup Client 7.5.116 NULL-Pointer reference Denial of Service Vulnerability, zhliu   (July 21, 2008)
• [DSECRG-08-031] Local File Include Vulnerability in Interact 2.4.1, Digital Security Research Group [DSecRG]   (July 21, 2008)
• Flip V3.0 final, Cru3l . b0y   (July 21, 2008)
• [White Paper] Abusing HTML 5 Structured Client-side Storage, Alberto Trivero   (July 21, 2008)
• [SECURITY] [DSA 1612-1] New ruby1.8 packages fix several vulnerabilities, Moritz Muehlenhoff   (July 21, 2008)
• E-Mail header Injection in HiFriend, Peter Wiesen   (July 21, 2008)
  • Re: E-Mail header Injection in HiFriend, Adrian Pastor   (July 29, 2008)  
   
• [ GLSA 200807-10 ] Bacula: Information disclosure, Pierre-Yves Rofes   (July 21, 2008)
  • <Possible follow-ups>
  • Re: [ GLSA 200807-10 ] Bacula: Information disclosure, dan   (July 22, 2008)  
   
• [ GLSA 200807-11 ] PeerCast: Buffer overflow, Pierre-Yves Rofes   (July 21, 2008)
• [ MDVSA-2008:151 ] - Updated libxslt packages fix buffer overflow vulnerability, security   (July 22, 2008)
• [ GLSA 200807-12 ] BitchX: Multiple vulnerabilities, Pierre-Yves Rofes   (July 22, 2008)
• NULL pointer in ZDaemon 1.08.07, Luigi Auriemma   (July 22, 2008)
• FGA-2008-16: EMC Dantz Retrospect 7 backup Server Authentication Module Weak Password Hash Arithmetic Vulnerability, zhliu   (July 22, 2008)
• Vulnerability: SocialEngine (SocialEngine.net) high risk security flaw, Tim Loshak   (July 22, 2008)
• [SECURITY] [DSA 1613-1] new libgd2 packages fix multiple vulnerabilities, Devin Carraway   (July 22, 2008)
• [security bulletin] HPSBMA02346 SSRT080097 rev.3 - HP OpenView Select Identity Active Directory Bidirectional LDAP Connector, Remote Unauthorized Access, security-alert   (July 22, 2008)
• [DSECRG-08-032] Claroline 1.8.10 Multiple XSS Vulnerabilities, Digital Security Research Group [DSecRG]   (July 22, 2008)
• PR08-13: Persistent Cross-site Scripting (XSS) on Moodle via blog entry title, ProCheckUp Research   (July 22, 2008)
• PR08-15: Several Webroot Disclosures on Moodle, ProCheckUp Research   (July 22, 2008)
• PR08-16: CSRF (Cross-site Request Forgery) on Moodle edit profile page, ProCheckUp Research   (July 22, 2008)
• [USN-627-1] Dnsmasq vulnerability, Jamie Strandboge   (July 22, 2008)
• Outpost Security Suite Pro ver. 2009 Multiple vulnerabilities, jplopezy   (July 22, 2008)
• [ MDVSA-2008:152 ] - Updated wireshark packages fix denial of service vulnerability, security   (July 23, 2008)