BugTraq Mode:
(Page 4 of 1609)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
CSRF/XSSIn Ad_InSerter Wordpress 2015-05-06
kingkaustubh me com
================================================================
CSRF/Stored XSS Vulnerability in Ad Inserter Plugin
================================================================

. contents:: Table Of Content

Overview
========

* Title :CSRF and Stored XSS Vulnerability in Ad Inserter Wordpre

[ more ]  [ reply ]
CSRF/XSS In Embed ArticlesWordpress Plugin 2015-05-06
kingkaustubh me com
======================================================
CSRF/Stored XSS Vulnerability in embed articles Plugin
======================================================

. contents:: Table Of Content

Overview
========

* Title :CSRF and Stored XSS Vulnerability in embed-articles Wordpress Plugin
* Au

[ more ]  [ reply ]
Cisco Security Advisory: Cisco UCS Central Software Arbitrary Command Execution Vulnerability 2015-05-06
Cisco Systems Product Security Incident Response Team (psirt cisco com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Cisco UCS Central Software Arbitrary Command Execution Vulnerability

Advisory ID: cisco-sa-20150506-ucsc

Revision 1.0

For Public Release 2015 May 6 16:00 UTC (GMT)

+---------------------------------------------------------

[ more ]  [ reply ]
Advisory: Filezilla FTP server is vulnerable to FTP PORT bounce 2015-05-06
Amit Klein (aksecurity gmail com)
Dear list

A security advisory for Filezilla FTP server versions 0.8.0-0.9.50 is
available at http://www.securitygalore.com/site3/filezilla_ftp_server_advisory
A new version of Filezilla FTP server (0.9.51) is available for
immediate download at
https://filezilla-project.org/download.php?type=server

[ more ]  [ reply ]
TORNADO Computer Trading CMS - SQL Injection Vulnerability 2015-05-06
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
TORNADO Computer Trading CMS - SQL Injection Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1489

Release Date:
=============
2015-05-05

Vulnerability Laboratory ID (VL-ID):
============================

[ more ]  [ reply ]
PDF Converter & Editor 2.1 iOS - File Include Vulnerability 2015-05-06
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
PDF Converter & Editor 2.1 iOS - File Include Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1480

Release Date:
=============
2015-05-06

Vulnerability Laboratory ID (VL-ID):
===========================

[ more ]  [ reply ]
[ MDVSA-2015:230 ] squid 2015-05-06
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:230
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:229 ] net-snmp 2015-05-06
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:229
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:228 ] nodejs 2015-05-06
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:228
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
Arbitrary Variable Overwrite in eShop WordPress Plugin 2015-05-06
High-Tech Bridge Security Research (advisory htbridge ch)
Advisory ID: HTB23255
Product: eShop WordPress plugin
Vendor: Rich Pedley
Vulnerable Version(s): 6.3.11 and probably prior
Tested Version: 6.3.11
Advisory Publication: April 15, 2015 [without technical details]
Vendor Notification: April 15, 2015
Public Disclosure: May 6, 2015
Vulnerability Typ

[ more ]  [ reply ]
[SECURITY] CVE-2014-0230: Apache Tomcat DoS 2015-05-05
Mark Thomas (markt apache org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

CVE-2014-0230 Denial of Service

Severity: Low

Vendor: The Apache Software Foundation

Versions Affected:
- - Apache Tomcat 8.0.0-RC1 to 8.0.8
- - Apache Tomcat 7.0.0 to 7.0.54
- - Apache Tomcat 6.0.0 to 6.0.43

Description:
When a response for a req

[ more ]  [ reply ]
F5 BIG-IQ Enumeration of users and Information Disclosure 2015-05-05
jplopezy gmail com

Hi,

I'm testing BIG-IQ v 0.0.7028,( no the last HF but i don't see the bug fix in the HF1) the new mngmt of F5 BIG-IP, i see that you are loggout and join to the next link

LINK : (where $user is the user)

https://127.0.0.1/mgmt/shared/authz/users/$user/

When i open this link and try some diff

[ more ]  [ reply ]
[SECURITY] [DSA 3251-1] dnsmasq security update 2015-05-05
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3251-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Salvatore Bonaccorso
May 05, 2015

[ more ]  [ reply ]
[ MDVSA-2015:227 ] mariadb 2015-05-05
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:227
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability 2015-05-05
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1354

Security Bulletin FortiGuard: http://www.fortiguard.com/advisory/FG-IR-15-005/

[ more ]  [ reply ]
vPhoto-Album v4.2 iOS - File Include Web Vulnerability 2015-05-05
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
vPhoto-Album v4.2 iOS - File Include Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1477

Release Date:
=============
2015-05-05

Vulnerability Laboratory ID (VL-ID):
================================

[ more ]  [ reply ]
[CVE-2014-8146/8147] - ICU heap and integer overflows / I-C-U-FAIL 2015-05-05
Pedro Ribeiro (pedrib gmail com)
tl;dr heap and integer overflows in ICU, many packages affected,
unknown if these can be exploited or not - everyone names vulns
nowadays, so I name these I-C-U-FAIL.

Hi,

I have found two vulnerabilities in the ICU library while fuzzing
LibreOffice, full details in the advisory below.
Disclosure o

[ more ]  [ reply ]
[SECURITY] [DSA 3250-1] wordpress security update 2015-05-04
Alessandro Ghedini (ghedo debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3250-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Alessandro Ghedini
May 04, 2015

[ more ]  [ reply ]
European Cyber Security Challenge 2015 2015-05-04
Ivan Buetler (ivan buetler csnc ch)
Hi Bugtraq,

The European Cyber Security Challenge 2015 started today. This security
competition among six European countries (Germany, Austria, UK, Switzerland,
Romania, Spain), supported by ENISA and run by Hacking-Lab started today.
Europe is seeking for young cyber talents between 14-20 years (j

[ more ]  [ reply ]
[ MDVSA-2015:226 ] fcgi 2015-05-04
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:226
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:224 ] ruby 2015-05-04
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:224
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
ESA-2015-084: EMC AutoStart Packet Injection Vulnerability 2015-05-04
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2015-084: EMC AutoStart Packet Injection Vulnerability

EMC Identifier: ESA-2015-084

CVE Identifier: CVE-2015-0538

Severity Rating: CVSS v2 Base Score: 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)

Affected products:

? EMC AutoStart versions 5.4.

[ more ]  [ reply ]
ESA-2015-077: EMC SourceOne Email Management Account Lockout 2015-05-04
Security Alert (Security_Alert emc com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ESA-2015-077: EMC SourceOne Email Management Account Lockout Policy Vulnerability

EMC Identifier: ESA-2015-077

CVE Identifier: CVE-2015-0531

Severity Rating: Medium CVSS v2 Base Score: 5.4 (AV:N/AC:H/Au:N/C:C/I:N/A:N)

Affected products:

[ more ]  [ reply ]
[ MDVSA-2015:225 ] cherokee 2015-05-04
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:225
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:223 ] directfb 2015-05-04
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:223
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:222 ] ppp 2015-05-04
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:222
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:221 ] clamav 2015-05-04
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:221
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[SECURITY] [DSA 3249-1] jqueryui security update 2015-05-03
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3249-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Sebastien Delafond
May 03, 2015

[ more ]  [ reply ]
[ MDVSA-2015:219 ] curl 2015-05-04
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:219
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
[ MDVSA-2015:220 ] curl 2015-05-04
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2015:220
http://www.mandriva.com/en/support/security/
___________________________________________________________

[ more ]  [ reply ]
(Page 4 of 1609)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus