|
|
Colapse all |
Post message
[slackware-security] mozilla-firefox (SSA:2016-117-01) 2016-04-27 Slackware Security Team (security slackware com) [SECURITY] [DSA 3557-1] mysql-5.5 security update 2016-04-26 Salvatore Bonaccorso (carnil debian org) Sophos XG Firewall (SF01V) - Persistent Web Vulnerability 2016-04-26 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Sophos XG Firewall (SF01V) - Persistent Web Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1734 ID: 5740075 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID (VL-ID): ================ [ more ] [ reply ] VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability 2016-04-26 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1828 Release Date: ============= 2016-04-26 Vulnerability Laboratory ID (VL-ID): ============================= [ more ] [ reply ] Trend Micro (Account) - Email Spoofing Web Vulnerability 2016-04-26 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Trend Micro (Account) - Email Spoofing Web Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1693 Trend Micro ID: 1-1-1035655030 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID (VL-ID) [ more ] [ reply ] [security bulletin] HPSBGN03582 rev.1 - HPE Helion CloudSystem using glibc, Remote Code Execution, Denial of Service (DoS) 2016-04-25 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c05098877 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05098877 Version: 1 HPSBGN03582 r [ more ] [ reply ] Negin Group CMS - (v) Multiple Web Vulnerabilities 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Negin Group CMS - (v) Multiple Web Vulnerabilities References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1831 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID (VL-ID): ==================================== [ more ] [ reply ] Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1820 Release Date: ============= 2016-04-19 Vulnerability Laboratory ID (VL-ID): ========================= [ more ] [ reply ] Cyberoam Central Console v02.03.1 - Multiple Persistent Vulnerabilities 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Cyberoam Central Console v02.03.1 - Multiple Persistent Vulnerabilities References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1721 Cyberoam Ticket ID: #1001314 Case ID: CCC-4208 Release Date: ============= 2016-04-18 Vuln [ more ] [ reply ] UBNT Bug Bounty #2 - XML External Entity Vulnerability 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== UBNT Bug Bounty #2 - XML External Entity Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1466 Release Date: ============= 2016-04-14 Vulnerability Laboratory ID (VL-ID): ================================ [ more ] [ reply ] Totemomail v4.x & v5.x - Filter Bypass & Persistent Vulnerability 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Totemomail v4.x & v5.x - Filter Bypass & Persistent Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1769 Release Date: ============= 2016-04-08 Vulnerability Laboratory ID (VL-ID): ===================== [ more ] [ reply ] C & C++ for OS - Filter Bypass & Persistent Vulnerability 2016-04-25 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== C & C++ for OS - Filter Bypass & Persistent Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1825 Release Date: ============= 2016-04-14 Vulnerability Laboratory ID (VL-ID): ============================= [ more ] [ reply ] Telisca IPS Lock 2 Vulnerability 2016-04-25 karim reda Fakhir (karim fakhir gmail com) a vulnerability in IPS LOCK , below is the description : # Exploit Title: TELISCA IPS LOCK ABUSE # Date: 13/01/2016 # Software Link: http://www.telisca.com/products/ip-phone-apps/ipslock/ # Exploit Author: Fakhir Karim Reda # Contact: karim.fakhir (at) gmail (dot) com [email concealed] # Metasploit module : https://www.rapid [ more ] [ reply ] Unlimited Pop-Ups WordPress Plugin XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : Unlimited Pop-Ups WordPress Plugin #Exploit Author : Rahul Pratap Singh #Version : 1.4.3 #Home page Link : http://codecanyon.net/item/unlimited-popups-wordpress-plugin/8575498 #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 [ more ] [ reply ] Easy Social Share Buttons for WordPress XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product :Easy Social Share Buttons for WordPress #Exploit Author : Rahul Pratap Singh #Version :3.2.5 #Home page Link : http://codecanyon.net/item/easy-social-share-buttons-for-wordpress/63944 76 #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulprat [ more ] [ reply ] Google SEO Pressor Snippet Plugin XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : Google SEO Pressor Snippet Plugin #Exploit Author : Rahul Pratap Singh #Version :1.2.6 #Home page Link : https://wordpress.org/plugins/google-seo-author-snippets/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4 [ more ] [ reply ] Echosign Plugin for WordPress XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : Echosign Plugin #Exploit Author : Rahul Pratap Singh #Version :1.1 #Home page Link : https://wordpress.org/plugins/echosign/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4/2016 XSS Vulnerability: ----------- [ more ] [ reply ] Tweet-wheel XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product :Tweet-wheel #Exploit Author : Rahul Pratap Singh #Version :1.0.3.2 #Home page Link : https://wordpress.org/plugins/tweet-wheel/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4/2016 XSS Vulnerability: --------- [ more ] [ reply ] CM-AD-Changer XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : cm-ad-changer #Exploit Author : Rahul Pratap Singh #Version :1.7.2 #Home page Link : https://wordpress.org/plugins/cm-ad-changer/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4/2016 XSS Vulnerability: ------ [ more ] [ reply ] Persian-woocommerce-sms XSS Vulnerability 2016-04-23 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product :Persian-woocommerce-sms #Exploit Author : Rahul Pratap Singh #Version :3.3.2 #Home page Link : https://wordpress.org/plugins/persian-woocommerce-sms/ #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 21/4/2016 XSS Vul [ more ] [ reply ] Remote Code Execution in Shopware <5.1.5 (CVE-2016-3109) 2016-04-23 david vieira-kurz immobilienscout24 de CREDITS ======== This issue has been identified by David Vieira-Kurz of Immobilien Scout GmbH. CVE ==== CVE-2016-3109 AFFECTED PRODUCT ================== Shopware < 5.1.5 : https://en.shopware.com/ IMPACT ======= This issue has been triaged with the highest severity (CRITICAL) by the Shopware mai [ more ] [ reply ] [security bulletin] HPSBMU03573 rev.1 - HPE System Management Homepage (SMH), Remote Disclosure of Information 2016-04-22 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c05096953 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05096953 Version: 1 HPSBMU03573 [ more ] [ reply ] [security bulletin] HPSBGN03580 rev.1 - HP Data Protector, Remote Code Execution, Remote Unauthorized Disclosure of Information 2016-04-22 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c05085988 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05085988 Version: 1 HPSBGN03580 [ more ] [ reply ] SEC Consult SA-20160422-1 :: Multiple vulnerabilities in Digitalstrom Konfigurator 2016-04-22 SEC Consult Vulnerability Lab (research sec-consult com) SEC Consult SA-20160422-0 :: Insecure credential storage in my devolo Android app 2016-04-22 SEC Consult Vulnerability Lab (research sec-consult com) |
|
Privacy Statement |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
[slackware-security] mozilla-firefox (SSA:2016-117-01)
New mozilla-firefox packages are available for Slackware 14.1 and -current to
fix security issues.
Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/p
[ more ] [ reply ]