Nexus Nepall SQL Injection
Nexus Nepall suffers from a remote SQL injection vulnerability in directory.php.
View ArticleCanoy Softwares SQL Injection
Canoy Softwares suffers from a remote SQL injection vulnerability in search_result.php.
View ArticleWOC Consulting SQL Injection
WOC Consulting suffers from a remote SQL injection vulnerability in search_result.php.
View ArticleFunnel Web SQL Injection
Funnel Web suffers from a remote SQL injection vulnerability in products.php.
View ArticleWebkit Memory Corruption / Code Execution
Remote exploitation of a memory corruption vulnerability in WebKit, as included with multiple vendors' browsers, could allow an attacker to execute arbitrary code with the privileges of the current...
View ArticleGo Null Yourself E-Zine Issue 05
Go Null Yourself E-zine Issue 5 - Topics in this issue include Public-Key Encryption and RSA, Iridium Satellite Network, An Introduction to x86 NASM, Hacking 15A Announcements, and more.
View ArticleDebian Security Advisory 2282-1
Debian Linux Security Advisory 2282-1 - Two vulnerabilities have been discovered in KVM, a solution for full virtualization on x86 hardware.
View ArticleDebian Security Advisory 2283-1
Debian Linux Security Advisory 2283-1 - Tim Zingelmann discovered that due an incorrect configure script the kerborised FTP server failed to set the effective GID correctly, resulting in privilege...
View ArticleMusicbox 3.7 Cross Site Scripting / SQL Injection
Musicbox versions 3.7 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
View ArticleSafari / Webkit Memory Corruption Proof Of Concept
Webkit memory corruption proof of concept exploit that can be leveraged against Safari versions prior to 5.1 and 5.0.6.
View ArticleTinyCrypt Algorithm 1.0
TinyCrypt is a fast, simple encryption algorithm that delivers high security for encryption at the file level. Files are compressed using fast LZO compression.
View ArticleIleys Web Control 2.0 SQL Injection
Ileys Web Control version 2.0 suffers from a remote SQL injection vulnerability in view.php.
View ArticleDebian Security Advisory 2284-1
Debian Linux Security Advisory 2284-1 - Juraj Somorovsky, Andreas Mayer, Meiko Jensen, Florian Kohlar, Marco Kampmann and Joerg Schwenk discovered that Shibboleth, a federated web single sign-on system...
View ArticleMandriva Linux Security Advisory 2011-119
Mandriva Linux Security Advisory 2011-119 - An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the libsndfile library processed certain Ensoniq PARIS Audio Format...
View ArticleUbuntu Security Notice USN-1173-1
Ubuntu Security Notice 1173-1 - It was discovered that FreeType did not correctly handle certain malformed Type 1 font files. If a user were tricked into using a specially crafted font file, a remote...
View ArticleSolaris USB Configuration Descriptor Kernel Stack Overflow
Andy Davis of NGS Secure has discovered a High risk vulnerability in Oracle Solaris. A local attacker can send a malformed USB configuration descriptor via a malicious USB device and trigger a kernel...
View ArticlephpBB AJAX Chat/Shoutbox Cross Site Request Forgery
The AJAX Chat/Shoutbox module in phpBB suffers from a cross site request forgery vulnerability.
View ArticleJoomla VirtualMoney SQL Injection
The Joomla VirtualMoney component suffers from a remote SQL injection vulnerability.
View ArticleIleys Technology Inc. SQL Injection
Sites designed and developed by Ileys Technology Inc. suffer from a remote SQL injection vulnerability.
View ArticleFreeRADIUS OCSP Responder Reply Parsing
During a test of the OCSP support in FreeRADIUS, a security vulnerability has been found in the way the FreeRADIUS code parses the replies from an OCSP responder. This allows a remote attacker to use a...
View Article
