Secunia Security Advisory - A vulnerability has been reported in Ticket Support Script, which can be exploited by malicious people to conduct cross-site request forgery attacks.
b81ca565b8b6859f3ec4438a0d3c7da88d55b5a8673769eafa78e7bf4e8af644Secunia Security Advisory - A vulnerability has been reported in Hosting Directory, which can be exploited by malicious people to conduct cross-site request forgery attacks.
873a17d7e3ed1ca5d093b3254d44d439c11bb1e48260a60139069241ba80fcbfSecunia Security Advisory - A vulnerability has been reported in the Print module for Drupal, which can be exploited by malicious people to conduct cross-site scripting attacks.
feab1cb29e32d4511361eb105d1c9d46d08e2fcc2e42b526cbb95926c93f045eSecunia Security Advisory - A vulnerability has been reported in AlstraSoft Site Uptime Enterprise, which can be exploited by malicious people to conduct cross-site request forgery attacks.
11ead264254199a6bc7bc64218ef74e99875f0ebd4a4432fec9744cbe03fbf50Secunia Security Advisory - A vulnerability has been reported in Juniper IVE OS, which can be exploited by malicious people to conduct cross-site scripting attacks.
7f2939c51ae2de49c84a3603094e0241b465006371436fd834f9291f9d7516a0Secunia Security Advisory - Two vulnerabilities have been reported in Sencha SNS, which can be exploited by malicious people to conduct cross-site request forgery and session fixation attacks.
406d336720676cba90bf6a43155bd06e1ae76fdb29650eff0d8dcfb133dc6699Secunia Security Advisory - SUSE has issued an update for chromium and v8. This fixes multiple vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
e07cd3384fd875d615df9bb9ae54c46ab04482fef654463641731992efa6018eSecunia Security Advisory - A vulnerability has been reported in Juniper IVE OS, which can be exploited by malicious people to conduct cross-site scripting attacks.
9c885039dd4a5ea03c2cbbac3693f855bbb1db856940a8abb123c687747653adSecunia Security Advisory - A vulnerability has been reported in various ABB products, which can be exploited by malicious people to compromise a user's system.
fe07b0214bcc8f17046cad0d75c62d0dcaf422359965dce620abc45ac6a5d21aSecunia Security Advisory - Debian has issued an update for libpng. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
ba54f3394e56e43d675a8990a1a35da9990063a5834a555f776013c2bb5f7bc2Secunia Security Advisory - Multiple vulnerabilities have been reported in ImageMagick, which can be exploited by malicious people to cause a DoS (Denial of Service).
8f2e7faab6cca1c60a4985de0dc9c8c03429382a4d66992d6915b26d785bd2a7Secunia Security Advisory - A vulnerability has been reported in LibTIFF, which can be exploited by malicious people to compromise an application using the library.
ea06128a7043bb5311c923e35e0e8541519539404ef9be97214ea7a24767305aSecunia Security Advisory - Filip Palian has reported two security issues and two vulnerabilities in Sourcefire Defense Center and Sourcefire 3D Sensor, which can be exploited by malicious users to conduct script insertion attacks and bypass certain security restrictions and by malicious people to disclose potentially sensitive information.
e1a5f7ca524485b86e4685f3e1a8c3c01d66003e867a3e4fc6eafe4cdb6e0a79Secunia Security Advisory - Mark Stanislav has discovered two vulnerabilities in e-ticketing, which can be exploited by malicious people to conduct SQL injection attacks.
3c563bcac4d09426bda7f6dad7002626aee0de6e8efcf9a8be0f26589ed0f3d8Secunia Security Advisory - Three vulnerabilities have been reported in Cisco WebEx Player, which can be exploited by malicious people to compromise a user's system.
909f84dc8b10f0fce7fd54ca9bce838b12a680e1d7dea97fb66a31821cfab0e6Secunia Security Advisory - Ubuntu has issued an update for tiff. This fixes two vulnerabilities, which can be exploited by malicious people to compromise an application using the library.
deee72c0b1b94b5def5a69a720210140753edf9c5e8ddb724fcd47e407027290Secunia Security Advisory - Debian has issued an update for tiff. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
ef21b4e0b00b3f5f87ae5f2da852e05710b9760d1b9df578019b86ee0b7678d2Mandriva Linux Security Advisory 2012-053 - Cross-site scripting vulnerability in ocsinventory in OCS Inventory NG 2.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The updated packages have been patched to correct this issue.
e062601fd9052b4265d4c0f2a927f4c0066187386040527ee66a5217eb8916dfPlumeCMS versions 1.2.4 and below suffer from multiple persistent cross site scripting vulnerabilities.
04d6918248236ab662fd1380343bdad9bc958f62472be04383e3849f160f59abCisco Security Advisory - The Cisco WebEx Recording Format (WRF) player contains three buffer overflow vulnerabilities. In some cases, exploitation of the vulnerabilities could allow a remote attacker to execute arbitrary code on the system with the privileges of a targeted user. The Cisco WebEx Players are applications that are used to play back WebEx meeting recordings that have been recorded on a WebEx meeting site or on the computer of an online meeting attendee. The players can be automatically installed when the user accesses a recording file that is hosted on a WebEx meeting site. The players can also be manually installed for offline playback after downloading the application from www.webex.com. If the WRF player was automatically installed, it will be automatically upgraded to the latest, non-vulnerable version when users access a recording file that is hosted on a WebEx meeting site. If the WRF player was manually installed, users will need to manually install a new version of the player after downloading the latest version from www.webex.com. Cisco has updated affected versions of the WebEx meeting sites and WRF player to address these vulnerabilities.
5a6fd0961849fbf9e0e2f35c8d9ff27609e9c090b4f86b93378ccddd00e0762dApple Security Advisory 2012-04-03-1 - Java for OS X 2012-001 and Java for Mac OS X 10.6 Update 7 is now available. It addresses multiple vulnerabilities that exist in Java 1.6.0_29, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox.
9b2491e0649107046854a66362922281cb8a88f0446d805f1131dd3c839681abThe Printer, Email and PDF third party module versions 6.x and 7.x for Drupal suffer from a cross site scripting vulnerability.
3a9fa042b84d0b09a2b5f4a2019c52f6bdffe02082a4499e8d6b1b55a1a3f2c0Xion Audio Player version 1.0.127 suffers from a denial of service vulnerability.
db8cef3667f3d1b365a696b8e7a48b9cc868b4d1f642d18265a7c22ffd7d3d4bHP Security Bulletin HPSBMU02749 SSRT100793 - A potential security vulnerability has been identified with HP Business Availability Center (BAC) running on Windows. The vulnerability could be remotely exploited to allow cross site scripting (XSS). Revision 1 of this advisory.
c57e7b4f8cac332e6b3e9804734a8bedd8fcc96e95ef87718c5d75f770b40e38The Janrain Engage third-party Drupal module suffers from a sensitive data protection vulnerability.
63d8dd37d587a6dc848e72c0d6d8d8ebd6bd97cd050663f08f086de0195c168e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed