Allow issue security level to use any custom field that implements UserCFNotificationTypeAware

panel:bgColor=e7f4fa NOTE: This suggestion is for JIRA Cloud. Using JIRA Server? See the corresponding suggestion|http://jira.atlassian.com/browse/JRASERVER-18099. panel It would be useful to be able to set the security level on an issue to include everyone who participated on an issue so if you...

[SECURITY] Fedora 11 Update: eclipse-3.4.2-13.fc11

The Eclipse platform is designed for building integrated development environments IDEs, server-side applications, desktop applications, and everything in between...

openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-705)

The Sun JDK 6 was updated to Update13 to fix various bugs and security issues. CVE-2009-1093: LdapCtx in the LDAP service in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.124 and earlier; and 1.4.219 and earlier do...

Development tips: ASP Trojan FTP and decompression-vulnerability warning-the black bar safety net

I think we all have some opened 8 0 port of broiler bar,if it is domestic for security do not look down,if you do not wish to see,I dedicate ugly,in order to initiate. In broilers placed on the website,the most troublesome is probably the update and upload a lot of files, Terminal Services broad...

Alibaba-clone CMS - SQL Injection / Blind SQL Injection

Alibaba-clone CMS SQL/bSQL Remote SQL Injection + Author : 599eme Man + Contact : [email protected] + Dowload : http://blog.duslerim.net/cms/alibabacom-clone-new.html + Big Thanks to: Moudi : + Exploit : http://www.site.com/path/supplier/viewcontactdetails.php?SellerID=Blind or SQL...

CVE-2009-0217

The design of the W3C XML Signature Syntax and Processing XMLDsig recommendation, as implemented in products including 1 the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; 2 the WebLogic Server component in BEA Product Suite 10.3, 10.0...

CVE-2009-2439

Multiple SQL injection vulnerabilities in Web Development House Alibaba Clone allow remote attackers to execute arbitrary SQL commands via the 1 IndustryID parameter to category.php and the 2 SellerID parameter to supplier/viewcontactdetails.php. NOTE: this is a product that was developed by a...

CVE-2009-2439

Multiple SQL injection vulnerabilities in Web Development House Alibaba Clone allow remote attackers to execute arbitrary SQL commands via the 1 IndustryID parameter to category.php and the 2 SellerID parameter to supplier/viewcontactdetails.php. NOTE: this is a product that was developed by a...

CVE-2009-2439

CVE-2009-2439 affects a third-party product named Alibaba Clone (not Alibaba Group). The vulnerability is due to SQL injection in two user-supplied parameters: IndustryID in category.php and SellerID in supplier/view_contact_details.php. Remote attackers could cause arbitrary SQL execution, with ...

eEye Retina WiFi Security Scanner 1.0 (.rws Parsing) Buffer Overflow PoC

Exploit for unknown platform in category dos / poc ======================================================================== eEye Retina WiFi Security Scanner 1.0 .rws Parsing Buffer Overflow PoC ======================================================================== !/usr/bin/python Title: Retin...

IBM Shows Off Way to Hide Confidential Data Online

From Network World Michael Cooney Researchers at IBM have developed software that uses optical character recognition and screen scraping to identify and cover up confidential data. According to IBM the driving idea behind the MAGEN Masking Gateway for Enterprises system is to prevent data leakage...

Opera Unite: Botmaster's Best Friend?

From IDG News Service Robert McMillan Opera has added a lot of cool new features to its upcoming Opera 10 browser, and one of them is almost sure to catch the eye of cyber criminals. It’s called Opera Unite, and while Opera promotes it as an exciting new platform for next-generation Web...

[SECURITY] Fedora 10 Update: icu-4.0-3.1.fc10

Tools and utilities for developing with icu...

Solaris Update for Sun Java(TM) System LDAP Java Development Kit 119725-06

Check for the Version of Sun JavaTM System LDAP Java Development Kit OpenVAS Vulnerability Test Solaris Update for Sun JavaTM System LDAP Java Development Kit 119725-06 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is fr...

[SECURITY] Fedora 11 Update: php-Smarty-2.6.25-1.fc11

Although Smarty is known as a "Template Engine", it would be more accurately described as a "Template/Presentation Framework." That is, it provides the programmer and template designer with a wealth of tools to automate tasks commonly dealt with at the presentation layer of an application. I stre...

Brad Arkin on Adobe's Quarterly Patch Updates, the JBIG2 Flaw and Secure Software Development

Dennis Fisher talks with Brad Arkin, director of product security and privacy at Adobe, about the company’s new quarterly patch release program, its Secure Product Lifecycle and how the JBIG2 flaw spurred major changes at Adobe. Download Subscribe to the Digital Underground podcast on Podcast aud...

Jeremiah Grossman on Web App Security, Secure Development and When Web Security Will Improve

Dennis Fisher talks with Jeremiah Grossman, CTO and founder of WhiteHat Security, about the company’s new Website Vulnerability Statistics report, why SQL injection is still such a problem and when Web application security may improve. Download Subscribe to the Digital Underground podcast on...

Critical: Red Hat Security Advisory: java-1.5.0-ibm security update

Updated java-1.5.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. The IBM 1.5.0 Java release includes the IBM Java 2...

OpenJDK Pack200 Buffer overflow vulnerability (6792554)

Buffer overflow in unpack200 in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers...

OpenJDK Pack200 Buffer overflow vulnerability (6792554)

Integer overflow in unpack200 in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers...