Debian DLA-1436-1 : gosa security update

Fabian Henneke discovered a cross-site scripting vulnerability in the password change form of GOsa, a web-based LDAP administration program. For Debian 8 'Jessie', this problem has been fixed in version 2.7.4+reloaded2-1+deb8u3. We recommend that you upgrade your gosa packages. NOTE: Tenable...

europ INNET Web Studio Administration Program 2.0 XSS / CSRF / LFI

====================================================== Vulnerable software: Administration Programm v 2.0 Vendor: europ INNET Web Studio, www.europ-innet.com ====================================================== Vulnerabilities: //insertguestbook.php ==============VULNERABLE CODE...