EUVD-2013-2264

Malware in sbrugna...

CVE-2013-2318

The Content Provider in the MovatwiTouch application before 1.793 and MovatwiTouch Paid application before 1.793 for Android does not properly restrict access to authorization information, which allows attackers to hijack Twitter accounts via a crafted application...

Sensitive Information Disclosure

ibexa/solr is vulnerable to Sensitive Information Disclosure. The vulnerability arises due to a flaw in Iexa's Solr search engine authentication, which can reveals sensitive authorization information...

Samsung isemtelephony information leakage vulnerability

Samsung isemtelephony is a telephony service for Samsung SAMSUNG mobile devices. samsung isemtelephony suffers from an information disclosure vulnerability that stems from incorrect authorization in isemtelephony, which could be exploited by an attacker to obtain a CID without permission...

PYSEC-2021-44

Products.PluggableAuthService is a pluggable Zope authentication and authorization framework. In Products.PluggableAuthService before version 2.6.0 there is an information disclosure vulnerability - everyone can list the names of roles defined in the ZODB Role Manager plugin if the site uses this...

MGASA-2014-0273 Updated kernel packages fixes security vulnerabilities

The kernel has been updated to the upstream 3.10.44 longterm kernel, and fixes the following security issues: The Netlink implementation in the Linux kernel through 3.14.1 does not provide a mechanism for authorizing socket operations based on the opener of a socket, which allows local users to...

WP-Forum Cross Site Scripting / SQL Injection

Multiple Vulnerabilities in WP Forum WordPress Plugin 1. Advisory Information Title: Multiple Vulnerabilities in WP-Forum Advisory URL: http://www.charleshooper.net/advisories/ Date Published: 12/17/2010 Vendors Contacted: WordPress. Maintainer of plugin is unreachable. 2. Summary WP Forum is a...