[SECURITY] Fedora 20 Update: python-django14-1.4.20-1.fc20

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459...

SUSE SLED11 / SLES11 Security Update : FUSE (SUSE-SU-2015:1024-1)

This update for FUSE fixes the following security issue : CVE-2015-3202: FUSE did not clear the environment upon execution of external programs. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

[SECURITY] Fedora 22 Update: haskell-platform-2014.2.0.0.2-4.fc22

Haskell Platform is a suite of stable and well used Haskell libraries and tools. It provides a good starting environment for Haskell development...

flash-plugin: multiple code execution issues fixed in APSB15-11

Integer overflow in Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143...

Sql injection

SQL injection vulnerability in SAP HANA Web-based Development Workbench allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Notes 2153892...

CVE-2015-4159

The CVE-2015-4159 entry concerns SAP HANA Web-based Development Workbench with an SQL injection vulnerability. The affected component is the Web-based Development Workbench in SAP HANA, where remote attackers can submit specially crafted SQL commands to manipulate or obtain data. The root cause i...

The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the kernel-PAE-devel-2.6.18 package of the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

The vulnerability of the Red Hat Enterprise Linux operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the kernel-devel-3.10.0 package of the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. The vulnerability can be exploited locally...

Vulnerabilities of the Red Hat Enterprise Linux operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the libvirt-devel-0.10.2 package of the Red Hat Enterprise Linux operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information...

Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the accessibility of protected information

The multiple vulnerabilities of the openssl-devel-1.0.1e package for the Red Hat Enterprise Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the kernel-devel-2.6.32 package of the Red Hat Enterprise Linux operating system can be exploited, leading to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

From the client game bug looking of security risks-vulnerability warning-the black bar safety net

Although the now app development a growing trend in web applications, large-scale software also makes extensive use of the existing framework with the existing frameworks and engines improve, the vast majority of security issues have been resolved. But encountered some customization needs,...

SAP HANA Web-based Development Workbench SQL Injection Vulnerability

SAP HANA is a high-performance real-time data analytics platform that provides data querying capabilities that allow users to directly query and analyze large amounts of real-time business data.SAP HANA Web-based Development Workbench is a Web-based development platform. A SQL injection...

SUSE SLED11 / SLES11 Security Update : libfreebl3 (SUSE-SU-2013:1920-1)

Mozilla NSS has been updated to the 3.15.3.1 security release. The update blacklists an intermediate CA that was abused to create man in the middle certificates. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has...

SAP NetWeaver RFC SDK Information Disclosure Vulnerability

SAP NetWeaver is a business suite of solutions that provides a development and runtime environment for SAP applications. the RFC SDK is one of the software development kits used to build C++ function-controlled RFC communications on an external client. An information disclosure vulnerability exis...

! metasploit exploit module development tutorial! - Vulnerability warning-the black bar safety net

How to write a Metasploit POST-development module ! Metasploit currently has a about a 1 5 0 a exploit module. Most of the exploits using the module are through the Windows, Solaris and Cisco these platforms were collected. At the same time, Metasploit can also for these modules on the line...

TORNADO Computer Trading CMS - SQL Injection Vulnerability

Document Title: =============== TORNADO Computer Trading CMS - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1489 Release Date: ============= 2015-05-05 Vulnerability Laboratory ID VL-ID: ====================================...

IBM JDK Java Information Disclosure Vulnerability

IBM Java is a JRE runtime environment. An information disclosure vulnerability exists in the IBM JDK Java virtual machine, which allows attackers to exploit the vulnerability to bypass privilege checks and gain access to sensitive information...

[USN-2539-1] Django vulnerabilities

========================================================================== Ubuntu Security Notice USN-2539-1 March 23, 2015 python-django vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivative...