EUVD-2022-27927

Malicious code in bioql PyPI...

Geeklog 1.3.7 - Homepage User HTML Injection

Geeklog 1.3.7 - Homepage User HTML Injection source: https://www.securityfocus.com/bid/6604/info Geeklog is prone to HTML injection attacks. The user account 'Homepage' field is not sufficiently sanitized of HTML and script code. As a result, a malicious user may inject malicious HTML and script...

R7-0003: Nautilus Symlink Vulnerability

My mail client, Mozilla 1.0 RC1, mangles this advisory and ruins the signature. See attached file for signed version. Rapid 7, Inc. Security Advisory Visit http://www.rapid7.com/ to download NeXposetm, our advanced vulnerability scanner. Linux and Windows 2000 versions are available now! Rapid 7...

HeliSec: StarOffice symlink exploit

= Helios Security and Administration = - Hi everyone, StarOffice creates a temporary directory in /tmp called soffice.tmp, with permissions 0777. Into this directory other temporary files are creates, with the format: svZZZZ.tmp, where ZZZZ in a four or five digits number. StarOffice not only...

eEye Digital Security IRIS 1.0.1 SpyNet CaptureNet 3.0.12 - Remote Buffer Overflow

eEye Digital Security IRIS 1.0.1 SpyNet CaptureNet 3.0.12 - Remote Buffer Overflow source: https://www.securityfocus.com/bid/1627/info IRIS from eEye Digital Security is a protocol analyzer geared towards network management, it is currently in BETA. This product was formerly known as SpyNet...