Fedora 24 : 1:epiphany / webkitgtk4 (2016-f4b5897686)

Update WebKitGTK+ package to 2.14.1. Major changes in 2.14.0 : - Threaded compositor is enabled by default in both X11 and Wayland. - Accelerated compositing is now supported in Wayland. - Clipboard works in Wayland too. - Memory pressure handler always works even when cgroups is not present or n...

Coppermine Photo Gallery Catalog Enumeration Vulnerability

Coppermine Photo Gallery is a web-based album management system. The Coppermine Photo Gallery minibrowser.php script fails to adequately filter the 'folder' parameter, allowing remote attackers to exploit a vulnerability to enumerate directories...

LBS 2 跨站漏洞[Referer ]

LBS^2是由SIC开发一个单用户的Blog程序，因其的安全性和程序的执行快速，被很多的Bloger爱好，我也是其中一员，在使用的过程中，发现其安全性真的很好，不过有一个小Bug还是出现了。 LBS^2 http://www.voidland.com/ 用 minibrowser 浏览网站 在 Referer 那里写上 XSS 语句 "scriptalert""/scripta href="...

Mp3 file can execute code in Winamp [Sandblad advisory #5]

Sandblad advisory 5 - ---..---..---..---..---..---..---..---..---..---..---..---..---- Title: Mp3 file can execute code in Winamp. Date: 2002-04-26 Software: Nullsoft Winamp 2.79 Rating: High because mp3 files are widely trusted as safe. Impact: Specially crafted mp3 file can execute arbitrary...