Fedora 7 : openldap-2.3.34-6.fc7 (2008-1307)

Tue Feb 5 2008 Jan Safranek 2.3.34-6 - fix CVE-2007-6698 431409 - Mon Jan 14 2008 Jan Safranek 2.3.34-5 - fix default slurpd directory to /var/lib/ldap 424831 - Fri Nov 2 2007 Jan Safranek 2.3.34-4 - fix various security flaws 360081 - Fri Jul 13 2007 Jan Safranek 2.3.34-3 - Fix initscript return...

CVE-2008-0645

Multiple PHP remote file inclusion vulnerabilities in Portail Web Php 2.5.1.1 allow remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter to 1 config/conf-activation.php, 2 menu/item.php, and 3 modules/confmodules.php in admin/system/; and 4 system/login.php. NOTE: th...

[SECURITY] [DSA 1479-1] New Linux 2.6.18 packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1479 [email protected] http://www.debian.org/security/ dann frazier January 29, 2008 http://www.debian.org/security/faq -...

SetCMS 3.6.5 - Remote Command Execution

SetCMS 3.6.5 - Remote Command Execution !/usr/bin/perl SetCMS v3.6.5 setcms.org remote commands execution exploit by RST/GHC o4.o9.2oo6 coded by 1dt.w0lf THIS IS UNPUBLISHED RST/GHC EXPLOIT CODE KEEP IT PRIVATE про багу: file: functions.php FUNCTION ip global $userid; ifgetenv'HTTPCLIENTIP...

SetCMS 3.6.5 (setcms.org) Remote Command Execution Exploit

Exploit for unknown platform in category web applications ========================================================== SetCMS 3.6.5 setcms.org Remote Command Execution Exploit ========================================================== !/usr/bin/perl SetCMS v3.6.5 setcms.org remote commands executio...

CVE-2007-6691

Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to 1 "hotlink protection" in the URL rewrite module, 2 a WebDAV view in the WebDAV module, 3 a comment view in the Comment module, 4 unspecified "item information disclosure attacks" in the Core modu...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Menalto Gallery before 2.2.4 allow remote attackers to inject arbitrary web script or HTML via crafted filenames to the 1 Core or 2 add-item modules; or via 3 HTTP PROPPATCH in the WebDAV module...

CVE-2007-6691

Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to 1 "hotlink protection" in the URL rewrite module, 2 a WebDAV view in the WebDAV module, 3 a comment view in the Comment module, 4 unspecified "item information disclosure attacks" in the Core modu...

CVE-2007-6691

Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to 1 "hotlink protection" in the URL rewrite module, 2 a WebDAV view in the WebDAV module, 3 a comment view in the Comment module, 4 unspecified "item information disclosure attacks" in the Core modu...

Information disclosure

Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to 1 "hotlink protection" in the URL rewrite module, 2 a WebDAV view in the WebDAV module, 3 a comment view in the Comment module, 4 unspecified "item information disclosure attacks" in the Core modu...

CVE-2007-6691

Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to 1 "hotlink protection" in the URL rewrite module, 2 a WebDAV view in the WebDAV module, 3 a comment view in the Comment module, 4 unspecified "item information disclosure attacks" in the Core modu...

CVE-2007-6691

CVE-2007-6691 affects Menalto Gallery

CORE FORCE Firewall 0.95.167 and Registry Modules - Multiple Local Kernel Buffer Overflow Vulnerabilities

source: https://www.securityfocus.com/bid/27341/info CORE FORCE Firewall and Registry modules are prone to multiple local kernel buffer-overflow vulnerabilities because the software fails to adequately verify user-supplied input. Local attackers can exploit these issues to cause denial-of-service...

Debian: Security Advisory (DSA-580-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

osData <= 2.08 Modules Php121 Local File Inclusion Vulnerability

No description provided by source. ========================================================================= osData = 2.08 Modules Php121 Local File Include Vulnerability ========================================================================= Found by : Cold z3ro , http://www.Hackteach.org/cc/...

osdata-lfi.txt

========================================================================= osData = 2.08 Modules Php121 Local File Include Vulnerability ========================================================================= Found by : Cold z3ro , http://www.Hackteach.org/cc/...

osData <= 2.08 Modules Php121 Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================ osData = 2.08 Modules Php121 Local File Inclusion Vulnerability ================================================================...

osData 2.08 Modules Php121 - Local File Inclusion

osData 2.08 Modules Php121 - Local File Inclusion ========================================================================= osData = 2.08 Modules Php121 Local File Include Vulnerability ========================================================================= Found by : Cold z3ro ,...

osData 2.08 Modules Php121 - Local File Inclusion

========================================================================= osData = 2.08 Modules Php121 Local File Include Vulnerability ========================================================================= Found by : Cold z3ro , http://www.Hackteach.org/cc/...

Design/Logic Flaw

The bsystemcommentsshow function in htdocs/modules/system/blocks/systemblocks.php in XOOPS before 2.0.18 does not check permissions, which allows remote attackers to read the comments in restricted modules...