CVE-2008-5655

MyioSoft EasyBookMarker 4.0 is affected by CVE-2008-5655 and related CVE-2008-5654, with concrete details describing SQL injection in the loginADP function pathway. Specifically, both CVEs reference vulnerabilities in EasyCalendar/EasyBookMarker components where the parameters (1) delete_folder a...

[SECURITY] Fedora 10 Update: awstats-6.8-3.fc10

Advanced Web Statistics is a powerful and featureful tool that generates advanced web server graphic statistics. This server log analyzer works from command line or as a CGI and shows you all information your log contai ns, in graphical web pages. It can analyze a lot of web/wap/proxy servers lik...

[SECURITY] Fedora 8 Update: awstats-6.8-3.fc8

Advanced Web Statistics is a powerful and featureful tool that generates advanced web server graphic statistics. This server log analyzer works from command line or as a CGI and shows you all information your log contai ns, in graphical web pages. It can analyze a lot of web/wap/proxy servers lik...

[SECURITY] Fedora 9 Update: dovecot-1.0.15-14.fc9

Dovecot is an IMAP server for Linux/UNIX-like systems, written with security primarily in mind. It also contains a small POP3 server. It supports mail in either of maildir or mbox formats. The SQL drivers and authentication plugins are in their subpackages...

CVE-2008-4008

CVE-2008-4008 describes a stack-based buffer overflow in the BEA WebLogic Server Apache Connector (mod_wl) affecting WebLogic Server–Apache integration. Affected BEA/Oracle WebLogic versions include 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7. The overflow arises in the Apach...

CVE-2008-4008

Unspecified vulnerability in the WebLogic Server Plugins for Apache component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information wa...

Gentoo Security Advisory GLSA 200711-11 (nagios-plugins)

The remote host is missing updates announced in advisory GLSA 200711-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200701-05 (kdegraphics-kfile-plugins)

The remote host is missing updates announced in advisory GLSA 200701-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200711-11 (nagios-plugins)

The remote host is missing updates announced in advisory GLSA 200711-11. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200701-05 (kdegraphics-kfile-plugins)

The remote host is missing updates announced in advisory GLSA 200701-05. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 8 Update: wireshark-1.0.3-1.fc8

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

[SECURITY] Fedora 8 Update: awstats-6.8-2.fc8

Advanced Web Statistics is a powerful and featureful tool that generates advanced web server graphic statistics. This server log analyzer works from command line or as a CGI and shows you all information your log contai ns, in graphical web pages. It can analyze a lot of web/wap/proxy servers lik...

default config values restored

This should be for 2.9.1 - this version was not yet available under "affects versions" when filing this bug. After updating from 2.9 to 2.9.1, most of my settings were overwritten by their default values. - public signup got enabled - the language changed back to english instead of german - e-mai...

FreeBSD Ports: nagios-plugins

The remote host is missing an update to the system as announced in the referenced advisory. VID 7453c85d-7830-11dc-b4c8-0016179b2dd5 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: nagios-plugins

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: gaim, ja-gaim, ko-gaim, ru-gaim

The remote host is missing an update to the system as announced in the referenced advisory. VID 5b8f9a02-ec93-11d8-b913-000c41e2cdad OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Brim 2.0.0 - SQL Injection / Cross-Site Scripting

|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...

[SECURITY] Fedora 9 Update: licq-1.3.5-2.fc9

Licq is a ICQ Client for the common ICQ network. It provides a graphical user interface based on QT and is enhanceable with many powerful plugins. For more information visit Licq's Homepage http://www.licq.org...

CVE-2008-2579

Unspecified vulnerability in the WebLogic Server Plugins for Apache, Sun and IIS web servers component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 has unknown impact and remote attack vectors...

CVE-2008-2579

CVE-2008-2579 affects WebLogic Server Plugins for Apache, Sun and IIS web servers bundled with BEA/Oracle WebLogic, specifically in BEA Product Suite versions 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7. The vulnerability is described as unspecified with unknown impact, but multipl...