Fedora 21 : xen-4.4.3-3.fc21 (2015-15946)

libxl fails to honour readonly flag on disks with qemu-xen XSA-142 possible fix ---- update to xen-4.4.3, including Use after free in QEMU/Xen block unplug protocol XSA-139, CVE-2015-5166, QEMU leak of uninitialized heap memory in rtl8139 device model XSA-140, CVE-2015-5165 Note that Tenable...

Gratipay: Authentication errors in server side validaton of E-MAIL

To be honest, I'm not sure if there is any real security implications of this bug, but it's something which should be fixed at some point since it'll be pretty easy. I'm going to describe the issue with reproducible steps: 1. Navigate to Gratipay Settings Page...

Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software.

Dcrab 's Security Advisory http://icis.digitalparadox.org/dcrab http://www.hackerscenter.com/ Severity: High Title: Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software. Date: March 29, 2005 Summary: There are multiple sql injection, xss...

Multiple sql injection, and xss vulnerabilities in PortalApp

Dcrab 's Security Advisory http://icis.digitalparadox.org/dcrab http://www.hackerscenter.com/ Severity: Medium Title: Multiple sql injection, and xss vulnerabilities in PortalApp. Date: March 30, 2005 Vendor: AspApp Vendor site: http://www.aspapp.com Summary: There are multiple sql injection, xss...