[CVE-2012-3873] Openconstructor CMS 3.12.0 'id' parameter multiple SQL injection vulnerabilities

Title: Openconstructor CMS 3.12.0 'id' parameter multiple SQL injection vulnerabilities Affected Software: http://www.openconstructor.org/ http://code.google.com/p/openconstructor/downloads/list http://esectorsolutions.com/about/whats-new/esector-news/detailed/?id=234 Description: Openconstructor...

Tekno.Portal v0.1b 'link.php' Blind SQL Injection Vulnerability

====================================================== Tekno.Portal v0.1b - Blind SQL Injection in "link.php" ====================================================== Exploit Title: Tekno.Portal v0.1b 'link.php' Blind SQL Injection Vulnerability Date: 08-01-2012 Author: Socket0x03 Alvaro J. Gene...

ocPortal 7.1.5 <= | Open URL Redirection Vulnerability

OVERVIEW ocPoral CMS 7.1.5 and lower versions are vulnerable to Open URL Redirection. 2. BACKGROUND ocPortal is the website Content Management System a CMS for building and maintaining a dynamic website. ocPortal's powerful feature-set means there's always a way to accomplish your vision. Not...

Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities

Multiple memory corruptions, code execution, data spoofing, crossite scripting, information leakage...

libtiff tiff2pdf code execution

Code exeucution on tiff parsing...

Joomla com_photo - SQL Injection Vulnerability

Title: ====== Joomla comphoto - SQL Injection Vulnerability Date: ===== 2012-07-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=654 VL-ID: ===== 641 Common Vulnerability Scoring System: ==================================== 8 Introduction: ============= Joomla is a fr...

Cross-Site Scripting (XSS) in Redaxo

Advisory ID: HTB23098 Product: Redaxo Vendor: Redaxo team Vulnerable Versions: 4.4 and probably prior Tested Version: 4.4 Vendor Notification: 4 July 2012 Vendor Patch: 23 July 2012 Public Disclosure: 25 July 2012 Vulnerability Type: Cross-Site Scripting XSS CVE Reference: CVE-2012-3869 CVSSv2 Ba...

ZDI-12-133 : GE Proficy Historian ihDataArchiver.exe Multiple Opcode Parsing Remote Code Execution Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-133 : GE Proficy Historian ihDataArchiver.exe Multiple Opcode Parsing Remote Code Execution Vulnerabilities http://www.zerodayinitiative.com/advisories/ZDI-12-133 August 3, 2012 - -- CVE ID: CVE-2012-0229 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A...

[CVE-2012-3871] Openconstructor CMS 3.12.0 'data/hybrid/i_hybrid.php', 'header' parameter Stored Cross-site Scripting Vulnerability

Title: Openconstructor CMS 3.12.0 'data/hybrid/ihybrid.php', 'header' parameter Stored Cross-site Scripting Vulnerability Affected Software: http://www.openconstructor.org/ http://code.google.com/p/openconstructor/downloads/list...

ESA-2012-031: Iomega StorCenter/EMC Lifeline Remote Access Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-031: Iomega StorCenter/EMC Lifeline Remote Access Vulnerability EMC Identifier: ESA-2012-031 CVE Identifier: CVE-2012-2283 Severity Rating: CVSS v2 Base Score: 9.3 AV:N/AC:L/Au:S/C:C/I:C/A:C Affected products: Iomega network storage devices...

ZDI-12-128 : Mozilla Firefox nsHTMLSelectElement Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-128 : Mozilla Firefox nsHTMLSelectElement Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-128 August 3, 2012 - -- CVE ID: CVE-2011-3671 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors:...

XXE Injection in CakePHP and Squiz CMS

Hello! I'll give you additional information concerning advisories CakePHP 2.x-2.2.0-RC2 XXE Injection http://securityvulns.ru/docs28331.html and Squiz CMS Multiple Vulnerabilities http://securityvulns.ru/docs28220.html. It's about XXE Injection in CakePHP and Squiz CMS. Similarly to earlier...

ZDI-12-129: Microsoft Windows TrueType Font Parsing Remote Code Execution Vulnerability (Remote Kernel)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-129 : Microsoft Windows TrueType Font Parsing Remote Code Execution Vulnerability Remote Kernel http://www.zerodayinitiative.com/advisories/ZDI-12-129 August 3, 2012 - -- CVE ID: CVE-2012-0159 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - --...

ZDI-12-135 : Apple QuickTime JPEG2k Sample Size Atom Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-135 : Apple QuickTime JPEG2k Sample Size Atom Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-135 August 3, 2012 - -- CVE ID: CVE-2012-0661 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors:...

HP Network Node Manager i crossite scripting

No description provided...

[ MDVSA-2012:127 ] libtiff

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:127 http://www.mandriva.com/security/ Package : libtiff Date : August 8, 2012 Affected: 2011., Enterprise Server 5.0 Problem Description: A vulnerability was found and corrected in libtiff: A heap-based buff...

OpenTTD DoS

Few DoS conditions against game server...

Iomega StorCenter/EMC Lifeline unauthorized access

Remote unauthenticated access is possible under some conditions...

ZDI-12-131 : Microsoft .NET Framework Undersized Glyph Buffer Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-131 : Microsoft .NET Framework Undersized Glyph Buffer Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-131 August 3, 2012 - -- CVE ID: CVE-2012-0162 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected...

[security bulletin] HPSBMU02798 SSRT100908 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Cross Site Scripting (XSS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03405705 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03405705 Version: 1 HPSBMU02798...

[USN-1529-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-1529-1 August 10, 2012 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

Linux kernel multiple security vulnerabilities

Multiple DoS conditions, privilege escalation...

Multiple vulnerabilities in PBBoard

Advisory ID: HTB23101 Product: PBBoard Vendor: www.pbboard.com Vulnerable Versions: 2.1.4 and probably prior Tested Version: 2.1.4 Vendor Notification: July 18, 2012 Public Disclosure: August 8, 2012 Vulnerability Type: SQL Injection CWE-89, Improper Authentication CWE-287, Improper Access Contro...

[USN-1526-1] KOffice vulnerability

========================================================================== Ubuntu Security Notice USN-1526-1 August 09, 2012 koffice vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

Another Solaris 10 Patch Cluster Symlink Attack

Larry W. Cashdollar 8/6/2012 Here is another symlink attack with temp file creation using process id in Solaris 10 patch cluster. You can over write the contents of root owned files with the contents of inetd.conf. In patches/137097-01/SUNWcsr/reloc/lib/svc/method/inetd-upgrade lines : 72...

ZDI-12-132 : IBM Lotus iNotes dwa85W ActiveX Attachment_Times Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-132 : IBM Lotus iNotes dwa85W ActiveX AttachmentTimes Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-132 August 3, 2012 - -- CVE ID: CVE-2012-2175 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected...

[SECURITY] [DSA 2523-1] globus-gridftp-server security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2523-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 06, 2012 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2522-1] fckeditor security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2522-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez August 05, 2012 http://www.debian.org/security/faq -...

Joomla com_package - SQL Injection Vulnerability

Title: ====== Joomla compackage - SQL Injection Vulnerability Date: ===== 2012-07-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=652 VL-ID: ===== 652 Common Vulnerability Scoring System: ==================================== 8.3 Introduction: ============= Joomla is ...

GE Intelligent Platforms Proficy Historian code execution

Multiple Data Archiver TCP/14000 service memory corruptions...

Security Advisory in LedgerSMBv 1.3.20 and below: Denial of Service vulnerability

A security oversight has been discovered in LedgerSMB 1.3 which could allow a malicious user to cause a denial of service against LedgerSMB or otherwise affect the way in which certain forms of data would get entered. In most cases we do not believe this to be particularly severe in the absence o...

KOffice / Calligra code execution

Code execution on MS Word document parsing...

Multiple Vulnerabilities in phpList

Advisory ID: HTB23100 Product: phpList Vendor: phpList Ltd Vulnerable Versions: 2.10.18 and probably prior Tested Version: 2.10.18 Vendor Notification: July 11, 2012 Public Disclosure: August 8, 2012 Vulnerability Type: Cross-Site Scripting CWE-79, SQL Injection CWE-89 CVE References:...

Microsoft Windows multiple security vulnerabilities

TCP/IP privilege escalation, partition manager privilege escalation, multiple security vulnerabililities in .Net, Silverlight, font management, GDI+, window components, etc...

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

AOL Products downloadUpdater2 Plugin SRC Parameter Remote Code Execution

AOL Products downloadUpdater2 Plugin SRC Parameter Remote Code Execution tested against: Microsoft Windows Vista sp2 Microsoft Windows Server 2003 r2 sp2 Mozilla Firefox 14.0.1 download url: http://client.web.aol.com/toolbarfiles/Prod/downloads/downloadupdater/dnupdatersetup.exe this was the upda...

AOL Deskbar ActiveX code exeuction

AOL dnUpdater ActiveX uninitialized potiner...

Globus GridFTP privilege escalation

Insufficient validation on name lookup...

[SECURITY] [DSA 2524-1] openttd security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2524-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 06, 2012 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2521-1] libxml2 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2521-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 04, 2012 http://www.debian.org/security/faq -...

[CVE-2012-3870] Openconstructor CMS 3.12.0 'createobject.php', 'name' and 'description' parameters Stored Cross-site Scrpting vulnerabilities

Title: Openconstructor CMS 3.12.0 'createobject.php', 'name' and 'description' parameters Stored Cross-site Scrpting vulnerabilities Affected Software: http://www.openconstructor.org/ http://code.google.com/p/openconstructor/downloads/list...

[USN-1531-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-1531-1 August 10, 2012 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

[ MDVSA-2012:125 ] wireshark

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:125 http://www.mandriva.com/security/ Package : wireshark Date : August 6, 2012 Affected: 2011., Enterprise Server 5.0 Problem Description: Multiple vulnerabilities was found and corrected in Wireshark: It m...

Zend Framework - Local file disclosure via XXE injection

Hello! I'll give you additional information concerning SEC Consult Vulnerability Lab Security Advisory 20120626-0 http://securityvulns.ru/docs28331.html. This advisory was about Local file disclosure via XXE injection in Zend Framework and was talking only about Local File Disclosure attack vecto...

Oracle Business Transaction Management Server directory traversal

FlashTunnelService allows arbitrary files deletion via SOAP interface...

ZDI-12-130 : Apple QuickTime Player MP4A Uninitialized Pointer Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-130 : Apple QuickTime Player MP4A Uninitialized Pointer Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-130 August 3, 2012 - -- CVE ID: CVE-2011-3458 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affecte...

IBM Lotus iNotes / Quickr ActiveX code execution

dwa85W.cab / QP2.cab ActiveX buffer overflow...

Oracle Business Transaction Management Server FlashTunnelService Remote File Deletion

Oracle Business Transaction Management Server 12.1.0.2.7 FlashTunnelService Remote File Deletion tested against: Microsoft Windows Server 2003 r2 sp2 Oracle WebLogic Server 12c 12.1.1 Oracle Business Transaction Management Server 12.1.0.2.7 Production version files tested:...

libxml integer overflows

Multiple integer overflows...

Social Engine 4 Persistent XSS & Non-Persistent XSS

===================================================== Social Engine 4 Persistent XSS & Non-Persistent XSS ===================================================== :------------------------------------------------------------------------------------------ ---------------------------------------------...