December 2009
[3/5] WoltLab Burning Board Kleinanzeigenmarkt...
fred777 has reported a vulnerability in the Kleinanzeigenmarkt plugin for WoltLab Burning Board, which can be exploited by malicious people to conduct SQL injection attacks. http://secunia.com/advisories/37996/
Dec 28th
[2/5] Winn Guestbook Cross-Site Scripting...
A vulnerability has been discovered in Winn Guestbook, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37963/
Dec 28th
[2/5] freePBX Cross-Site Scripting and Script...
Some vulnerabilities have been discovered in freePBX, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to conduct script insertion attacks. http://secunia.com/advisories/37972/
Dec 28th
[2/5] cms-db Cross-Site Scripting and Request...
Some vulnerabilities have been discovered in cms-db, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks. http://secunia.com/advisories/37969/
Dec 28th
[3/5] Proverbs Web Calendar SQL Injection and...
Some vulnerabilities have been discovered in Proverbs Web Calendar, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks. http://secunia.com/advisories/37960/
Dec 28th
[3/5] Green Desktiny "id" SQL Injection...
kaMtiEz has reported a vulnerability in Green Desktiny, which can be exploited by malicious people to conduct SQL injection attacks. http://secunia.com/advisories/37839/
Dec 28th
[3/5] Joomla! BeeHeard Component "category_id" SQL...
A vulnerability has been reported in the BeeHeard component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks. http://secunia.com/advisories/37872/
Dec 28th
[3/5] OpenTTD Denial of Service Vulnerability
A vulnerability has been reported in OpenTTD, which can be exploited by malicious people to cause a DoS (Denial of Service). http://secunia.com/advisories/37929/
Dec 28th
[2/5] Fedora update for proftpd
Fedora has issued an update for proftpd. This fixes a vulnerability, which can be exploited by malicious people to manipulate certain data. http://secunia.com/advisories/37968/
Dec 28th
[3/5] kandalf upper File Upload Security Issue
A security issue has been discovered in kandalf upper, which can be exploited by malicious people to compromise a vulnerable system. http://secunia.com/advisories/37946/
Dec 28th
[2/5] Fedora update for cacti
Fedora has issued an update for cacti. This fixes multiple vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37934/
Dec 28th
[2/5] Joomla! Q-Personel Component "personel_sira"...
A vulnerability has been discovered in the Q-Personel component for Joomla!, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37897/
Dec 28th
[3/5] Fedora update for PyXML
Fedora has issued an update for PyXML. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). http://secunia.com/advisories/37925/
Dec 28th
[3/5] Fedora update for phpldapadmin
Fedora has issued an update for phpldapadmin. This fixes a vulnerability, which can be exploited by malicious people to disclose sensitive information. http://secunia.com/advisories/37924/
Dec 28th
[1/5] Fedora update for kernel
Fedora has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). http://secunia.com/advisories/37995/
Dec 28th
[3/5] Fujitsu Products SSL Implementation Multiple...
Some vulnerabilities have been reported in multiple Fujitsu products, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service). http://secunia.com/advisories/37989/
Dec 28th
[1/5] Fedora update for kernel
Fedora has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). http://secunia.com/advisories/37928/
Dec 28th
[2/5] FlatPress Multiple Cross-Site Scripting...
Some vulnerabilities have been discovered in FlatPress, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37938/
Dec 28th
[4/5] Best Top List Arbitrary File Upload and...
Some vulnerabilities have been discovered in Best Top List, which can be exploited by malicious people to conduct cross-site scripting attacks or compromise a vulnerable system. http://secunia.com/advisories/37935/
Dec 28th
[3/5] Sun Java System Directory Server Multiple...
Some vulnerabilities have been reported in Sun Java System Directory Server, which can be exploited by malicious people to gain knowledge of potentially sensitive information or cause a DoS (Denial of Service). http://secunia.com/advisories/37915/
Dec 28th
[3/5] Sun Solaris PostgreSQL Two Vulnerabilities
Sun has acknowledged two vulnerabilities in Sun Solaris, which can be exploited by malicious users to gain escalated privileges and by malicious people to conduct spoofing attacks. http://secunia.com/advisories/37986/
Dec 28th
[2/5] Microsoft IIS ASP Multiple Extensions...
Soroush Dalili has discovered a vulnerability in Microsoft Internet Information Services (IIS), which can be exploited by malicious people to potentially bypass certain security restrictions and compromise a vulnerable system. http://secunia.com/advisories/37831/
Dec 24th
[4/5] OpenX Authentication Bypass Security Issue
A security issue has been reported in OpenX, which can be exploited by malicious people to bypass certain security restrictions. http://secunia.com/advisories/37914/
Dec 24th
[2/5] MyBB MYPS Plugin "username" Cross-Site...
A vulnerability has been discovered in the MYPS plugin for MyBB, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37910/
Dec 24th
[3/5] Jax Guestbook guestbook.admin.php Security...
A security issue has been reported in Jax Guestbook, which can be exploited by malicious people to bypass certain security restrictions. http://secunia.com/advisories/37921/
Dec 24th
[2/5] Drupal FAQ Module Script Insertion...
Some vulnerabilities have been reported in the FAQ module for Drupal, which can be exploited by malicious users to conduct script insertion attacks. http://secunia.com/advisories/37923/
Dec 24th
[3/5] Kolab Server Web Client Image Upload Form...
A vulnerability with an unknown impact has been reported in Kolab Server. http://secunia.com/advisories/37918/
Dec 24th
[2/5] Auto-Surf Traffic Exchange Script "rid"...
Some vulnerabilities have been reported in Auto-Surf Traffic Exchange Script, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37894/
Dec 24th
[2/5] Joomla Car Manager Component "msg"...
Fl0riX has reported a vulnerability in the Car Manager component for Joomla, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37882/
Dec 24th
[2/5] Drupal Automated Logout Module Script...
mr.baileys has reported some vulnerabilities in the Automated Logout module for Drupal, which can be exploited by malicious users to conduct script insertion attacks. http://secunia.com/advisories/37878/
Dec 24th
[4/5] Red Hat update for java-1.6.0-ibm
Red Hat has issued an update for java-1.6.0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct spoofing attacks, cause a DoS (Denial of Service), or compromise a vulnerable system. http://secunia.com/advisories/37841/
Dec 24th
[2/5] APC NMC Products Cross-Site Scripting and...
Some vulnerabilities have been reported in various APC Network Management Card (NMC) based products, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks. http://secunia.com/advisories/37744/
Dec 24th
[4/5] Fedora update for wireshark
Fedora has issued an update for wireshark. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a user’s system. http://secunia.com/advisories/37916/
Dec 24th
[2/5] Debian update for unbound
Debian has issued an update for unbound. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. http://secunia.com/advisories/37913/
Dec 24th
[3/5] weenCompany "moduleid" SQL Injection...
Gamoscu has discovered a vulnerability in weenCompany, which can be exploited by malicious people to conduct SQL injection attacks. http://secunia.com/advisories/37895/
Dec 23rd
[3/5] Joomla JEEMA Article Collection Component...
Fl0riX has discovered a vulnerability in the JEEMA Article Collection component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks. http://secunia.com/advisories/37865/
Dec 23rd
[2/5] JpGraph "GetURLArguments()" Cross-Site...
Martin Barbella has discovered a vulnerability in JpGraph, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37832/
Dec 23rd
[2/5] ClarkConnect "url" Cross-Site Scripting...
Edgard Chammas has discovered a vulnerability in ClarkConnect, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37850/
Dec 23rd
[2/5] Debian update for kvm
Debian has issued an update for kvm. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service). http://secunia.com/advisories/37908/
Dec 23rd
[3/5] F5 BIG-IP ASM / PSM Buffer Overflow...
A vulnerability has been reported in BIG-IP Application Security Manager (ASM) and Protocol Security Manager (PSM), which can be exploited by malicious people to cause a DoS (Denial of Service). http://secunia.com/advisories/37805/
Dec 23rd
[4/5] WordPress Woopra Analytics Plugin Arbitrary...
A vulnerability has been reported in the Woopra Analytics plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system. http://secunia.com/advisories/37911/
Dec 23rd
[2/5] webMathematica Cross-Site Scripting...
Floyd Fuh has reported a vulnerability in webMathematica, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37905/
Dec 23rd
[4/5] Open Flash Chart Arbitrary File Creation...
A vulnerability has been discovered in Open Flash Chart, which can be exploited by malicious people to compromise a vulnerable system. http://secunia.com/advisories/37903/
Dec 23rd
[2/5] XFS Acl Recursive Symlink Processing...
A security issue has been reported in XFS Acl, which can be exploited by malicious, local users to perform certain actions with escalated privileges. http://secunia.com/advisories/37907/
Dec 23rd
[3/5] The Uploader "filename" Information...
A vulnerability has been discovered in The Uploader, which can be exploited by malicious people to disclose potentially sensitive information. http://secunia.com/advisories/37873/
Dec 23rd
[2/5] SUSE update for kernel
SUSE has issued an update for the kernel. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially gain escalated privileges, and by malicious people to cause a DoS. http://secunia.com/advisories/37909/
Dec 23rd
[2/5] Active Business Directory "search"...
Andrea Bocchetti has reported a vulnerability in Active Business Directory, which can be exploited by malicious people to conduct cross-site scripting attacks. http://secunia.com/advisories/37863/
Dec 23rd
[4/5] SUSE update for flash-player
SUSE has issued an update for flash-player. This fixes multiple vulnerabilities, which can be exploited by malicious people to gain knowledge of system information or compromise a user’s system. http://secunia.com/advisories/37902/
Dec 23rd
[4/5] SUSE update for MozillaFirefox
SUSE has issued an update for MozillaFirefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, manipulate certain data, disclose sensitive information, or compromise a user’s system. http://secunia.com/advisories/37881/
Dec 23rd
[2/5] Debian update for bind9
Debian has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache. http://secunia.com/advisories/37904/
Dec 23rd