BugTraq@security-focus.com List Archive

• Date Index

• Enigma WordPress Bridge (boarddir) Remote File Include, xorontr
• Enigma Coppermine Bridge (boarddir) Remote File Include, xorontr
• [vuln.sg] iso_wincmd Plugin for Total Commander Buffer Overflow Vulnerability, vulnpost-remove
• SoftArtisans FileUp(TM) viewsrc.asp remote script source disclosure exploit, inge_eivind . henriksen
• MythControl (MythTV remote control) arbitrary code execution, sapheal
• csrss.exe double-free vulnerability - arbitrary DWORD overwrite exploit, Reversemode
• DoceboLMS Xss Vuln., starext
• LDU <= 8.x (journal.php) SQL Injection Vulnerability, starext
• QuickCam linux device driver allows arbitrary code execution, sapheal
• XSS with default page parameter in Oracle Portal 10g, duchaikhtn
• XSS in script Mobilelib GOLD v2, gamr-14
  • <Possible follow-ups>
  • Re: XSS in script Mobilelib GOLD v2, gamr-14
• [SECURITY] [DSA 1244-1] New xine-lib packages fix arbitrary code execution, Moritz Muehlenhoff
• [SECURITY] [DSA 1214-2] Updated gv packages fix arbitrary code execution, Moritz Muehlenhoff
• OpenSER OSP Module remote code execution, sapheal
• [OpenPKG-SA-2006.044] OpenPKG Security Advisory (w3m), OpenPKG GmbH
• SMS handling OpenSER remote code executing, sapheal
• [SECURITY] [DSA 1243-1] New evince packages fix arbitrary code execution, Moritz Muehlenhoff
• Limbo CMS event module (lm_absolute_path) Remote File Include Vulnerabilities, xorontr
• [SECURITY] [DSA 1242-1] New elog packages fix arbitrary code execution, Moritz Muehlenhoff
• ShmooCon Announcement, B Potter
• NtRaiseHardError Csrss.exe memory Disclosure exploit, Reversemode
• Re: Cross site scripting & fullpath disclosure, james . brown
• Secure Login Manager Multiple Input Validation Vulnerabilities, DoZ
• Host directory full disclosure and input error, hack2prison
• Re: The (in)security of Xorg and DRI, Pavel Kankovsky
• [OpenPKG-SA-2006.043] OpenPKG Security Advisory (links), OpenPKG GmbH
• [OpenPKG-SA-2006.042] OpenPKG Security Advisory (openser), OpenPKG GmbH
• logahead UNU edition 1.0 Remote File Upload & code execution, corrado . liotta
• XSS - CMS Made Simple v1.0.2, Curtis Zimmerman
  • <Possible follow-ups>
  • Re: XSS - CMS Made Simple v1.0.2, nanoymaster
• HLStats Remote SQL Injection Exploit, nospam
• PhpbbXtra v2.0 (phpbb_root_path) Remote File Include Vulnerability, xorontr
• LuckyBot v3 Remote File Include, i-k-t
  • <Possible follow-ups>
  • Re: LuckyBot v3 Remote File Include, Stuart Moore
• phpcms <=- 1.1.7 Remote File Inclusion, Zarloule04
  • Re: phpcms <=- 1.1.7 Remote File Inclusion, Hugo van der Kooij
  • <Possible follow-ups>
  • Re: phpcms <=- 1.1.7 Remote File Inclusion, Stuart Moore
• Cahier de texte V2.2 Bypass general access protection exploit, gmdarkfig
• PHP Live! 3.2.2 Multiple Cross-Site Scripting Vulnerabilities, DoZ
• [SECURITY] [DSA 1241-1] New squirrelmail packages fix cross-site scripting, Moritz Muehlenhoff
• XSS with Vbulletin (new idea !), ashraf1984
  • <Possible follow-ups>
  • Re: XSS with Vbulletin (new idea !), bas
  • Re: XSS with Vbulletin (new idea !), l . d . 0
  • Re: XSS with Vbulletin (new idea !), micmast
• ERRATA (Re: "Host header cannot be trusted as an anti anti DNS-pinning measure"), Amit Klein
  • Re: ERRATA (Re: "Host header cannot be trusted as an anti anti DNS-pinning measure"), Martin Johns
• Forum AnyBoard - Sql Inyection By Firewall, Firewall1954
• TimberWolf 1.2.2 vulnerable to XSS, corrado . liotta
• Fishyshoop Security Vulnerability, James Gray
• Chatwm V1.0 SqL Injection Vuln., ShaFuq31
• Okul Merkezi Portal v1.0 Remote File IncLude Vuln., ShaFuq31
• iDefense Security Advisory 12.23.06: Novell Netmail IMAP append Denial of Service Vulnerability, iDefense Labs
• iDefense Security Advisory 12.23.06: Novell NetMail IMAPD subscribe Buffer Overflow Vulnerability, iDefense Labs

This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.
The main JSW4.NET technical listserv archive and search page.
The main archive page for this list.