BugTraq@security-focus.com List Archive

• Thread Index

• iDefense Security Advisory 12.23.06: Novell NetMail IMAPD subscribe Buffer Overflow Vulnerability, iDefense Labs,
• iDefense Security Advisory 12.23.06: Novell Netmail IMAP append Denial of Service Vulnerability, iDefense Labs,
• Okul Merkezi Portal v1.0 Remote File IncLude Vuln., ShaFuq31,
• Chatwm V1.0 SqL Injection Vuln., ShaFuq31,
• Fishyshoop Security Vulnerability, James Gray,
• TimberWolf 1.2.2 vulnerable to XSS, corrado . liotta,
• Forum AnyBoard - Sql Inyection By Firewall, Firewall1954,
• ERRATA (Re: "Host header cannot be trusted as an anti anti DNS-pinning measure"), Amit Klein,
• XSS with Vbulletin (new idea !), ashraf1984,
• [SECURITY] [DSA 1241-1] New squirrelmail packages fix cross-site scripting, Moritz Muehlenhoff,
• PHP Live! 3.2.2 Multiple Cross-Site Scripting Vulnerabilities, DoZ,
• Cahier de texte V2.2 Bypass general access protection exploit, gmdarkfig,
• phpcms <=- 1.1.7 Remote File Inclusion, Zarloule04,
• LuckyBot v3 Remote File Include, i-k-t,
• PhpbbXtra v2.0 (phpbb_root_path) Remote File Include Vulnerability, xorontr,
• HLStats Remote SQL Injection Exploit, nospam,
• XSS - CMS Made Simple v1.0.2, Curtis Zimmerman,
• logahead UNU edition 1.0 Remote File Upload & code execution, corrado . liotta,
• [OpenPKG-SA-2006.042] OpenPKG Security Advisory (openser), OpenPKG GmbH,
• [OpenPKG-SA-2006.043] OpenPKG Security Advisory (links), OpenPKG GmbH,
• Re: ERRATA (Re: "Host header cannot be trusted as an anti anti DNS-pinning measure"), Martin Johns,
• Re: phpcms <=- 1.1.7 Remote File Inclusion, Stuart Moore,
• Re: phpcms <=- 1.1.7 Remote File Inclusion, Hugo van der Kooij,
• Re: LuckyBot v3 Remote File Include, Stuart Moore,
• Re: The (in)security of Xorg and DRI, Pavel Kankovsky,
• Re: XSS with Vbulletin (new idea !), bas,
• Host directory full disclosure and input error, hack2prison,
• Secure Login Manager Multiple Input Validation Vulnerabilities, DoZ,
• Re: Cross site scripting & fullpath disclosure, james . brown,
• NtRaiseHardError Csrss.exe memory Disclosure exploit, Reversemode,
• ShmooCon Announcement, B Potter,
• [SECURITY] [DSA 1242-1] New elog packages fix arbitrary code execution, Moritz Muehlenhoff,
• Limbo CMS event module (lm_absolute_path) Remote File Include Vulnerabilities, xorontr,
• [SECURITY] [DSA 1243-1] New evince packages fix arbitrary code execution, Moritz Muehlenhoff,
• Re: XSS with Vbulletin (new idea !), l . d . 0,
• SMS handling OpenSER remote code executing, sapheal,
• Re: XSS - CMS Made Simple v1.0.2, nanoymaster,
• [OpenPKG-SA-2006.044] OpenPKG Security Advisory (w3m), OpenPKG GmbH,
• Re: XSS with Vbulletin (new idea !), micmast,
• OpenSER OSP Module remote code execution, sapheal,
• [SECURITY] [DSA 1214-2] Updated gv packages fix arbitrary code execution, Moritz Muehlenhoff,
• [SECURITY] [DSA 1244-1] New xine-lib packages fix arbitrary code execution, Moritz Muehlenhoff,
• XSS in script Mobilelib GOLD v2, gamr-14,
• XSS with default page parameter in Oracle Portal 10g, duchaikhtn,
• QuickCam linux device driver allows arbitrary code execution, sapheal,
• LDU <= 8.x (journal.php) SQL Injection Vulnerability, starext,
• DoceboLMS Xss Vuln., starext,
• Re: XSS in script Mobilelib GOLD v2, gamr-14,
• csrss.exe double-free vulnerability - arbitrary DWORD overwrite exploit, Reversemode,
• MythControl (MythTV remote control) arbitrary code execution, sapheal,
• SoftArtisans FileUp(TM) viewsrc.asp remote script source disclosure exploit, inge_eivind . henriksen,
• [vuln.sg] iso_wincmd Plugin for Total Commander Buffer Overflow Vulnerability, vulnpost-remove,
• Enigma Coppermine Bridge (boarddir) Remote File Include, xorontr,
• Enigma WordPress Bridge (boarddir) Remote File Include, xorontr,

This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.
The main JSW4.NET technical listserv archive and search page.
The main archive page for this list.