JW Player 5.9 Cross Site Scripting / Content Spoofing
JW Player version 5.9.x suffers from cross site scripting and content spoofing vulnerabilities.
View ArticleSN News 1.2 SQL Injection
SN News versions 1.2 and below suffer from a remote SQL injection vulnerability in visualiza.php.
View ArticleDrupal Tokenauth 6.x Access Bypass
Drupal Tokenauth third party module version 6.x suffers from an access bypass vulnerability.
View ArticleSerendipity 1.6.1 SQL Injection
Serendipity version 1.6.1 suffers from a remote SQL injection vulnerability.
View ArticleWordPress MM Forms Community 2.2.5 / 2.2.6 Shell Upload
WordPress MM Forms Community versions 2.2.5 and 2.2.6 suffer from a remote shell upload vulnerability.
View ArticleZero Day Initiative Advisory 12-085
Zero Day Initiative Advisory 12-085 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to...
View ArticleWordPress VideoWhisper Video Presentation 3.17 Shell Upload
WordPress VideoWhisper Video Presentation plugin version 3.17 suffers from a remote shell upload vulnerability.
View ArticleDrupal Maestro 7.x Cross Site Scripting / Cross Site Request Forgery
Drupal Maestro third party module version 7.x suffers from cross site request forgery and cross site scripting vulnerabilities.
View ArticleDrupal Simplenews 6.x / 7.x Information Disclosure
Drupal Simplenews third party module versions 6.x and 7.x suffer from an information disclosure vulnerability.
View ArticleZero Day Initiative Advisory 12-086
Zero Day Initiative Advisory 12-086 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to...
View ArticleZero Day Initiative Advisory 12-087
Zero Day Initiative Advisory 12-087 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to...
View ArticleDrupal Authoring HTML 6.x Cross Site Scripting
Drupal Authoring HTML third party module version 6.x suffers from a cross site scripting vulnerability.
View ArticleDrupal Protest 6.x / 7.x Cross Site Scripting
Drupal Protest third party module versions 6.x and 7.x suffer from a cross site scripting vulnerability.
View ArticleRed Hat Security Advisory 2012-0715-01
Red Hat Security Advisory 2012-0715-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed content. Malicious content could cause...
View ArticleNeighbor Discovery Shield: Protecting against Neighbor Discovery Attacks
This document specifies a mechanism that can be implemented in layer-2 devices to mitigate attack vectors based on Neighbor Discovery messages. It is meant to complement other mechanisms implemented in...
View ArticleZero Day Initiative Advisory 12-088
Zero Day Initiative Advisory 12-088 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP DataDirect SequeLink. Authentication is not required to...
View ArticleZero Day Initiative Advisory 12-089
Zero Day Initiative Advisory 12-089 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable applications using DataDirect's SequeLink. Authentication is not required to...
View ArticleOpenSSL Toolkit 1.0.1c
OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.
View ArticleTOR Virtual Network Tunneling Tool 0.2.2.36
Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with...
View ArticleMicrosoft IIS MDAC msadcs.dll RDS Arbitrary Remote Command Execution
This Metasploit module can be used to execute arbitrary commands on IIS servers that expose the /msadc/msadcs.dll Microsoft Data Access Components (MDAC) Remote Data Service (RDS) DataFactory service...
View Article
