NetOrange SQL Injection
Sites powered by NetOrange - Sititalia.it suffer from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
View Article10Ninety SQL Injection
Sites powered by 10Ninety suffered from a remote SQL injection vulnerability. The vendor contacted Packet Storm security on 11/26/2013 to note that the issue has been resolved.
View ArticleInnovNET Cross Site Scripting
Sites powered by InnovNET suffer from a cross site scripting vulnerability. Note that this finding houses site-specific data.
View ArticleSoltech.CMS 0.4 Cross Site Scripting / Content Spoofing
Soltech.CMS version 0.4 suffers from cross site scripting and content-spoofing vulnerabilities.
View ArticleTripwire 2.4.2.2
Tripwire is a very popular system integrity checker, a utility that compares properties of designated files and directories against information stored in a previously generated database. Any changes to...
View ArticleGentoo Linux Security Advisory 201308-06-02
Gentoo Linux Security Advisory 201308-6-2 - The references section of the original advisory contained wrong CVE references.
View ArticleVMware Security Advisory 2013-0011
VMware Security Advisory 2013-0011 - VMware has updated VMware ESXi and ESX to address a vulnerability in an unhandled exception in the NFC protocol handler.
View ArticleMandriva Linux Security Advisory 2013-223
Mandriva Linux Security Advisory 2013-223 - A remotely exploitable crash vulnerability exists in the SIP channel driver if an ACK with SDP is received after the channel has been terminated. The...
View ArticleMac OS X 10.8.4 Local Privilege Escalation
Mac OS X versions 10.8.4 and below local root privilege escalation exploit written in Python.
View ArticleTP-Link TD-W8951ND Cross Site Request Forgery / Cross Site Scripting
TP-Link TD-W8951ND Firmware 4.0.0 Build 120607 Release 30923 suffers from cross site request forgery and cross site scripting vulnerabilities.
View ArticleSlackware Security Advisory - gnutls Updates
Slackware Security Advisory - New gnutls packages are available for Slackware 14.0, and -current to fix a security issue.
View ArticleSlackware Security Advisory - php Updates
Slackware Security Advisory - New php packages are available for Slackware 14.0, and -current to fix a security issue.
View ArticleGentoo Linux Security Advisory 201308-05-02
Gentoo Linux Security Advisory 201308-5 - The references section of the original advisory contained wrong CVE references.
View ArticleMicrosoft Windows "LdrHotPatchRoutine" Remote ASLR Bypass
VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Windows. The vulnerability is caused by a design error in the "ntdll.LdrHotPatchRoutine" function which can be abused...
View ArticleMicrosoft Internet Explorer "ReplaceAdjacentText" Use-After-Free
VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error within the MSHTML...
View ArticleMicrosoft Internet Explorer Protected Mode Sandbox Bypass
VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Internet Explorer. The vulnerability is caused by a memory corruption error in the IE broker process when copying...
View Article
More Pages to Explore .....