[REVIVE-SA-2014-002] Revive Adserver 3.0.6 and 3.1.0 fix multiple vulnerabilities

Revive Adserver Security Advisory REVIVE-SA-2014-002 http://www.revive-adserver.com/security/revive-sa-2014-002

FreeBSD Security Advisory FreeBSD-SA-14:30.unbound

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 = FreeBSD-SA-14:30.unboundSecurity Advisory The FreeBSD Project Topic:

secuvera-SA-2014-01: Reflected XSS in W3 Total Cache

secuvera-SA-2014-01: Reflected XSS in W3 Total Cache Affected Products W3 Total Cache 0.9.4 (older releases have not been tested) The only WordPress Performance Optimization (WPO) framework; designed to improve user experience and page speed. (..) W3 Total Cache improves the

Cross-Site Scripting (XSS) in Revive Adserver

Advisory ID: HTB23242 Product: Revive Adserver Vendor: http://www.revive-adserver.com/ Vulnerable Version(s): 3.0.5 and probably prior Tested Version: 3.0.5 Advisory Publication: November 12, 2014 [without technical details] Vendor Notification: November 12, 2014 Vendor Patch: December 17, 2014

Bird Feeder v1.2.3 WP Plugin - CSRF XSS Vulnerability

Document Title: === Bird Feeder v1.2.3 WP Plugin - CSRF XSS Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1372 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9334 CVE-ID: === CVE-2014-9334 Release Date:

Morfy CMS v1.05 - Command Execution Vulnerability

Document Title: === Morfy CMS v1.05 - Command Execution Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1367 https://github.com/Awilum/monstra-cms/issues/351 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9185

Jease CMS v2.11 - Persistent UI Web Vulnerability

Document Title: === Jease CMS v2.11 - Persistent UI Web Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1373 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8780 CVE-ID: === CVE-2014-8780 Release Date: