News Script PHP v1.2 - Multiple Web Vulnerabilites

2012-06-18 Thread Research
Title: == News Script PHP v1.2 - Multiple Web Vulnerabilites Date: = 2012-06-07 References: === http://www.vulnerability-lab.com/get_content.php?id=600 VL-ID: = 600 Common Vulnerability Scoring System: 7.5 Introduction:

Webify Product Series - Multiple Web Vulnerabilities

2012-06-18 Thread Research
Title: == Webify Product Series - Multiple Web Vulnerabilities Date: = 2012-06-08 References: === http://www.vulnerability-lab.com/get_content.php?id=598 VL-ID: = 598 Common Vulnerability Scoring System: 6.5 Introduction:

[Suspected Spam] Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities

2012-06-18 Thread Research
Title: == Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities Date: = 2012-05-14 References: === http://www.vulnerability-lab.com/get_content.php?id=515 VL-ID: = 515 Common Vulnerability Scoring System: 8.5 Introduction:

[SECURITY] [DSA 2495-1] openconnect security update

2012-06-18 Thread Moritz Muehlenhoff
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2495-1 secur...@debian.org http://www.debian.org/security/Moritz Muehlenhoff June 16, 2012

Re: [CAL-2012-0015] opera website spoof

2012-06-18 Thread Code Audit Labs
thank cve assign a cve id: CVE-2012-3560 to this. 于 2012/6/14 18:48, Code Audit Labs 写道: CAL-2012-0015 opera website spoof CVE ID: Opera did not assign ,please c...@mitre.org assign CAL ID: CAL-2012-0015 ref:

QNAP Turbo NAS Multiple Vulnerabilities - Security Advisory

2012-06-18 Thread Lists
Sense of Security - Security Advisory - SOS-12-006 Release Date. 13-Jun-2012 Last Update. - Vendor Notification Date. 12-Mar-2012 Product. QNAP Platform. Turbo NAS (verified) and possibly others Affected versions.

Squiz CMS Multiple Vulnerabilities - Security Advisory - SOS-12-007

2012-06-18 Thread Lists
Sense of Security - Security Advisory - SOS-12-007 Release Date. 14-Jun-2012 Last Update. - Vendor Notification Date. 02-Apr-2012 Product. Squiz CMS Platform. Independent Affected versions. Squiz 4.6.3

[ MDVSA-2012:094 ] clamav

2012-06-18 Thread security
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2012:094 http://www.mandriva.com/security/

[ MDVSA-2012:095 ] java-1.6.0-openjdk

2012-06-18 Thread security
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2012:095 http://www.mandriva.com/security/

SEC Consult SA-20120618-0 :: Western Digital ShareSpace WEB GUI Sensitive Data Disclosure

2012-06-18 Thread SEC Consult Vulnerability Lab
SEC Consult Vulnerability Lab Security Advisory 20120618-0 === title: WD ShareSpace WEB GUI Sensitive Data Disclosure product: WD ShareSpace network storage system vulnerable version: WD ShareSpace

SEC Consult SA-20120618-1 :: Airlock WAF overlong UTF-8 sequence bypass

2012-06-18 Thread SEC Consult Vulnerability Lab
SEC Consult Vulnerability Lab Security Advisory 20120618-1 === title: Airlock WAF overlong UTF-8 sequence bypass product: Airlock vulnerable version: = 4.2.4 (without hotfix HF4213) fixed version

DC4420 - London DEFCON - June meet - Tuesday June 19th 2012

2012-06-18 Thread Major Malfunction
As I'm sure you've all now recovered from celebrating with The Queen, it's time to crack open your wallets and come and celebrate the arrival of the other week's worth of decent weather that we call the British summer and have a drink with us! This month we have a proper tekky talk on the

Re: SAXoPRESS - directory traversal

2012-06-18 Thread foo
This is not a vulnerability in their latest release. I've tested version 6 and this exploit is unsuccessful.