-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c03861260
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03861260
Version: 1
HPSBGN02904
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -
Debian Security Advisory DSA-2731-1 secur...@debian.org
http://www.debian.org/security/ Thijs Kinkhorst
July 29, 2013
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -
Debian Security Advisory DSA-2730-1 secur...@debian.org
http://www.debian.org/security/ Thijs Kinkhorst
July 29, 2013
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDVSA-2013:203
http://www.mandriva.com/en/support/security/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDVSA-2013:204
http://www.mandriva.com/en/support/security/
Class Stored Cross-Site Scripting
Remote Yes
Credit Michael Savage of Dionach (vu...@dionach.com)
Vulnerable MojoPortal 2.3.9.7
MojoPortal is prone to a stored cross-site scripting vulnerability because it
does not escape the titles of forum threads when inserting
===
Summary
===
Name: Oracle Hyperion 11 - Directory Traversal
Release Date: 30 July 2013
Reference: NGS00434
Discoverer: Richard Warren richard.war...@nccgroup.com
Vendor: Oracle
Vendor Reference: S0318807
Systems Affected: Oracle Hyperion 11.1.1.3, 11.1.1.4.107 and earlier,
11.1.2.1.129
===
Summary
===
Name: Bit51 Better WP Security Plugin - Unauthenticated Stored XSS to RCE
Release Date: 30 July 2013
Reference: NGS00500
Discoverer: Richard Warren richard.war...@nccgroup.com
Vendor: Bit51
Vendor Reference:
Systems Affected: Bit51 Better WP Security Plugin Version