 |
|
|
|
| Cygwin setup packages spoofing | | Published: |  | 26.07.2008 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 9173 | | Type: |  | client | | Level: |  | 4/10 | | Description: |  | Package source authentity is not checked during installation procedure. |
| Original document |  | advisories_(at)_host.security-objectives.com, SECOBJADV-2008-02: Cygwin Installation and Update Process can be Subverted Vulnerability (26.07.2008) |
| Apple Safari memory corruption | | Published: | | 26.07.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9175 | | Type: | | client | | Level: | | 5/10 | | Description: | | memory corruption on stylesheets parsing. |
| CVE: |  | CVE-2008-2317 |
| Original document | | ZDI, ZDI-08-045: Apple Safari StyleSheet ownerNode Heap Corruption Vulnerability (26.07.2008) |
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 26.07.2008 | | Published: | | 29.07.2008 | | Source: | | | | SecurityVulns ID: | | 9174 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
FireStats WordPress plugin: crossite scripting, automation protection bypass, DoS, information leak, unauthorized access. |
| Affected: |  | POSTNUKE : PostNuke 0.726 | | | | PIXELPOST : PixelPost 1.7 | | | | XRMS : XRMS 1.99 | | | | FIRESTATS : FireStats 1.0 | | | | JAMROOM : Jamroom 3.3 | | | | WEBWIZ : Web Wiz Rich Text Editor 4.02 | | | | VIART : ViArt 3.5 | | | | OWL : Owl 0.95 | | | | PHPJOBSCHEDULER : PhpJobScheduler 3.1 | | CVE: | | CVE-2008-3100 |
| Original document | | Ghost hacker, PhpJobScheduler 3.1 Remote File Inclusion Vulnerability (29.07.2008) |
| | | Fabian Fingerle, Cross Site Scripting (XSS) in Owl <=0.95, CVE-2008-3100 (29.07.2008) |
| | | JeiAr, ViArt <= 3.5 SQL Injection (29.07.2008) |
| | | supportrup_(at)_gmail.com, Multiple Cross-Site Scripting Vulnerabilities in Web Wiz Rich Text Editor version 4.02 (29.07.2008) |
| | | JeiAr, JamRoom <= 3.3.8 Authentication Bypass (29.07.2008) |
| | | Digital Security Research Group [DSecRG], [DSECRG-08-033] Local File Include Vulnerability in Pixelpost 1.7.1 (29.07.2008) |
| | | MustLive, Vulnerabilities in FireStats (29.07.2008) |
| | | MustLive, Multiple vulnerabilities in FireStats (29.07.2008) |
| | | HACKERS PAL, ezContents CMS Renote File inclusion (26.07.2008) |
| | | azzcoder_(at)_hotmail.com, XRMS 1.99.2 (RFI/XSS/IG) Multiple Remote Vulnerabilities (26.07.2008) |
| | | MustLive, Vulnerabilities in PostNuke Phoenix (26.07.2008) |
|
|
|
|
|
| |
|
| |
