### IRANIAN THE BEST HACKERS IN THE WORLD
##
##
## XSS Vulnerability
##
## FootBall Cms (view_table_lig.php?group)
##
###
#
### IRANIAN THE BEST HACKERS IN THE WORLD
##
##
## Remote SQL injection Vulnerability
##
## Dow Group (dynamic.php?id) (sub.php?solutioncat_id) (news_desc.php?id)
(product.php?id)
##
ZDI-11-243: WebKit ContentEditable Inline Style Remote Code Execution
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-243
July 27, 2011
-- CVE ID:
CVE-2011-0232
-- CVSS:
9, (AV:N/AC:L/Au:N/C:C/I:P/A:P)
-- Affected Vendors:
WebKit
-- Affected Products:
WebKit
-- TippingPoin
ZDI-11-242: Apple Safari Rendering Object Body Detachment Remote Code Execution
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-242
July 27, 2011
-- CVE ID:
CVE-2011-0255
-- CVSS:
7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)
-- Affected Vendors:
Apple
-- Affected Products:
Apple Safari
ZDI-11-241: Webkit setAttributes attributeChanged Remote Code Execution
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-241
July 27, 2011
-- CVE ID:
CVE-2011-0254
-- CVSS:
7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)
-- Affected Vendors:
WebKit
-- Affected Products:
WebKit
-- Tipping
ZDI-11-240: Apple Safari Webkit SVG Marker Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-240
July 27, 2011
-- CVE ID:
CVE-2011-1453
-- CVSS:
7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)
-- Affected Vendors:
Apple
-- Affected Products:
Apple WebKit
-- TippingPoin
ZDI-11-239: Apple Safari Webkit FrameOwner Element Remote Code Execution
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-239
July 27, 2011
-- CVE ID:
CVE-2011-0233
-- CVSS:
7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)
-- Affected Vendors:
Apple
-- Affected Products:
Apple WebKit
-- Vu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDVSA-2011:121
http://www.mandriva.com/security/
_
Vulnerability ID: HTB23029
Reference:
http://www.htbridge.ch/advisory/redirection_vulnerability_in_mboard.html
Product: MBoard
Vendor: PHPJunkyar ( http://www.phpjunkyard.com )
Vulnerable Version: 1.3 and probably prior
Tested on: 1.3
Vendor Notification: 06 July 2011
Vulnerability Type: Redirec
Vulnerability ID: HTB23028
Reference:
http://www.htbridge.ch/advisory/multiple_xss_in_gbook_php_guestbook.html
Product: GBook PHP guestbook
Vendor: PHPJunkyar ( http://www.phpjunkyard.com )
Vulnerable Version: 1.7 and probably prior
Tested on: 1.7
Vendor Notification: 06 July 2011
Vulnerability
IRANIAN THE BEST HACKERS IN THE WORLD
##
##
## Remote SQL injection Vulnerability
##
## Chrome Web Solutions (details.php?cat_id) (listing_more.php?id)
##
IRANIAN THE BEST HACKERS IN THE WORLD
##
##
## Remote SQL injection Vulnerability
##
## Solutiontech (product.php?cat_id)
##
##
IRANIAN THE BEST HACKERS IN THE WORLD
##
##
## Remote SQL injection Vulnerability
##
## iCube Lab (product_details.php?cat_id)
##
#
IRANIAN THE BEST HACKERS IN THE WORLD
##
##
## Remote SQL injection Vulnerability
##
## G2webCMS (products.php?cat_id) (member-profile.php?profile)
##
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDVSA-2011:120
http://www.mandriva.com/security/
_
Hi
Advisory by Cisco was published a few days ago (Bugtraq ID: 48810).
Now more details:
1. Unathenticated access to web management (any user - including admin).
Due to blind SQLi in the login form of web management (port 443, https,
login field, embedded sqlite DB), there is possible to obtain:
### IRANIAN THE BEST HACKERS IN THE WORLD
##
##
## Remote SQL injection Vulnerability
##
## Agent Image (news_details.php?news_ID)
##
#
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
ESA-2011-021: EMC Data Protection Advisor sensitive information disclosure
vulnerability.
EMC Identifier: ESA-2011-021
CVE Identifier: CVE-2011-1742
Severity Rating: CVSS v2 Base Score: 7.2 (AV:L/AC:L/Au:N/C:C/I:C/A:C)
Affected products:
EMC SW:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
ESA-2011-024: EMC Captiva eInput multiple vulnerabilities.
EMC Identifier: ESA-2011-024
CVE Identifier: CVE-2011-1743, CVE-2011-1744
Affected products:
EMC SW: EMC Captiva eInput 2.1.1
Vulnerability Summary:
EMC Captiva eInput contains two v
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -
Debian Security Advisory DSA-2286-1 secur...@debian.org
http://www.debian.org/security/ Thijs Kinkhorst
July 26, 2011
20 matches
Mail list logo