Multiple SQL injection vulnerabilities in Cardoza Wordpress poll plugin

# Exploit Title : Multiple SQL injection vulnerabilities in Cardoza Wordpress poll plugin Author:Marcela Benetrix home:www.girlinthemiddle.net Date: 01/21/13 version: 34.05 software link:http://wordpress.org/extend/plugins/cardoza-wordpress-poll/ ##

Re: EMC Avamar: World writable cache files

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ESA-2013-003: EMC Avamar Client Elevation of Privilege Vulnerability EMC Identifier: ESA-2013-003 CVE Identifier: CVE-2012-2291 Severity Rating: CVSS v2 Base Score: 6.8 (AV:L/AC:L/Au:S/C:C/I:C/A:C) Affected Products: EMC Avamar HP-UX Client 4

Multiple Vulnerabilities in Linksys WRT54GL

Device Name: Linksys WRT54GL v1.1 Vendor: Linksys/Cisco Vulnerable Firmware Releases: Firmware Version: 4.30.15 build 2, 01/20/2011 Device Description: The Router lets you access the Internet via a wireless connection, broadcast at up to 54 M

(AUSCERT#20131775e) AusCERT 2013 Call For Presentations - closing in 10 days

-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 The AusCERT2013 Call for Presentations and Tutorials closes in 10 days on 31st January 2013. Please go to EasyChair to submit your paper: https://www.easychair.org/account/signin.cgi?conf=auscert2013 The AusCERT2013 program committee welcomes o

NoSuchCon CFP / 15-17 May 2013 / Paris, France

Dear hacking community, We would like to make public the CFP of the NoSuchCon conference. Read more at : http://www.nosuchcon.com/#cfp Thanks and regards, endrazine- *** PARENTAL ADVISORY: 100% technical cont

Mozilla Firefox and Microsoft Internet Explorer stall when using workaround from MS06-020 or MS06-069

Hi @ll, the Microsoft security bulletins show the following workaround to disable Macromedia Flash Player with software restriction policies a.k.a. SAFER: --- MS06-069.R

[SECURITY] [DSA 2605-2] asterisk regression update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2605-2 secur...@debian.org http://www.debian.org/security/ Thijs Kinkhorst January 19, 2013

CA20121220-01: Security Notice for CA IdentityMinder [updated]

CA20121220-01: Security Notice for CA IdentityMinder Issued: December 20, 2012 Updated: January 18, 2013 CA Technologies Support is alerting customers to two potential risks in CA IdentityMinder (formerly known as CA Identity Manager). Two vulnerabilities exist that can allow a remote attack

ESA-2013-008: EMC AlphaStor Multiple Vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ESA-2013-008: EMC AlphaStor Multiple Vulnerabilities EMC Identifier: ESA-2013-008 EMC Identifier: NW146708 CVE Identifier: CVE-2013-0928, CVE-2013-0929 Severity Rating: See below for individual severity scores Affected product: EMC AlphaSto

[SE-2012-01] Java 7 Update 11 confirmed to be vulnerable

Hello All, This post might be interesting for those concerned about the state of Oracle's Java SE security. We have successfully confirmed that a complete Java security sandbox bypass can be still gained under the recent version of Java 7 Update 11 [1] (JRE version 1.7.0_11-b21). MBeanInstanti

Recently-revised IETF I-Ds about IPv6 security

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Folks, Summary of IETF Internet-Drafts we have recently revised: Title: Security Assessment of Neighbor Discovery (ND) for IPv6 URL: Title: Security Implications