from:"Digital Security Research Group \[DSecRG\]"

[DSECRG-09-038] Sun Glassfish Woodstock Project - Linked XSS Vulnerability

2009-05-05 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-09-038 Original advisory: http://dsecrg.com/pages/vul/show.php?id=138 Application:Sun Glassfish Woodstock Project (part of Glassfish Enterprise Server) Versions Affected: 4.2 Vendor URL

[DSECRG-09-034] Sun Glassfish Enterprise Server - Multiple Linked XSS vulnerabilies

2009-05-05 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-09-034 Original advisory: http://dsecrg.com/pages/vul/show.php?id=134 Application:Sun Glassfish Enterprise Server Versions Affected: 2.1 Vendor URL: https://glassfish.dev.java.net/ Bug

SAP Cfolders Multiple Stored XSS Vulnerabilies

2009-04-22 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-09-014 Original advisory: http://dsecrg.com/pages/vul/show.php?id=114 Application:SAP Cfolders (included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms) Vendor URL

SAP Cfolders Multiple Linked XSS Vulnerabilities

2009-04-22 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-09-021 Original advisory: http://dsecrg.com/pages/vul/show.php?id=121 Application:SAP Cfolders (SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms (collaboration rooms)) Vendor URL

[DSECRG-08-041] Stored XSS Vulnerability in Xoops 2.3.x

2008-12-08 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-041 Application:XOOPS Versions Affected: 2.3.1, 2.3.2a Vendor URL: http://www.xoops.org/ Bug:Stored XSS Exploits: YES

[DSECRG-08-040] Multiple Local File Include Vulnerabilities in Xoops 2.3.x

2008-12-08 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-040 Application:XOOPS Versions Affected: 2.3.1 Vendor URL: http://www.xoops.org/ Bug:Multiple Local File Include Exploits

[DSECRG-08-037] Multiple Local File Include Vulnerabilities in Pluck CMS 4.5.2

2008-08-25 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-037 Application:Pluck CMS Versions Affected: 4.5.2 Vendor URL: http://www.pluck-cms.org/ Bug:Multiple Local File Include Exploits

[DSECRG-08-038] Multiple Local File Include Vulnerabilities in ezContents CMS 2.0.3

2008-08-25 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-038 Application:ezContents CMS Versions Affected: 2.0.3 Application URL:http://www.ezcontents.org/ Vendor URL: http://www.visualshapers.com/ Bug

[DSECRG-08-036] Multiple Security Vulnerabilities in Freeway eCommerce 1.4.1.171

2008-08-18 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-036 Application:Freeway eCommerce Versions Affected: 1.4.1.171 Vendor URL: http://www.openfreeway.org/ Bugs: RFI, Multiple LFI, XSS Exploits

[DSECRG-08-035] Local File Include Vulnerability in Gallery 1.5.7, 1.6-alpha3

2008-08-08 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-035 Application:Gallery Versions Affected: 1.5.7, 1.6-alpha3 Vendor URL: http://gallery.menalto.com/ Bug:Local File Include Exploits

[DSECRG-08-034] Local File Include Vulnerability in Minishowcase v09b136

2008-07-29 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-034 Application:Minishowcase Image Gallery Versions Affected: v09b136 Vendor URL: http://minishowcase.frwrd.net Bug:Local File Include

[DSECRG-08-033] Local File Include Vulnerability in Pixelpost 1.7.1

2008-07-28 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-033 Application:Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug:Local File Include Exploits

[DSECRG-08-032] Claroline 1.8.10 Multiple XSS Vulnerabilities

2008-07-22 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-032 Application:Claroline eLearning and eWorking platform Versions Affected: 1.8.10 Vendor URL: http://www.claroline.net/ Bug:Multiple Linked XSS

[DSECRG-08-031] Local File Include Vulnerability in Interact 2.4.1

2008-07-21 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-31 Application:Interact E-Learning System Versions Affected: 2.4.1 Vendor URL: http://sourceforge.net/projects/cce-interact Bug:Local File

[DSECRG-08-030] Claroline 1.8.9 Multiple Security Vulnerabilities

2008-07-18 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-030 Application:Claroline eLearning and eWorking platform Versions Affected: 1.8.9 Vendor URL: http://www.claroline.net/ Bug:Multiple XSS, Phishing

[DSECRG-08-027] Multiple RFI-LFI in 1024 CMS 1.4.3, 1.4.4 RFC

2008-07-04 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-027 Application:1024 CMS Versions Affected: 1.4.3, 1.4.4 RFC Vendor URL: http://www.1024cms.com/ Bug:Multiple Remote/Local File Include Exploits

[DSECRG-08-011 | FIX INFORMATION] Astrosoft HelpDesk Multiple XSS

2008-02-14 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-011 | FIX INFORMATION Application:Astrosoft HelpDesk Versions Affected: < 1.95.228 Vendor URL: http://astrosoft.ru/ Bugs: Multiple XSS Injecti

[DSECRG-08-014] Multiple LFI in PowerNews (Newsscript) 2.5.6

2008-02-08 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-014 Application:PowerNews (Newsscript) Versions Affected: 2.5.6 Vendor URL: http://www.powerscripts.org/ Bug:Multiple Local File Include Exploits

[DSECRG-08-013] Modx 0.9.6.1, 0.9.6.1p1 Multiple Security Vulnerabilities

2008-02-07 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-013 Application:MODx CMS Versions Affected: 0.9.6.1, 0.9.6.1p1 Vendor URL: http://modxcms.com/ Bugs: XSS, SiXSS, stored XSS, Change User Password

[DSECRG-08-012] Multiple LFI in Azucar CMS 1.3

2008-02-05 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-012 Application:Azucar CMS Versions Affected: 1.3 Vendor URL: http://azucarcms.sourceforge.net/en_home.htm Bug:Multiple Local File Include Exploits

[DSECRG-08-002] Local File Include in arias 0.99-6

2008-01-16 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-002 Application:aria-0.99-6 (Web based ERP) Versions Affected: aria-0.99-6 Vendor URL: http://www.tucows.net/ Bug:Local File Include Exploits

[DSECRG-08-003] blogcms 4.2.1b Multiple Security Vulnerabilities

2008-01-16 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-003 Application:Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits

LFI in Tuned Studios Templates

2008-01-09 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory #DSECRG08-001 Application:Tuned Studios Templates Versions Affected: All Vendor URL: http:/www.tunedstudios.com Bug:Local File Include Exploit

2z-project 0.9.6.1 Multiple Security Vulnerabilities

2007-12-28 Thread Digital Security Research Group [DSecRG]

Digital Security Research Group [DSecRG] Advisory Name:2z project Systems Affected:2z project 0.9.6.1 Vendor URL: http://2z-project.ru Authors: Alexandr Polyakov, Stas Svistunovich Digital Security Reasearch Group

[DSECRG-09-038] Sun Glassfish Woodstock Project - Linked XSS Vulnerability

[DSECRG-09-034] Sun Glassfish Enterprise Server - Multiple Linked XSS vulnerabilies

SAP Cfolders Multiple Stored XSS Vulnerabilies

SAP Cfolders Multiple Linked XSS Vulnerabilities

[DSECRG-08-041] Stored XSS Vulnerability in Xoops 2.3.x

[DSECRG-08-040] Multiple Local File Include Vulnerabilities in Xoops 2.3.x

[DSECRG-08-037] Multiple Local File Include Vulnerabilities in Pluck CMS 4.5.2

[DSECRG-08-038] Multiple Local File Include Vulnerabilities in ezContents CMS 2.0.3

[DSECRG-08-036] Multiple Security Vulnerabilities in Freeway eCommerce 1.4.1.171

[DSECRG-08-035] Local File Include Vulnerability in Gallery 1.5.7, 1.6-alpha3

[DSECRG-08-034] Local File Include Vulnerability in Minishowcase v09b136

[DSECRG-08-033] Local File Include Vulnerability in Pixelpost 1.7.1

[DSECRG-08-032] Claroline 1.8.10 Multiple XSS Vulnerabilities

[DSECRG-08-031] Local File Include Vulnerability in Interact 2.4.1

[DSECRG-08-030] Claroline 1.8.9 Multiple Security Vulnerabilities

[DSECRG-08-027] Multiple RFI-LFI in 1024 CMS 1.4.3, 1.4.4 RFC

[DSECRG-08-011 | FIX INFORMATION] Astrosoft HelpDesk Multiple XSS

[DSECRG-08-014] Multiple LFI in PowerNews (Newsscript) 2.5.6

[DSECRG-08-013] Modx 0.9.6.1, 0.9.6.1p1 Multiple Security Vulnerabilities

[DSECRG-08-012] Multiple LFI in Azucar CMS 1.3

[DSECRG-08-002] Local File Include in arias 0.99-6

[DSECRG-08-003] blogcms 4.2.1b Multiple Security Vulnerabilities

LFI in Tuned Studios Templates

2z-project 0.9.6.1 Multiple Security Vulnerabilities

24 matches

Site Navigation

Mail list logo

Footer information