Seeker Research Center Security Advisory
This vulnerability was discovered by Seeker(r) Automatic Run-Time
Application Security Testing Solution
bDisclosed By Irene Abezgauz, September 13th, 2011
=
I. Overview
=
An Insecure Redirect vulnerability has been identified
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -
Debian Security Advisory DSA-2309-1 secur...@debian.org
http://www.debian.org/security/ Raphael Geissert
September 13, 2011
-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
-- next part --
An HTML attachment was scrubbed...
URL:
http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20110914
# Exploit Title: WordPress Auctions plugin = 1.8.8 SQL Injection
Vulnerability
# Date: 2011-09-09
# Author: sherl0ck_ sherl0ck_[at]alligatorteam[dot]org
@AlligatorTeam
# Software Link: http://downloads.wordpress.org/plugin/wp-auctions.zip
# Version: 1.8.8 (tested)
---
PoC
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Cisco Security Advisory: CiscoWorks LAN Management Solution Remote
Code Execution Vulnerabilities
Advisory ID: cisco-sa-20110914-lms
Revision 1.0
For Public Release 2011 September 14 1600 UTC (GMT
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Cisco Security Advisory: Cisco Unified Service Monitor and Cisco
Unified Operations Manager Remote Code Execution Vulnerabilities
Advisory ID: cisco-sa-20110914-cusm
Revision 1.0
For Public Release 2011 September 14 1600 UTC (GMT
On Wed, Sep 14, 2011 at 12:04:03PM -0300, Heyder[AlligatorTeam] wrote:
# Exploit Title: WordPress Auctions plugin = 1.8.8 SQL Injection
Vulnerability
# Date: 2011-09-09
# Author: sherl0ck_ sherl0ck_[at]alligatorteam[dot]org
@AlligatorTeam
# Software Link:
Core Security - Corelabs Advisory
http://corelabs.coresecurity.com/
Multiples Vulnerabilities in ManageEngine ServiceDesk Plus
1. *Advisory Information*
Title: Multiples Vulnerabilities in ManageEngine ServiceDesk Plus
Advisory ID: CORE-2011-0506
Advisory URL:
# Exploit Title: WordPress Auctions plugin = 1.8.8 SQL Injection
Vulnerability
# Date: 2011-09-09
# Author: sherl0ck_ sherl0ck_[at]alligatorteam[dot]org
@AlligatorTeam
# Software Link: http://downloads.wordpress.org/plugin/wp-auctions.zip
# Version: 1.8.8 (tested)
---
PoC