Bugtraq: by thread

ZERT patch for setSlice() Gadi Evron (Sep 30 2006)
Advisory 07/2006: phpMyAdmin Multiple CSRF Vulnerabilities Stefan Esser (Oct 01 2006)
phpMyWebmin 1.0 <= (target) Remote File Include Vulnerability x0r0n_at_hotmail.com (Sep 30 2006)
[OpenPKG-SA-2006.022] OpenPKG Security Advisory (openssh) OpenPKG (Oct 01 2006)
0day in Firefox from ToorCon '06 Thor Larholm (Oct 01 2006)
zero-day flaws in Firefox: about 30 unpatched Firefox flaws ragan_at_gmail.com (Oct 01 2006)
- Re: zero-day flaws in Firefox: about 30 unpatched Firefox flaws Mailinglists Address (Oct 04 2006)
Layered Defense Advisory: TrendMicro OfficesScan Corporate Edition Format String Vulnerability dh_at_layereddefense.com (Oct 01 2006)
EasyBannerFree (functions.php) Remote File Include Exploit las_kid_at_yahoo.com (Oct 01 2006)
IBM Informix Dynamic Server V10.0 File Clobbering during Install Larry Cashdollar (Oct 01 2006)
Pebble 2.0.0 RC[1,2] XSS vulnerability Paolo Perego (Oct 02 2006)
Kerio Multiple insufficient argument validation of hooked SSDT function Vulnerability David Matousek (Oct 01 2006)
"POC 2006" by Korean hackers securityproof (Oct 01 2006)
[security bulletin] HPSBUX02157 SSRT061220 rev.1 HP-UX Running Ignite-UX Server, Remote Unauthorized Access and Privilege Elevation security-alert_at_hp.com (Oct 02 2006)
Dayfox Blog v2.0 Remote file include dj_remix_20_at_hotmail.com (Oct 01 2006)
IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]) Paul Szabo (Oct 02 2006)
- Re: [Full-disclosure] IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]) Brian Eaton (Oct 02 2006)
  - Re: [Full-disclosure] IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]) Paul Szabo (Oct 02 2006)
  - Re: [Full-disclosure] IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]) Paul Szabo (Oct 02 2006)
[USN-355-1] openssh vulnerabilities Martin Pitt (Oct 02 2006)
[USN-356-1] gdb vulnerability Martin Pitt (Oct 02 2006)
digishop v 4.0.0 Xss Vuln. meto5757_at_hotmail.com (Oct 01 2006)
[USN-354-1] Firefox vulnerabilities Martin Pitt (Oct 02 2006)
Security contact for Myspace/Fox? E Mintz (Sep 28 2006)
- Re: Security contact for Myspace/Fox? Juha-Matti Laurio (Oct 02 2006)
Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053] Eiji James Yoshida (Sep 30 2006)
Portable shell-exploit for buffer-overflow bugs Roman Medina-Heigl Hernandez (Sep 29 2006)
Re: WebCalendar-1.0.3 reading of any files webcalendar_at_bouwmansgoed.nl (Sep 29 2006)
Re: net2ftp: a web based FTP client :) <= Remote File Inclusion securfrog_at_gmail.com (Oct 02 2006)
[security bulletin] HPSBUX02129 SSRT061149 rev.1 - HP-UX running SLP, Remote Unauthorized Access security-alert_at_hp.com (Oct 02 2006)
FreeBSD Security Advisory FreeBSD-SA-06:22.openssh FreeBSD Security Advisories (Sep 30 2006)
[SECURITY] [DSA 1185-2] New openssl packages fix arbitrary code execution Noah Meyerhans (Oct 02 2006)
[ MDKSA-2006:172-1 ] - Updated openssl packages fix vulnerabilities security_at_mandriva.com (Oct 02 2006)
[ MDKSA-2006:177 ] - Updated MySQL packages rebuilt against updated openssl. security_at_mandriva.com (Oct 02 2006)
[ MDKSA-2006:178 ] - Updated ntp packages rebuilt against updated openssl. security_at_mandriva.com (Oct 02 2006)
Re: WebspotBlogging => 3.0 Remote File Include Vulnerabilities Steven M. Christey (Oct 02 2006)
Security flaw in IBM Client Security Password Manager Lu�s Miguel Silva (Oct 02 2006)
PacSec 2006 Papers announcement and EUSecWest Call For Papers Dragos Ruiu (Oct 02 2006)
iDefense Security Advisory 10.02.06: Novell GroupWise Messenger nmma.exe DoS Vulnerability iDefense Labs (Oct 03 2006)
phpMyProfiler remote file include mozi2weed_at_yahoo.com (Oct 03 2006)
[CAID 34661]: CA Unicenter WSDM File System Read Access Vulnerability Williams, James K (Oct 03 2006)
Advisory 08/2006: PHP open_basedir Race Condition Vulnerability Stefan Esser (Oct 03 2006)
[ MDKSA-2006:179 ] - Updated openssh packages fix DoS vulnerabilities security_at_mandriva.com (Oct 03 2006)
[SECURITY] [DSA 1188-1] New mailman packages fix several problems Martin Schulze (Oct 04 2006)
Directory Traversal Vulnerability in Goop Gallery 2.0.2 security_at_armorize.com (Oct 04 2006)
Yener Haber Script v2.0 SQL injection dj_remix_20_at_hotmail.com (Oct 04 2006)
Technical Paper on the ZERT Patch and VML [was: Re: ZERT patch for setSlice()] Gadi Evron (Oct 04 2006)
- Re: [funsec] Technical Paper on the ZERT Patch and VML [was: Re: ZERT patch for setSlice()] Alexander Sotirov (Oct 04 2006)
  - Re: [funsec] Technical Paper on the ZERT Patch and VML [was: Re: ZERT patch for setSlice()] Gadi Evron (Oct 08 2006)
[USN-358-1] ffmpeg, xine-lib vulnerabilities Martin Pitt (Oct 04 2006)
[USN-353-2] OpenSSL vulnerability Martin Pitt (Oct 04 2006)
[USN-357-1] Mono vulnerability Martin Pitt (Oct 04 2006)
Invision Power Board Multiple Vulnerabilities Rapigator (Oct 04 2006)
[ GLSA 200610-01 ] Mozilla Thunderbird: Multiple vulnerabilities Matthias Geerdsen (Oct 04 2006)
[SECURITY] [DSA 1189-1] New openssh-krb5 packages fix denial of service and potential execution of arbitrary code Moritz Muehlenhoff (Oct 04 2006)
[SECURITY] [DSA 1190-1] New maxdb-7.5.00 packages fix execution of arbitrary code Moritz Muehlenhoff (Oct 04 2006)
[ GLSA 200610-02 ] Adobe Flash Player: Arbitrary code execution Matthias Geerdsen (Oct 04 2006)
Vulnerability Type Distributions in CVE Steven M. Christey (Oct 04 2006)
WikyBlog <= v1.4 (WN_BASEDIR) Remote File Inclusion Exploit xp1o_at_msn.com (Oct 04 2006)
- Re: WikyBlog <= v1.4 (WN_BASEDIR) Remote File Inclusion Exploit Steven M. Christey (Oct 06 2006)
Re: Concurrency-related vulnerabilities in browsers - expect problems Mike_at_gmail.com (Oct 04 2006)
- Re: Concurrency-related vulnerabilities in browsers - expect problems Nick Boyce (Oct 06 2006)
- Re: Concurrency-related vulnerabilities in browsers - expect problems Josh Bressers (Oct 05 2006)
[SECURITY] [DSA 1191-1] New Mozilla Thunderbird packages fix several vulnerabilities Martin Schulze (Oct 05 2006)
iDefense Security Advisory 10.05.06: Symantec AntiVirus IOCTL Kernel Privilege Escalation Vulnerability iDefense Labs (Oct 05 2006)
[ MDKSA-2006:180 ] - Updated php packages fix integer overflow vulnerability security_at_mandriva.com (Oct 05 2006)
Vulnerable function in newest PowerPoint case (MS Advisory #925984) Juha-Matti Laurio (Oct 05 2006)
Hazir Site v2.0 Admin SQL Injection dj_remix_20_at_hotmail.com (Oct 06 2006)
SUSE Security Summary Report SUSE-SR:2006:024 Thomas Biege (Oct 06 2006)
[SECURITY] [DSA 1192-1] New Mozilla packages fix several vulnerabilities Martin Schulze (Oct 06 2006)
TSLSA-2006-0055 - multi Trustix Security Advisor (Oct 06 2006)
TorrentFlux User-Agent XSS Vulnerability sec_at_srasg.stevenroddis.com.au (Oct 05 2006)
[USN-359-1] Python vulnerability Martin Pitt (Oct 06 2006)
phpMyTeam v2.0 <= (smileys_dir) Remote File Include Vulnerability x0r0n_at_hotmail.com (Oct 05 2006)
ackerTodo 4.2 SQL Injection Vulnerability Francesco Laurita (Oct 05 2006)
ZDI-06-030: CA Multiple Product Discovery Service Remote Buffer Overflow Vulnerability zdi-disclosures_at_3com.com (Oct 05 2006)
ZDI-06-031: CA Multiple Product Message Engine RPC Server Code Execution Vulnerability zdi-disclosures_at_3com.com (Oct 05 2006)
[Reversemode Advisory] Symantec Antivirus Engine Privilege Escalation Reversemode (Oct 05 2006)
[CAID 34693, 34694]: CA BrightStor ARCserve Backup Multiple Buffer Overflow Vulnerabilities Williams, James K (Oct 06 2006)
TSRT-06-12: CA BrightStor Discovery Service Mailslot Buffer Overflow Vulnerability TSRT_at_3com.com (Oct 05 2006)
rPSA-2006-0183-1 nss_ldap rPath Update Announcements (Oct 05 2006)
rPSA-2006-0185-1 gnome-ssh-askpass openssh openssh-client openssh-server rPath Update Announcements (Oct 05 2006)
TSRT-06-11: CA Multiple Product DBASVR RPC Server Multiple Buffer Overflow Vulnerabilities TSRT_at_3com.com (Oct 05 2006)
rPSA-2006-0182-1 php php-mysql php-pgsql rPath Update Announcements (Oct 05 2006)
FreeWPS File Upload Command Execution security_at_soqor.net (Oct 05 2006)
Details of Lotus Notes Java Applet vulnerabilities Jouko Pynnonen (Oct 06 2006)
Emek Portal v2.1 SQL Injection dj_remix_20_at_hotmail.com (Oct 06 2006)
phponline <= (LangFile) Remote File Inclusion Exploit xp1o_at_msn.com (Oct 05 2006)
[ GLSA 200610-03 ] ncompress: Buffer Underflow Raphael Marichez (Oct 06 2006)
Re: net2ftp Remote File Inclusion - bogus report david_at_net2ftp.com (Oct 06 2006)
LS-20060330 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability advisories_at_lssec.com (Oct 07 2006)
Vulnerability in Btitracker aeroxteam_at_gmail.com (Oct 06 2006)
LS-20060220 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability advisories_at_lssec.com (Oct 07 2006)
FreeForum 0.9.7 (fpath) Remote File Include Vulnerability x0r0n_at_hotmail.com (Oct 07 2006)
LS-20060313 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability advisories_at_lssec.com (Oct 07 2006)
- Re: Invision Power Board Multiple Vulnerabilities Rapigator (Oct 07 2006)
phpBB User Viewed Posts Tracker Version <= 1.0 [phpbb_root_path] File Include Vulnerability x0r0n_at_hotmail.com (Oct 06 2006)
Cahier de textes 2.0 Remote SQL injection Exploit sami_at_linuxmail.org (Oct 07 2006)
Sorry....My Message With Out Live Site.... Dr.Ninux_at_hotmail.com (Oct 07 2006)
Observations on Mandatory Integrity Control (MIC) in Windows Vista Enno Rey (Oct 06 2006)
RE: Informing Companies about security vulnerabilities... bugtraq_at_cgisecurity.net (Oct 04 2006)
- RE: Informing Companies about security vulnerabilities... Arian J. Evans (Oct 05 2006)
- RE: Informing Companies about security vulnerabilities... Wolf Halton (Oct 04 2006)
PHP Live! <= 3.1 help.php Remote File Inclusion vulnerability paisterist.nst_at_gmail.com (Oct 07 2006)
JavaScript Spider (code that can traverse the web) pdp (architect) (Oct 06 2006)
The latest version of iSearch is V2.16 <= (index.php) Remote File Inclusion Exploit xp1o_at_msn.com (Oct 07 2006)
- Re: The latest version of iSearch is V2.16 <= (index.php) Remote File Inclusion Exploit str0ke (Oct 09 2006)
  - Re: The latest version of iSearch is V2.16 <= (index.php) Remote File Inclusion Exploit Steven M. Christey (Oct 10 2006)
[ECHO_ADV_49$2006]OpenDock Easy Doc <=1.4 (doc_directory) Multiple Remote File Inclusion Vulnerability erdc_at_echo.or.id (Oct 08 2006)
Advanced Poll v2.02 :) <= Remote File Inclusion alguidy_at_hotmail.com (Oct 08 2006)
[ECHO_ADV_50$2006]OpenDock Easy Blog <=1.4 (doc_directory) Multiple Remote File Inclusion Vulnerability erdc_at_echo.or.id (Oct 08 2006)
[ECHO_ADV_51$2006] docmint <= 2.0 (MY_ENV[BASE_ENGINE_LOC]) Remote File Inclusion Vulnerability erdc_at_echo.or.id (Oct 08 2006)
PHPMyNews 1.4 <= (cfg_include_dir) Remote File Include Vulnerability xorontr_at_gmail.com (Oct 08 2006)
Advisory 09/2006: PHP unserialize() Array Creation Integer Overflow Stefan Esser (Oct 08 2006)
[ECHO_ADV_48$2006] WebYep <= 1.1.9 (webyep_sIncludePath) Multiple Remote File Inclusion Vulnerability erdc_at_echo.or.id (Oct 08 2006)
XSS IN paFileDB 3.1 zarloule04_at_hotmail.fr (Oct 08 2006)
Freenews v1.1 <= (chemin) Remote File Include Vulnerability xorontr_at_gmail.com (Oct 08 2006)
PHP open_basedir with symlink() function Race Condition PoC exploit paisterist.nst_at_gmail.com (Oct 09 2006)
SQL injection - 4images disfigure (Oct 08 2006)
SQL injection - moodle disfigure (Oct 08 2006)
- Re: [Full-disclosure] SQL injection - moodle scsantos_at_unigranrio com br (Oct 09 2006)
HITBSecConf2006 CTF Source code and daemons Praburaajan (Oct 08 2006)
SUSE Security Announcement: php4,php5 (SUSE-SA:2006:059) Ludwig Nussel (Oct 09 2006)
Cisco Security Advisory: Limitations in Cisco Secure Desktop Cisco Systems Product Security Incident Response Team (Oct 09 2006)
[ECHO_ADV_52$2006]OpenDock Easy Gallery <=1.4 (doc_directory) Multiple Remote File Inclusion Vulnerability erdc_at_echo.or.id (Oct 08 2006)
yet another OpenSSH timing leak? Marco Ivaldi (Oct 09 2006)
- Re: yet another OpenSSH timing leak? Gianluca Varisco (Oct 09 2006)
- Re: yet another OpenSSH timing leak? Marco Ivaldi (Oct 10 2006)
- Re: yet another OpenSSH timing leak? Marco Ivaldi (Oct 14 2006)
[SECURITY] [DSA 1194-1] New libwmf packages fix arbitrary code execution Moritz Muehlenhoff (Oct 09 2006)
Re: net2ftp: a web based FTP client :) <= Remote File Inclusion Steven M. Christey (Oct 09 2006)
[USN-361-1] Mozilla vulnerabilities Martin Pitt (Oct 10 2006)
[USN-360-1] awstats vulnerabilities Martin Pitt (Oct 10 2006)
7 php scripts File Inclusion / Source disclosure Vuln gmdarkfig_at_gmail.com (Oct 07 2006)
[ECHO_ADV_54$2006]vtiger CRM <=4.2 (calpath) Multiple Remote File Inclusion Vulnerability erdc_at_echo.or.id (Oct 09 2006)
MS Windows DRM software Memory Corruption Joxean Koret (Oct 09 2006)
phpWebSite 0.10.2 Remote File Include Vulnerabilities crackers_child_at_sibersavascilar.com (Oct 09 2006)
- Re: phpWebSite 0.10.2 Remote File Include Vulnerabilities kevin_at_tux.appstate.edu (Oct 10 2006)
MHL-2006-001 Public Advisory: "Eazy Cart" Multiple Security Issues Mayhemic Labs Security (Oct 09 2006)
eXpBlog <= 0.3.5 Cross Site Scripting Vulnerabilities Tamriel (Oct 09 2006)
[security bulletin] HPSBUX02087 SSRT4728 rev.4 - HP-UX running TCP/IP Remote Denial of Service (DoS) security-alert_at_hp.com (Oct 10 2006)
ZDI-06-033: Microsoft Office Excel File Format DATETIME Record Parsing Vulnerability zdi-disclosures_at_3com.com (Oct 10 2006)
ZDI-06-032: Microsoft Office PowerPoint Malformed Slide Notes Rebuilding Vulnerability zdi-disclosures_at_3com.com (Oct 10 2006)
ZDI-06-034: Microsoft Office Word Malformed Chart Code Execution Vulnerability zdi-disclosures_at_3com.com (Oct 10 2006)
[USN-362-1] PHP vulnerabilities Martin Pitt (Oct 10 2006)
[Fedora] libtool-ltdl uses relative paths to resolve and load libraries Enrico Scholz (Oct 10 2006)
[SECURITY] [DSA 1195-1] new openssl096 packages fix denial of service Noah Meyerhans (Oct 10 2006)
PHPLibrary <= 1.5.3 Remote File Inclusion k1tk4t_at_newhack.org (Oct 10 2006)
tagit2b -- Remote File Inclusion k1tk4t_at_newhack.org (Oct 10 2006)
claroline <= 180rc1 Remote File Inclusion k1tk4t_at_newhack.org (Oct 10 2006)
blueshoes <= 4.6_public Remote File Inclusion k1tk4t_at_newhack.org (Oct 10 2006)
pacsec hype security team: 7 words of warning about Macromedia Flash Player 9+ Dragos Ruiu (Oct 10 2006)
iDefense Security Advisory 10.10.06: FreeBSD ptrace PT_LWPINFO Denial of Service Vulnerability iDefense Labs (Oct 10 2006)
[ MDKSA-2006:181 ] - Updated python packages fix vulnerability security_at_mandriva.com (Oct 10 2006)
rPSA-2006-0187-1 idle python rPath Update Announcements (Oct 10 2006)
Directory Traversal Vulnerability in Goop Gallery 2.0.2 security_at_armorize.com (Oct 10 2006)
- Re: Directory Traversal Vulnerability in Goop Gallery 2.0.2 gene_at_ritterfamily.org (Oct 16 2006)
ShmooCon 2006 CFP Announcement B Potter (Oct 10 2006)
Microsoft Office Malformed Record Memory Corruption Vulnerability Sowhat (Oct 10 2006)
MysqlDumper Version 1.21 b6 Xss Vulnerability crackers_child_at_sibersavascilar.com (Oct 11 2006)
Secunia Research: Microsoft Windows Object Packager Dialog Spoofing Secunia Research (Oct 11 2006)
- Re: Secunia Research: Microsoft Windows Object Packager Dialog Spoofing edubp2002_at_hotmail.com (Oct 14 2006)
[USN-363-1] libmusicbrainz vulnerability Kees Cook (Oct 11 2006)
Jinzora <= 2.1 Remote File Inclusion k1tk4t_at_newhack.org (Oct 10 2006)
AlberT-EasySite <= 1.0.a5 Remote File Inclusion k1tk4t_at_newhack.org (Oct 10 2006)
gcards (languagefile) <= Remote File Include D-virus_at_linuxmail.org (Oct 10 2006)
- Re: gcards (languagefile) <= Remote File Include str0ke (Oct 11 2006)
Noah's Classifieds Cross Site Scripting Vulnerability raphael.huck_at_free.fr (Oct 10 2006)
New tool release today - "wyd" - password profiling Max Moser (Oct 10 2006)
CommunityPortals <= 1.0 Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 11 2006)
[ MDKSA-2006:182 ] - Updated kernel packages fix multiple vulnerabilities and bugs security_at_mandriva.com (Oct 11 2006)
zenphoto Multiple Path Disclosure and Cross Site Scripting Vulnerabilities raphael.huck_at_free.fr (Oct 11 2006)
iDefense Security Advisory 10.11.06: AOL YGPPDownload SetAlbumName ActiveX Control Buffer Overflow Vulnerability iDefense Labs (Oct 11 2006)
new version of phplist fix XSS vulnerability info_at_phplist.com (Oct 11 2006)
iDefense Security Advisory 10.11.06: Sun Microsystems Solaris NSPR Library Arbitrary File Creation Vulnerability iDefense Labs (Oct 11 2006)
MS06-060 Microsoft Word Memmove Code Execution Avert_at_avertlabs.com (Oct 11 2006)
SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability Research (Oct 11 2006)
MHL-2006-002 Public Advisory: "Call-Center-Software" Multiple Security Issues Mayhemic Labs Security (Oct 11 2006)
XeoPort <= 0.81 SQL Injection Vulnerability Tamriel (Oct 11 2006)
Xeobook <= 0.93 Multiple SQL Injection Vulnerabilities Tamriel (Oct 11 2006)
[security bulletin] HPSBMA02158 SSRT061251 rev.1 - HP Version Control Agent, Remote Unauthorized Access and Possible Elevation of Privilege security-alert_at_hp.com (Oct 12 2006)
ExtCalThai_Component <= 0.9.1 Remote File Inclusion k1tk4t_at_newhack.org (Oct 12 2006)
Cisco Security Advisory: Default Password in Wireless Location Appliance Cisco Systems Product Security Incident Response Team (Oct 12 2006)
Journals System <= 1.0.2 [RC2] Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
Admin User Viewed Posts Tracker Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
Iono all version fullpath disclosure hack2prison_at_yahoo.com (Oct 11 2006)
Security Suite IP Logger Remote File Inclusion ReeM_HaCk_at_HoTmAiL.cOm (Oct 11 2006)
Download-Engine Remote File Include v1per-hacker_at_hotmail.com (Oct 12 2006)
Black Hat CFP, Registration, and Announcements for October Jeff Moss (Oct 12 2006)
Phpbb insert mod Remote file include By_KorsaN_Son_at_hotmail.com (Oct 12 2006)
Google Earth (kml & kmz files) buffer overflow Alexander Hristov (Oct 12 2006)
Mcafee Network Agent (mcnasvc.exe) Remote DoS Alexander Hristov (Oct 12 2006)
Open Conference Systems <= 1.1.3 Remote File Inclusion k1tk4t_at_newhack.org (Oct 12 2006)
CMS contenido Remote File Inclusion CvIr.System_at_gmail.com (Oct 13 2006)
[security bulletin] HPSBST02160 SSRT061254 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS06-055 security-alert_at_hp.com (Oct 12 2006)
[security bulletin] HPSBST02134 SSRT061187 rev.2 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS06-052, MS06-053 and MS06-054 security-alert_at_hp.com (Oct 12 2006)
RamaCMS (adodb.inc.php) Remote File Inclue Vulnerability Le.CoPrA_at_hotmail.com (Oct 12 2006)
CMS contenido Path Disclosure CvIr.System_at_gmail.com (Oct 13 2006)
PacSec Hype Security Team: CGI.pm param injection Dragos Ruiu (Oct 12 2006)
Morcego CMS <= 0.9.6 Remote File Inclue Vulnerability Le.CoPrA_at_hotmail.com (Oct 12 2006)
SpamBlockerMODv <= 1.0.2 Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
Download-Engine Remote File İnclude By_KorsaN_Son_at_Hotmail.com (Oct 12 2006)
ISOI II - a DA Workshop (announcement and CFP) Gadi Evron (Oct 13 2006)
PHP Cards <= 1.3 Remote File Inclue Vulnerability Le.CoPrA_at_hotmail.com (Oct 12 2006)
Utimaco Safeguard Easy vulnerability boomboom999_at_yahoo.com (Oct 12 2006)
- Re: Utimaco Safeguard Easy vulnerability Juha-Matti Laurio (Oct 18 2006)
Bloq 0.5.4 Remote File İnclude By_KorsaN_Son_at_Hotmail.com (Oct 12 2006)
phpBB Security <= 1.0.1 Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
PHPht Topsites Remote File İnclude By_KorsaN_Son_at_Hotmail.com (Oct 12 2006)
news7 <= (news.php) Remote File Inclusion Exploit xp1o_at_msn.com (Oct 12 2006)
Jax Newspage Remote File include dj_remix_20_at_hotmail.com (Oct 12 2006)
TorrentFlux startpop.php torrent Script Insertion 566d9bfe_at_srasg.stevenroddis.com.au (Oct 12 2006)
[SECURITY] [DSA 1166-2] New cheesetraceker packages fix buffer overflow Steve Kemp (Oct 13 2006)
pbpbb archive for search engines Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
Jax LinkLists Remote File include dj_remix_20_at_hotmail.com (Oct 12 2006)
- Re: Jax LinkLists Remote File include xorontr_at_gmail.com (Oct 14 2006)
MNews <= 2.0 (noticias.php) Remote File Inclue Vulnerability Le.CoPrA_at_hotmail.com (Oct 12 2006)
phpMyConferences <= 8.0.2 Remote File Inclusion k1tk4t_at_newhack.org (Oct 12 2006)
phpBB Add Name Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
SpamOborona PHPBB Plugin Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
maluinfo version 206.2.38l Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
AMAZONIA MOD Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
phpBB PlusXL 2.x <= biuld 272 Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
news defilante horizontale <= 4.1.1 Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
phpBB lat2cyr <= 1.0.1 Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
RPG Events 1.0.0 Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
PhpBB Prillian French Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
PHP Top webs (config.php) Remote File Inclue Vulnerability Le.CoPrA_at_hotmail.com (Oct 12 2006)
Buzlas <= v2006-1 Full Remote File Include Vulnerability nima.salehi_at_yahoo.com (Oct 12 2006)
iDefense Security Advisory 10.13.06: Apache HTTP Server mod_tcl set_var Format String Vulnerability iDefense Labs (Oct 13 2006)
@lex Guestbook <=(ModeliXe.php) Remote File Inclusion Exploit xp1o_at_msn.com (Oct 13 2006)
- Re: @lex Guestbook <=(ModeliXe.php) Remote File Inclusion Exploit ptitgal_at_hotmail.com (Oct 15 2006)
EXlor 1.0 (/fonctions/template.php) Remote File Include Vulnerability mahmood ali (Oct 14 2006)
Re: iDefense Security Advisory 10.11.06: Sun Microsystems Solaris NSPR Library Arbitrary File Creation Vulnerability Marco Ivaldi (Oct 13 2006)
Multiple XSS Vulnerability in Gcontact security_at_armorize.com (Oct 13 2006)
Re: DanPHPSupport => 0.5 Cross Site Scripting Vulnerabilities dansoftaus_at_yahoo.com.au (Oct 13 2006)
WDT:- osTicket File Include all V stormhacker_at_hotmail.com (Oct 13 2006)
Re: Multiple XSS Vulnerabilities in Zen Cart 1.3.5 security_at_armorize.com (Oct 13 2006)
Jinzora 2.6 - Remote File Include Vulnerabilities erne_at_ernealizm.com (Oct 14 2006)
Spoofing security dialog in object packager - 2 seejay.11_at_gmail.com (Oct 14 2006)
ISS BlackICE PC Protection Filelock protection bypass Vulnerability Matousec - Transparent security Research (Oct 15 2006)
Re: [Full-disclosure] Kmail <= 1.9.1 (table/frameset) DOS Vidar L�kken (Oct 14 2006)
Kmail <= 1.9.1 (table/frameset) DOS nnp (Oct 14 2006)
Security Advisory for Bugzilla 2.18.5, 2.20.2, 2.22, and 2.23.2 mkanat_at_bugzilla.org (Oct 15 2006)
vbulletin Exploit Tool Box m4k3_at_pldsecurity.securityfocus.com, (Oct 15 2006)
- Re: vbulletin Exploit Tool Box scottREMOVE_at_vbulletin.com (Oct 17 2006)
bbsNew ( File Include Vulnerability Exploit ) h4ck3riran_at_yahoo.com (Oct 15 2006)
SYMSA-2006-010: Directory Traversal in IronWebMail research_at_symantec.com (Oct 13 2006)
Back-end ( File Include Vulnerability Exploit ) h4ck3riran_at_yahoo.com (Oct 15 2006)
maintain-3.0.0-RC2 - Remote File Include Vulnerabilities erne_at_ernealizm.com (Oct 15 2006)
Full Path Disclosure in PHP-Wyana xx_hack_xx_2004_at_hotmail.com (Oct 14 2006)
:ShAnKaR: WoltLab Burning Book <=1.1.2 multiple vulnerabilities 3APA3A (Oct 16 2006)
MOStlyCEV454 - Remote File Include Vulnerabilities erne_at_ernealizm.com (Oct 15 2006)
VoMM: Taking browser exploits to the next level avivra (Oct 16 2006)
WebYep-1.1.9 - Remote File Include Vulnerabilities erne_at_ernealizm.com (Oct 15 2006)
[USN-364-1] Xsession vulnerability Kees Cook (Oct 16 2006)
[ GLSA 200610-04 ] Seamonkey: Multiple vulnerabilities Raphael Marichez (Oct 16 2006)
osprey 1.0 (ListRecords.php) Remote File Include Vulnerability KaBaRa.HaCk.eGy_at_Gmail.com (Oct 16 2006)
Full Path Disclosure in PHP-Wyana (2) xx_hack_xx_2004_at_hotmail.com (Oct 14 2006)
iDefense Security Advisory 10.15.06: Clam AntiVirus ClamAV CHM Chunk Name Length DoS Vulnerability iDefense Labs (Oct 16 2006)
iDefense Security Advisory 10.15.06: Clam AntiVirus ClamAV rebuildpe Heap Overflow Vulnerability iDefense Labs (Oct 16 2006)
patchlodel-0.7.3 - Remote File Include Vulnerabilities erne_at_ernealizm.com (Oct 14 2006)
Rapid7 Advisory R7-0025: Buffer Overflow in NVIDIA Binary Graphics Driver For Linux advisory_at_rapid7.com (Oct 16 2006)
PHP Forge 3b2 (/inc/inc.php) Remote File Include Vulnerability mahmood ali (Oct 14 2006)
Advisory 10/2006: ViewVC Undefined Charset UTF-7 XSS Vulnerability Stefan Esser (Oct 15 2006)
About.com contact C. Hamby (Oct 17 2006)
[Xss] IN phplist v 2.10.2, the-free_kernel_at_b0rizq.net (Oct 16 2006)
[USN-365-1] libksba vulnerability Kees Cook (Oct 16 2006)
PR06-03b: F5 Firepass 1000 SSL VPN version 5.5 vulnerable to Cross-Site Scripting research_at_procheckup.com (Oct 17 2006)
TorrentFlux action Script Insertion 3cab7cc7_at_srasg.stevenroddis.com.au (Oct 16 2006)
TorrentFlux file Script Insertion 3cab7cc7_at_srasg.stevenroddis.com.au (Oct 16 2006)
TorrentFlux user_id Script Insertion 3cab7cc7_at_srasg.stevenroddis.com.au (Oct 16 2006)
[OpenPKG-SA-2006.023] OpenPKG Security Advisory (php) OpenPKG (Oct 17 2006)
[ECHO_ADV_55$2006]Phpmybibli <=2.1 Multiple Remote File Inclusion Vulnerability erdc_at_echo.or.id (Oct 17 2006)
Flaw in Firefox 2.0 RC2 Mike_at_gmail.com (Oct 17 2006)
- Re: Flaw in Firefox 2.0 RC2 Jose Nazario (Oct 17 2006)
  - Re: Flaw in Firefox 2.0 RC2 Eliah Kagan (Oct 17 2006)
    - Re: Flaw in Firefox 2.0 RC2 Paul Schmehl (Oct 18 2006)
    - Re: Flaw in Firefox 2.0 RC2 arny (Oct 18 2006)
- Re: Flaw in Firefox 2.0 RC2 jm (Oct 17 2006)
  - Re: Flaw in Firefox 2.0 RC2 Mark A Basil (Oct 19 2006)
    - Re: Flaw in Firefox 2.0 RC2 Jure Pečar (Oct 20 2006)
  - RE: Flaw in Firefox 2.0 RC2 Aras \ (Oct 18 2006)
- Re: Flaw in Firefox 2.0 RC2 Shane Lahey (Oct 17 2006)
- Re: Flaw in Firefox 2.0 RC2 Lubomir Kundrak (Oct 19 2006)
- RE: Flaw in Firefox 2.0 RC2 Sean Warnock (Oct 19 2006)
[security bulletin] HPSBUX02155 SSRT061235 rev.2 HP-UX CIFS Server (Samba) Local Unauthorized Access, Elevated Privileges security-alert_at_hp.com (Oct 17 2006)
[ GLSA 200610-05 ] CAPI4Hylafax fax receiver: Execution of arbitrary code Raphael Marichez (Oct 17 2006)
[ GLSA 200610-06 ] Mozilla Network Security Service (NSS): RSA signature forgery Raphael Marichez (Oct 17 2006)
phpAdsNew include bug! wacky_at_ihack.pl (Oct 17 2006)
- Re: phpAdsNew include bug! Wim Godden (Oct 17 2006)
- Re: phpAdsNew include bug! matteo_at_phpadsnew.com (Oct 18 2006)
rPSA-2006-0194-1 kernel rPath Update Announcements (Oct 17 2006)
[ GLSA 200610-07 ] Python: Buffer Overflow Raphael Marichez (Oct 17 2006)
Rapid7 Advisory R7-0026: HTTP Header Injection Vulnerabilities in the Flash Player Plugin advisory_at_rapid7.com (Oct 17 2006)
iDefense Security Advisory 10.17.06: Opera Software Opera Web Browser URL Parsing Heap Overflow Vulnerability iDefense Labs (Oct 17 2006)
[ MDKSA-2006:183 ] - Updated libksba packages correct DoS vulnerability security_at_mandriva.com (Oct 17 2006)
[ MDKSA-2006:184 ] - Updated clamav packages fix vulnerabilities security_at_mandriva.com (Oct 17 2006)
[ MDKSA-2006:185 ] - Updated php packages to address multiple vulnerabilities security_at_mandriva.com (Oct 17 2006)
Comdev One Admin 4.1 Remote File Inclusion disfigure (Oct 17 2006)
Boonex Dolphin 5.2 Remote File Inclusion disfigure (Oct 17 2006)
Simplog 0.9.3.1 SQL Injection disfigure (Oct 17 2006)
zorum_3_5 <=(dbproperty.php) Remote File Inclusion Exploit MoHaNdKo (Oct 17 2006)
[ECHO_ADV_46$2006] P-Book <= 1.17 (pb_lang) Remote File Inclusion erdc_at_echo.or.id (Oct 17 2006)
Analysis of the Oracle October 2006 Critical Patch Update David Litchfield (Oct 17 2006)
TSLSA-2006-0057 - multi Trustix Security Advisor (Oct 18 2006)
CS-Forum 0.82 (ajouter.php) Remote File Include Vulnerability mahmood ali (Oct 18 2006)
PhpBB<=2.0.10 (groupcp.php) Remote File Include Vulnerability mahmood ali (Oct 18 2006)
- Re: PhpBB<=2.0.10 (groupcp.php) Remote File Include Vulnerability neothermic_at_phpbb.com (Oct 18 2006)
PHPRecipeBook <= 2.35 ((g_rb_basedir)) Remote File Include Exploit CarcaBotx_at_yahoo.com (Oct 18 2006)
- Re: PHPRecipeBook <= 2.35 ((g_rb_basedir)) Remote File Include Exploit str0ke (Oct 18 2006)
- Re: PHPRecipeBook <= 2.35 ((g_rb_basedir)) Remote File Include Exploit theif_at_gmail.com (Oct 19 2006)
Call for Papers - First International Workshop on Secure Software Engineering (SecSE 2007) Lillian R�stad (Oct 18 2006)
Multiple vulnerabilities in Highwall Enterprise and Highwall Endpoint management interface noreply_at_ptsecurity.ru (Oct 18 2006)
Airmagnet management interfaces multiple vulnerabilities noreply_at_ptsecurity.ru (Oct 18 2006)
{x0n3-h4ck} DEV Web Manager System <= 1.5 XSS Exploit corrado.liotta_at_alice.it (Oct 18 2006)
Secunia Research: Joomla BSQ Sitestats Script Insertion and SQL Injection Secunia Research (Oct 18 2006)
Secunia Research: IBM Lotus Notes Insecure Default Folder Permissions Secunia Research (Oct 18 2006)
Static fmat exploits with random va root (Oct 18 2006)
Security-Assessment.com Advisory: Asterisk remote heap overflow Adam Boileau (Oct 18 2006)
[USN-366-1] binutils vulnerability Kees Cook (Oct 18 2006)
rPSA-2006-0195-1 kdelibs rPath Update Announcements (Oct 18 2006)
[USN-367-1] Pike vulnerability Kees Cook (Oct 18 2006)
[security bulletin] HPSBST02161 SSRT061264 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS06-056 Through MS06-065 security-alert_at_hp.com (Oct 19 2006)
[SECURITY] [DSA 1196-1] New clamav packages fix arbitrary code execution Moritz Muehlenhoff (Oct 18 2006)
[OpenPKG-SA-2006.024] OpenPKG Security Advisory (asterisk) OpenPKG (Oct 18 2006)
Advisory 11/2006: Serendipity Weblog XSS Vulnerabilities Stefan Esser (Oct 19 2006)
[DRUPAL-SA-2006-024] Drupal 4.6.10 / 4.7.4 fixes multiple XSS issues Uwe Hermann (Oct 19 2006)
[DRUPAL-SA-2006-025] Drupal 4.6.10 / 4.7.4 fixes CRF issue Uwe Hermann (Oct 19 2006)
[DRUPAL-SA-2006-026] Drupal 4.6.10 / 4.7.4 fixes HTML attribute injection issue Uwe Hermann (Oct 19 2006)
DigitalHive 2.0 RC2 (base_include.php)File Include mahmood ali (Oct 18 2006)
UltraCMS 0.9 sql injection fireboy2006_at_gmail.com (Oct 18 2006)
KICS CMS sql injection fireboy2006_at_gmail.com (Oct 18 2006)
SQL Injection simplog navairum_at_gmail.com (Oct 19 2006)
Multiple XSS Vulnerabilities in KnowledgeBank 1.01 security_at_armorize.com (Oct 18 2006)
PHP "exec", "system", "popen" problem �� Borgir (Oct 18 2006)
- Re: PHP "exec", "system", "popen" (+small POC) Bernhard Mueller (Oct 20 2006)
ERRATA: [ GLSA 200610-07 ] Python: Buffer Overflow Raphael Marichez (Oct 18 2006)
ATutor 1.5.3.2=> Remote File Include Vulnerability subzero.0000_at_hotmail.com (Oct 19 2006)
[Xss] IN SMF 1.1 RC2 the_free_kernel_at_b0rizq.net (Oct 19 2006)
[ MDKSA-2006:186 ] - Updated kdelibs packages fix KHTML vulnerability security_at_mandriva.com (Oct 19 2006)
TORQUE Spool Job Race condition (torque <= 2.0.0p8) Lu�s Miguel Silva (Oct 18 2006)
iDefense Security Advisory 10.19.06: Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability iDefense Labs (Oct 19 2006)
- Re: iDefense Security Advisory 10.19.06: Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability abel.andrade_at_lycos.com (Oct 20 2006)
- Re: iDefense Security Advisory 10.19.06: Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation Vulnerability Steven M. Christey (Oct 20 2006)
[CAID 34693, 34694]: CA BrightStor ARCserve Backup Multiple Buffer Overflow Vulnerabilities (UPDATED) Williams, James K (Oct 19 2006)
[KAPDA::#60] Mambo V4.6.x vulnerabilities alireza hassani (Oct 20 2006)
HPSBUX02162 SSRT061223 rev.1 - HP-UX Running dtmail, Local Execution of Arbitrary Code security-alert_at_hp.com (Oct 20 2006)
Simple Machines Forum (SMF) XSS issue josecarlos.norte_at_gmail.com (Oct 20 2006)
- Re: Simple Machines Forum (SMF) XSS issue mrapples_at_gmail.com (Oct 21 2006)
  - Re: Simple Machines Forum (SMF) XSS issue RSnake (Oct 22 2006)
PHP Classifieds 7.1 - Remote File Include Vulnerability Le.CoPrA_at_hotmail.com (Oct 19 2006)
[ GLSA 200610-08 ] Cscope: Multiple buffer overflows Raphael Marichez (Oct 20 2006)
[security bulletin] HPSBTU02163 SSRT061223 rev.1 - HP Tru64 UNIX Running dtmail, Local Execution of Arbitrary Code security-alert_at_hp.com (Oct 20 2006)
PHP Poll Creator 1.04 (poll_vote.php)File Include mahmood ali (Oct 20 2006)
[Reversemode Advisory] Kaspersky Anti-Virus Privilege Escalation Reversemode (Oct 19 2006)
Advisory for Oneorzero helpdesk Mike Klingler (Oct 20 2006)
PHPLibrary-1.5.3(Description.php) Remote File Include arab_anaconda_at_hotmail.com (Oct 20 2006)
[OpenPKG-SA-2006.025] OpenPKG Security Advisory (drupal) OpenPKG (Oct 19 2006)
Open Meetings Filing Application (PROJECT_ROOT) Remote File Include Vulnerability xorontr_at_gmail.com (Oct 21 2006)
Hustle Labs & MNIN eDirectory Vulnerability Ryan Smith (Oct 20 2006)
Virtual Law Office (phpc_root_path) Remote File Include Vulnerability xorontr_at_gmail.com (Oct 21 2006)
[USN-368-1] Qt vulnerability Martin Pitt (Oct 23 2006)
[ GLSA 200610-09 ] libmusicbrainz: Multiple buffer overflows Matthias Geerdsen (Oct 22 2006)
RMSOFT Cross Site Scripting FREAK_PR_at_HOTMAIL.COM (Oct 21 2006)
trawler <= 1.8.1 Remote File Inclusion k1tk4t_at_newhack.org (Oct 21 2006)
IPEER Remote file inclusion navairum_at_gmail.com (Oct 21 2006)
iDefense Security Advisory 10.21.06: Novell eDirectory evtFilteredMonitorEventsRequest Heap Overflow Vulnerability iDefense Labs (Oct 21 2006)
iDefense Security Advisory 10.21.06: Novell eDirectory NCP over IP length Heap Overflow Vulnerability iDefense Labs (Oct 21 2006)
iDefense Security Advisory 10.21.06: Novell eDirectory evtFilteredMonitorEventsRequest Invalid Free Vulnerability iDefense Labs (Oct 21 2006)
XSS in Zwahlen Online Shop MC Iglo (Oct 22 2006)
speedberg <= 1.2beta1 Remote File Inclusion k1tk4t_at_newhack.org (Oct 22 2006)
WHM 10.8.0 cPanel 10.9.0 R50 CentOS 4.4 i686 WHM X v3.1.0 Xss Vulnerability crackers_child_at_sibersavascilar.com (Oct 22 2006)
PHP Generator of Object SQL Database (path) Remote File Include Vulnerability xorontr_at_gmail.com (Oct 22 2006)
AROUNDMe 0.6.9 remonte file inclusion noislet.nospam_at_gmail.com (Oct 22 2006)
[SECURITY] [DSA 1197-1] New python2.4 packages fix arbitrary code execution Moritz Muehlenhoff (Oct 22 2006)
-==PHP Nuke <= 7.9 SQL Injection and Bypass SQL Injection Protection vulnerabilities==- paisterist.nst_at_gmail.com (Oct 22 2006)
[PHPADSNEW-SA-2006-002] phpAdsNew and phpPgAds 2.0.8-pr1 fix XSS vulnerability Matteo Beccati (Oct 23 2006)
D-Link DSL-G624T several vulnerabilities jose.palanco_at_eazel.es (Oct 23 2006)
Flaw in Firefox 2.0 Final mike_at_gmail.com (Oct 23 2006)
Smarty-2.6.1 Remote File Include Vulnerabilities crackers_child_at_sibersavascilar.com (Oct 23 2006)
- Re: Smarty-2.6.1 Remote File Include Vulnerabilities J. Carlos Nieto (Oct 24 2006)
SQL Injection Vulnerability in Oracle WWV_FLOW_UTILITIES ak_at_red-database-security.com (Oct 23 2006)
Cross-Site-Scripting Vulnerability in Oracle APEX WWV_FLOW_ITEM_HELP ak_at_red-database-security.com (Oct 23 2006)
http://www.red-database-security.com/advisory/oracle_apex_css_notification_msg.html ak_at_red-database-security.com (Oct 23 2006)
Various Cross-Site-Scripting Vulnerabilities in Oracle Reports ak_at_red-database-security.com (Oct 23 2006)
hack.lu Bluetooth demo K F (lists) (Oct 23 2006)
- Re: [Full-disclosure] hack.lu Bluetooth demo Thierry Zoller (Oct 23 2006)
Modify Data via Inline Views ak_at_red-database-security.com (Oct 23 2006)
SQL Injection in package SYS.DBMS_SQLTUNE_INTERNAL ak_at_red-database-security.com (Oct 23 2006)
SQL Injection in package XDB.DBMS_XDBZ0 ak_at_red-database-security.com (Oct 23 2006)
INCA IM-204 Dsl several vulnerabilities crackers_child_at_sibersavascilar.com (Oct 23 2006)
SQL Injection in package SYS.DBMS_CDC_IMPDP ak_at_red-database-security.com (Oct 23 2006)
SQL Injection in Oracle package MDSYS.SDO_LRS ak_at_red-database-security.com (Oct 23 2006)
Multiple HTTP response splitting vulnerabilities in SHOP-SCRIPT Debasis Mohanty (Oct 23 2006)
Application orders Linux in WebAPP v0.9.9.2.1 the_free_kernel_at_b0rizq.net (Oct 23 2006)
- Re: Application orders Linux in WebAPP v0.9.9.2.1 nicolascamino_at_gmail.com (Oct 24 2006)
WikiNi Multiple Cross Site Scripting Vulnerabilities raphael.huck_at_free.fr (Oct 23 2006)
[SECURITY] [DSA 1198-1] New python2.3 packages fix arbitrary code execution Moritz Muehlenhoff (Oct 23 2006)
Symantec Product Security: Symantec Device Driver Elevation of Privileg secure_at_symantec.com (Oct 23 2006)
[ GLSA 200610-10 ] ClamAV: Multiple Vulnerabilities Raphael Marichez (Oct 24 2006)
[ GLSA 200610-11 ] OpenSSL: Multiple vulnerabilities Raphael Marichez (Oct 24 2006)
Month of Kernel Bugs and fsfuzzer release (0.6) L.M.H. (Oct 23 2006)
[SECURITY] [DSA 1199-1] New webmin packages fix input validation problems Noah Meyerhans (Oct 23 2006)
ProgSys verion 0.151 XSS vulnerability security_at_vigilon.com (Oct 23 2006)
[vuln.sg] CruiseWorks Directory Traversal and Buffer Overflow Vulnerabilities vulnpost-remove_at_vuln.sg (Oct 24 2006)
who needs a server ... auto113922_at_hush.ai (Oct 24 2006)
CSLH2.9.9 Remote File Include Vulnerabilities crackers_child_at_sibersavascilar.com (Oct 24 2006)
adobe php sdk Remote File Include Vulnerabilities crackers_child_at_sibersavascilar.com (Oct 24 2006)
- Re: adobe php sdk Remote File Include Vulnerabilities Mailinglists Address (Oct 24 2006)
InteliEditor (sys_path) Remote File Include Vulnerability xorontr_at_gmail.com (Oct 24 2006)
[ GLSA 200610-12 ] Apache mod_tcl: Format string vulnerability Raphael Marichez (Oct 24 2006)
Cisco Security Advisory: Cisco Security Agent for Linux Port Scan Denial of Service Cisco Systems Product Security Incident Response Team (Oct 25 2006)
Re: Yahoo! Messenger Service 18 Remote Buffer Overflow Vulnerability Gadi Evron (Oct 25 2006)
[KAPDA::#61] - PacPoll <= 4.0 Multiple Vulnerabilities farhadkey_at_yahoo.com (Oct 25 2006)
phpMyConferences_8.0.2 Remote File Inclusion Outlaw_at_aria-security.net (Oct 24 2006)
- Re: phpMyConferences_8.0.2 Remote File Inclusion Tamriel (Oct 25 2006)
[ MDKSA-2006:187 ] - Updated Qt packages fix vulnerability security_at_mandriva.com (Oct 24 2006)
iDefense Security Advisory 10.25.06: AOL Nullsoft Winamp Ultravox 'ultravox-max-msg' Header Heap Overflow Vulnerability iDefense Labs (Oct 25 2006)
Mozilla Firefox JavaScript Handler Race Condition Memory Corruption Vulnerability erreale_at_gmail.com (Oct 25 2006)
- Re: Mozilla Firefox JavaScript Handler Race Condition Memory Corruption Vulnerability Christian Kalkhoff (Oct 26 2006)
iDefense Security Advisory 10.25.06: AOL YGPPDownload downloadFileDirectory ActiveX Control Heap Corruption Vulnerability iDefense Labs (Oct 25 2006)
iDefense Security Advisory 10.25.06: AOL YGPPDownload AddPictureNoAlbum ActiveX Control Heap Corruption Vulnerability iDefense Labs (Oct 25 2006)
iDefense Security Advisory 10.25.06: AOL Nullsoft Winamp Ultravox Lyrics3 v2.00 tags Heap Overflow Vulnerability iDefense Labs (Oct 25 2006)
Web-style Wireless IDS attacks noreply_at_ptsecurity.ru (Oct 25 2006)
[security bulletin] HPSBMA02133 SSRT061201 rev.2 - HP Oracle for OpenView (OfO) Critical Patch Update security-alert_at_hp.com (Oct 25 2006)
[OpenPKG-SA-2006.026] OpenPKG Security Advisory (screen) OpenPKG (Oct 25 2006)
rPSA-2006-0195-2 kdelibs qt-x11-free rPath Update Announcements (Oct 26 2006)
rPSA-2006-0198-1 screen rPath Update Announcements (Oct 26 2006)
IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 LIUDIEYU dot COM (Oct 26 2006)
- Re: IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 Reversemode (Oct 27 2006)
- Re: [Full-disclosure] IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 HASEGAWA Yosuke (Oct 27 2006)
TSLSA-2006-0059 - postgresql Trustix Security Advisor (Oct 27 2006)
MHL-2006-003 Public Advisory: "ezOnlineGallery" Multiple Security Issues Mayhemic Labs Security (Oct 27 2006)
MiniBILL v2006-10-10 (config[page_dir] Remote File Include Vulnerability xorontr_at_gmail.com (Oct 27 2006)
Insecure storage of passwords in Axalto Protiva nnposter_at_disclosed.not (Oct 26 2006)
Joomla extended_registration mod Remote File Include Vulnerabilities crackers_child_at_sibersavascilar.com (Oct 26 2006)
Directory Traversal in TorrentFlux 2.1 Christopher (Oct 26 2006)
phpFaber CMS Cross Site Scripting security_at_vigilon.com (Oct 26 2006)
iDefense Security Advisory 10.26.06: Multiple Vendor wvWare LVL Count Integer Overflow Vulnerability iDefense Labs (Oct 26 2006)
iDefense Security Advisory 10.26.06: Multiple Vendor wvWare LFO Count Integer Overflow Vulnerability iDefense Labs (Oct 26 2006)
ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability zdi-disclosures_at_3com.com (Oct 26 2006)
[ GLSA 200610-13 ] Cheese Tracker: Buffer Overflow Raphael Marichez (Oct 26 2006)
vulnerability in Symantec products security_at_dimichsoft.com (Oct 26 2006)
- Re: vulnerability in Symantec products jay.tomas_at_infosecguru.com (Oct 27 2006)
  - unreliable vulnerability reports en-masee [was:Re: vulnerability in Symantec products] Gadi Evron (Oct 30 2006)
Ban v0.1 (bannieres.php) File Include mahmood ali (Oct 27 2006)
- Re: Ban v0.1 (bannieres.php) File Include Francesco Laurita (Oct 27 2006)
TextPattern <=1.19 Remote File Inclusion Vulnerability Bithedz_at_gmail.com (Oct 26 2006)
SMF fgets off-by-one issue and filter size evasion josecarlos.norte_at_gmail.com (Oct 25 2006)
IE7 status: 8 days after release, 3 unfixed issues Moritz Naumann (Oct 25 2006)
UNISOR CMS sql injection fireboy2006_at_gmail.com (Oct 26 2006)
PHP-Nuke <= 7.9 Search module "author" SQL Injection vulnerability paisterist.nst_at_gmail.com (Oct 25 2006)
ArticleBeach Script <= 2.0 Remote File Inclusion Vulnerability Bithedz_at_gmail.com (Oct 26 2006)
GestArt <= vbeta 1 Remote File Include Vulnerabilities ip.123.456.78.90_at_hotmail.com (Oct 25 2006)
RFID enabled e-passport skimming proof of concept code released (RFIDIOt) Adam Laurie (Oct 27 2006)
PLS-Bannieres 1.21 (bannieres.php) File Include mahmood ali (Oct 27 2006)
phpLedAds 2.0(dir) File Include mahmood ali (Oct 27 2006)
[funsec] Haxdoor: UK Police Count 8, 500 Victims in Data Theft (So Far) (fwd) Gadi Evron (Oct 24 2006)
phpAdsNew-2.0.8 <= (adlayer.php) Remote File Include zooz_998_at_hotmail.com (Oct 25 2006)
- Re: phpAdsNew-2.0.8 <= (adlayer.php) Remote File Include emme0032_at_umn.edu (Oct 27 2006)
- Re: phpAdsNew-2.0.8 <= (adlayer.php) Remote File Include simo_at_morx.org (Oct 28 2006)
Thepeak File Upload v1.3 : Read file vulneability loveha_at_gmail.com (Oct 25 2006)
Hosting Controller 6.1 Hotfix <= 3.2 Vulnerability playpacific.emulacaid_at_gmail.com (Oct 25 2006)
Microsoft .NET request filtering bypass vulnerability research_at_procheckup.com (Oct 25 2006)
[ MDKSA-2006:189 ] - Updated xsupplicant fixes possible remote root stack smash vulnerability security_at_mandriva.com (Oct 27 2006)
[ MDKSA-2006:188 ] - Updated mono packages fix vulnerability security_at_mandriva.com (Oct 27 2006)
[ MDKSA-2006:190 ] - Updated mutt packages fix multiple vulnerabilities security_at_mandriva.com (Oct 27 2006)
[ MDKSA-2006:192 ] - Updated ruby packages fix DoS vulnerability security_at_mandriva.com (Oct 27 2006)
[ MDKSA-2006:191 ] - Updated screen packages fix vulnerability security_at_mandriva.com (Oct 27 2006)
[ GLSA 200610-14 ] PHP: Integer overflow Raphael Marichez (Oct 30 2006)
[SECURITY] [DSA 1200-1] New Qt packages fix integer overflow Noah Meyerhans (Oct 30 2006)
[OpenPKG-SA-2006.027] OpenPKG Security Advisory (wordpress) OpenPKG (Oct 30 2006)
Re: [Full-disclosure] ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability Matt Richard (Oct 27 2006)
CentiPaid <= 1.4.2 [$class_pwd] Remote File Include firewall1954_at_hotmail.com (Oct 27 2006)
- Re: CentiPaid <= 1.4.2 [$class_pwd] Remote File Include Francesco Laurita (Oct 30 2006)
- Re: CentiPaid <= 1.4.2 [$class_pwd] Remote File Include Tamriel (Oct 30 2006)
Exporia => 0.3.0 Remote File Include Vulnerability Exploit h4ck3riran_at_yahoo.com (Oct 28 2006)
bbsNew => 2.0.1 Remote File Include Vulnerability Exploit h4ck3riran_at_yahoo.com (Oct 28 2006)
Back-end => 0.4.5 Remote File Include Vulnerability Exploit h4ck3riran_at_yahoo.com (Oct 28 2006)
SQL in WebWizForum by almaster hacker almaster_at_hotmail.com (Oct 28 2006)
freenews---> fileinclude MoHaNdKo (Oct 28 2006)
- Re: freenews---> fileinclude Tamriel (Oct 30 2006)
  - Re: freenews---> fileinclude pokley (Oct 31 2006)
- Re: freenews---> fileinclude pokley (Oct 31 2006)
easy notes manager sql injection and authentication bypass poplix_at_papuasia.org (Oct 28 2006)
[MajorSecurity Advisory #29]foresite CMS - Cross Site Scripting Issue admin_at_majorsecurity.de (Oct 29 2006)
Re: imageVue16.1 upload vulnerability mjau_at_mjau-mjau.com (Oct 29 2006)
Simple Website Software v0.99 (common.php) Remote File Include cw.cybersecurity_at_gmail.com (Oct 29 2006)
PHPEasyData Pro 1.4.1 (index.php) Remote SQL Injection Vulnerability ajannhwt_at_hotmail.com (Oct 29 2006)
PHPEasyData Pro 2.2.1 (index.php) Remote SQL Injection Vulnerability ajannhwt_at_hotmail.com (Oct 29 2006)
Nucleus Core v3.23 - Remote File Include firewall1954_at_hotmail.com (Oct 30 2006)
- Re: Nucleus Core v3.23 - Remote File Include Francesco Laurita (Oct 30 2006)
Punbb <= 1.2.13 Multiple Vulnerabilities Nms (Oct 29 2006)
[ECHO_ADV_53$2006] QnECMS <= 2.5.6 (adminfolderpath) Remote File Inclusion Vulnerability erdc_at_echo.or.id (Oct 29 2006)
opendocman <= 1.2p3 Bypass admin/user Login k1tk4t_at_newhack.org (Oct 29 2006)
Metasploit Framework 2.7 Released H D Moore (Oct 30 2006)
[ GLSA 200610-15 ] Asterisk: Multiple vulnerabilities Raphael Marichez (Oct 30 2006)
CORE FORCE R0.95 released! CORE FORCE Team (Oct 30 2006)
Multiple Remote File Include firewall1954_at_hotmail.com (Oct 30 2006)
[security bulletin] HPSBMA02138 SSRT061184 rev.2 - HP OpenView Storage Data Protector, Remote Unauthorized Arbitrary Command Execution security-alert_at_hp.com (Oct 30 2006)
[security bulletin] HPSBMA02121 SSRT061157 rev.3 - HP OpenView Storage Data Protector Remote Unauthorized Arbitrary Command Execution security-alert_at_hp.com (Oct 30 2006)
[security bulletin] HPSBTU02168 SSRT061237 rev.1 - HP Tru64 UNIX Running gzip, gunzip, and gzcat, Remote Unauthorized Arbitrary Code Execution or Denial of Service (DoS) security-alert_at_hp.com (Oct 30 2006)
Re: Free Rainbow Tables.com Jerome Athias (Oct 30 2006)
ModSecurity 2.0, A Core Rule Set and Console now available Ofer Shezaf (Oct 29 2006)
phpMyConferences <= 8.0.2 Remote File Inclusion mfp.c_at_hotmail.com (Oct 31 2006)
ActiveX security leaks in the TV owned web game platform maxgipeh_at_yahoo.com (Oct 30 2006)
Hawking Technology wireless router WR254-CA DNS issue Nikolai Grigoriev (Oct 30 2006)
[ MDKSA-2006:193 ] - Updated ImageMagick packages fix vulnerabilities security_at_mandriva.com (Oct 30 2006)
[ MDKSA-2006:194 ] - Updated PostgreSQL packages fix vulnerabilities security_at_mandriva.com (Oct 30 2006)
SQL Injection Vulnerability in bfExplorer 0.0.6 security_at_armorize.com (Oct 30 2006)
Sun java System Messenger Express XSS handrix_at_gmail.com (Oct 30 2006)
New Flaw in Firefox 2.0: DoS and possible remote code execution xxxx_at_gmail.com (Oct 31 2006)
- Re: New Flaw in Firefox 2.0: DoS and possible remote code execution Gouki (Oct 31 2006)
- Re: New Flaw in Firefox 2.0: DoS and possible remote code execution Josh Bressers (Oct 31 2006)
Authentication bypass in BytesFall Explorer RedTeam Pentesting (Oct 31 2006)
[SECURITY] [DSA 1201-1] New ethereal packages fix denial of service Moritz Muehlenhoff (Oct 31 2006)
[SECURITY] [DSA 1202-1] New screen packages fix arbitrary code execution Moritz Muehlenhoff (Oct 31 2006)
PHP-Nuke <= 7.9 Journal module (search.php) "forwhat" SQL Injection vulnerability paisterist.nst_at_gmail.com (Oct 31 2006)
Cross Site Scripting (XSS) Vulnerability in iPlanet Messaging Server Messenger Express by "Sun" LegendaryZion (Oct 31 2006)
Directory listing on B-FOCuS Wireless 802.11b/g ADSL2+ Router by "ECI Telecom LTD" LegendaryZion (Oct 31 2006)
Cross Site Scripting (XSS) Vulnerability in Web Mail service by "Walla! Communications LTD" LegendaryZion (Oct 31 2006)