Bugtraq: by thread
273 messages
starting Oct 01 10 and
ending Oct 28 10
Date index |
Thread index |
Author index
- THOTCON 0x2 - Call For Papers is Open -> 10.01.10 THOTCON Announce (Oct 01)
- [STANKOINFORMZASCHITA-10-01] Netbiter® webSCADA multiple vulnerabilities info (Oct 01)
- Re: XSRF (CSRF) in Zimplit security curmudgeon (Oct 01)
- Multiple vulnerabilities in WordPress 2 and 3 MustLive (Oct 04)
- [ MDVSA-2010:191 ] mailman security (Oct 04)
- ZDI-10-189: Novell eDirectory Server Malformed Index Denial of Service Vulnerability ZDI Disclosures (Oct 04)
- ZDI-10-190: Novell iManager getMultiPartParameters Arbitrary File Upload Remote Code Execution Vulnerability ZDI Disclosures (Oct 04)
- Another new technique to bypass SEHOP. ( no 'xor pop pop ret' ) geinblues (Oct 04)
- NetWin Surgemail XSS vulnerability kerem . kocaer (Oct 04)
- [ MDVSA-2010:192 ] apr-util security (Oct 04)
- [ MDVSA-2010:194 ] git security (Oct 04)
- [STANKOINFORMZASCHITA-10-02] ITS SCADA Authorization bypass info (Oct 04)
- [ MDVSA-2010:193 ] qt-creator security (Oct 04)
- [SECURITY] [DSA-2117-1] New apr-util packages fix denial of service Stefan Fritsch (Oct 05)
- [IMF 2011] Call for Papers Oliver Goebel (Oct 05)
- SQL injection vulnerability in Elxis CMS advisory (Oct 05)
- [ MDVSA-2010:195 ] libesmtp security (Oct 05)
- XSS vulnerability in Docebo Announcements advisory (Oct 05)
- [SECURITY] [DSA-2116-1] New freetype packages integer overflow Stefan Fritsch (Oct 05)
- XSS vulnerability in Elxis CMS advisory (Oct 05)
- XSS vulnerability in Elxis CMS (contacts) advisory (Oct 05)
- XSS vulnerability in Elxis CMS polls module advisory (Oct 05)
- OWASP ZAP psiinon (Oct 05)
- [ MDVSA-2010:196 ] dovecot security (Oct 05)
- [security bulletin] HPSBTU02496 SSRT090245 rev.1 - HP Tru64 UNIX Running NTP, Denial of Service (DoS) security-alert (Oct 05)
- Vulnerabilities in CMS WebManager-Pro MustLive (Oct 05)
- MITKRB5-SA-2010-006 [CVE-2010-1322] KDC uninitialized pointer crash in authorization data handling Tom Yu (Oct 05)
- [Suspected Spam]XSS in Squirrelmail plugin 'Virtual Keyboard' <= 0.9.1 Moritz Naumann (Oct 06)
- [ GLSA 201010-01 ] Libpng: Multiple vulnerabilities Pierre-Yves Rofes (Oct 06)
- [ MDVSA-2010:197 ] postgresql security (Oct 06)
- [USN-1001-1] LVM2 vulnerability Marc Deslauriers (Oct 06)
- [USN-999-1] Kerberos vulnerability Kees Cook (Oct 06)
- ZDI-10-192: Adobe Acrobat Reader ICC mluc Remote Code Execution Vulnerability ZDI Disclosures (Oct 06)
- (CORE-2010-0701) Adobe Acrobat Reader Acrord32.dll Use After Free Vulnerability CORE Security Technologies Advisories (Oct 06)
- ZDI-10-193: Adobe Acrobat Reader Multimedia Playing Remote Code Execution Vulnerability ZDI Disclosures (Oct 06)
- ESA-2010-018: RSA Security Advisory: RSA, The Security Division of EMC, announces a fix for a potential security vulnerability in RSAR Authentication Client when storing secret key objects on an RSA SecurIDR 800 Authenticator Security_Alert (Oct 06)
- ZDI-10-191: Adobe Reader ICC Parsing Remote Code Execution Vulnerability ZDI Disclosures (Oct 06)
- Adobe Reader 9.3.4 Multiple Memory Corruption - Security Advisory - SOS-10-003 Sense of Security (Oct 07)
- HP Data Protector Manager v6.11 / NULL Pointer Dereference Remote Denial of Service Vulnerabilities Pepelux (Oct 07)
- Syhunt Advisory: Visual Synapse HTTP Server Directory Traversal Vulnerability Felipe M. Aragon (Oct 07)
- [USN-1003-1] OpenSSL vulnerabilities Marc Deslauriers (Oct 07)
- [USN-1002-1] PostgreSQL vulnerability Marc Deslauriers (Oct 07)
- IBWAS'10 CfP - Deadline Extension Carlos SerrĂ£o (Oct 07)
- [USN-1002-2] PostgreSQL vulnerability Marc Deslauriers (Oct 07)
- Directory Traversal Vulnerability in FilterFTP advisory (Oct 08)
- XSS in Oracle default fcgi-bin/echo paul . szabo (Oct 08)
- <Possible follow-ups>
- Re: XSS in Oracle default fcgi-bin/echo paul . szabo (Oct 13)
- RE: [Full-disclosure] XSS in Oracle default fcgi-bin/echo Thor (Hammer of God) (Oct 13)
- RE: [Full-disclosure] XSS in Oracle default fcgi-bin/echo paul . szabo (Oct 15)
- RE: [Full-disclosure] XSS in Oracle default fcgi-bin/echo Thor (Hammer of God) (Oct 15)
- RE: [Full-disclosure] XSS in Oracle default fcgi-bin/echo paul . szabo (Oct 15)
- Re: [Full-disclosure] XSS in Oracle default fcgi-bin/echo Riyaz Walikar (Oct 18)
- RE: [Full-disclosure] XSS in Oracle default fcgi-bin/echo Thor (Hammer of God) (Oct 13)
- Directory Traversal Vulnerability in FTP Voyager advisory (Oct 08)
- [ MDVSA-2010:198 ] kernel security (Oct 08)
- XSS vulnerability in Lantern CMS advisory (Oct 08)
- <Possible follow-ups>
- XSS vulnerability in Lantern CMS advisory (Oct 08)
- XSS vulnerability in Expression CMS advisory (Oct 08)
- <Possible follow-ups>
- XSS vulnerability in Expression CMS advisory (Oct 08)
- FIrefox: Bug 602181 – password exposed in memory cache Sim IJskes (Oct 08)
- OverLook Cross-site Scripting Vulnerability advisory (Oct 08)
- LFI / RCE vlunerability in Joomla Community Builder Enhenced (CBE) Component Delf Tonder (Oct 08)
- Re: Multiple Cross Site Scripting (XSS) and SQL injection Vulnerabilities in XRMS, CVE-2008-3664 gopherit (Oct 08)
- [TOOL RELEASE] Exploit Next Generation SQL Fingerprint v. Nelson Brito (Oct 08)
- [WARNING] A fake version of T50!!! Nelson Brito (Oct 08)
- Joomla! 1.5.20 <= Cross Site Scripting (XSS) Vulnerability YGN Ethical Hacker Group (Oct 12)
- [SECURITY] [DSA 2118-1] New subversion packages fix authentication bypass Nico Golde (Oct 12)
- JS Calendar 1.5.1 Joomla Component Multiple Remote Vulnerabilities Salvatore Fresta aka Drosophila (Oct 12)
- Vulnerabilities in AltConstructor MustLive (Oct 12)
- [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities Florian Weimer (Oct 12)
- Re: JE Guestbook 1.0 Joomla Component Multiple Remote Vulnerabilities joomextensions (Oct 12)
- [ MDVSA-2010:199 ] subversion security (Oct 12)
- <Possible follow-ups>
- [ MDVSA-2010:199 ] subversion security (Oct 12)
- [CORE-2010-0624] MS OpenType CFF Parsing Vulnerability Core Security Technologies Advisories (Oct 12)
- Collabtive Multiple Vulnerabilities Advisory (Oct 13)
- ubuntu 10.04 xterm heap overflow,can it be exploit ? watercloud watercloud (Oct 13)
- Re: ubuntu 10.04 xterm heap overflow,can it be exploit ? Dan Rosenberg (Oct 13)
- <Possible follow-ups>
- Re: ubuntu 10.04 xterm heap overflow,can it be exploit ? dickey (Oct 14)
- DDIVRT-2009-28 Sun Solaris 10 rpc.cmsd Buffer Overflow and Denial of Service (CVE-2010-3509) ddivulnalert (Oct 13)
- Secunia Research: Microsoft Excel Ghost Record Type Parsing Vulnerability Secunia Research (Oct 13)
- Internet Explorer Uninitialized Memory Corruption Vulnerability - CVE-2010-3331 Rodrigo Branco (Oct 13)
- [SECURITY] [DSA 2120-1] New postgresql-8.3 packages fix privilege escalation Florian Weimer (Oct 13)
- [SECURITY] [DSA 2116-1] New poppler packages fix several vulnerabilities Moritz Muehlenhoff (Oct 13)
- Secunia Research: Microsoft Excel Extra Out of Boundary Record Vulnerability Secunia Research (Oct 13)
- IBWAS'10 CfTraining - Deadline Approaching Carlos SerrĂ£o (Oct 13)
- Secunia Research: Microsoft Excel Record Parsing Integer Overflow Vulnerability Secunia Research (Oct 13)
- Secunia Research: Microsoft Excel Lotus 1-2-3 File Parsing Vulnerability Secunia Research (Oct 13)
- XSS vulnerability in Ronny CMS advisory (Oct 13)
- <Possible follow-ups>
- XSS vulnerability in Ronny CMS advisory (Oct 13)
- XSS vulnerability in Ronny CMS advisory (Oct 13)
- XSS vulnerability in PluXml advisory (Oct 13)
- <Possible follow-ups>
- XSS vulnerability in PluXml advisory (Oct 13)
- XSS vulnerability in PluXml advisory (Oct 13)
- XSS vulnerability in PluXml advisory (Oct 13)
- Directory Traversal Vulnerability in FreshFTP advisory (Oct 13)
- XSRF (CSRF) in Lara advisory (Oct 13)
- [ MDVSA-2010:202 ] krb5 security (Oct 13)
- [ MDVSA-2010:200 ] wireshark security (Oct 13)
- Directory Traversal Vulnerability in AnyConnect advisory (Oct 13)
- Directory Traversal Vulnerability in Robo-FTP advisory (Oct 13)
- [ MDVSA-2010:201 ] freetype2 security (Oct 13)
- [ MDVSA-2010:203 ] automake security (Oct 14)
- [security bulletin] HPSBUX02351 SSRT080058 rev.5 - HP-UX Running BIND, Remote DNS Cache Poisoning security-alert (Oct 14)
- USBsploit 0.3b xpo xpo (Oct 14)
- [security bulletin] HPSBPI02398 SSRT080166 rev.6 - Certain HP LaserJet Printers, HP Color LaserJet Printers, and HP Digital Senders, Remote Unauthorized Access to Files security-alert (Oct 14)
- R7-0037: SAP BusinessObjects Axis2 Default Admin Password HD Moore (Oct 14)
- [security bulletin] HPSBMA02590 SSRT100182 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Arbitrary File Download security-alert (Oct 14)
- VUPEN Security Research - Microsoft Office Word Bookmarks Invalid Pointer Vulnerability (CVE-2010-3216) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Word Document Array Indexing Vulnerability (CVE-2010-2750) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Word Return Value Handling Vulnerability (CVE-2010-3215) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Excel RealTimeData Array Indexing Vulnerability (CVE-2010-3240) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Word Document Invalid Pointer Vulnerability (CVE-2010-3217) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Excel Formula Substream Memory Corruption (CVE-2010-3234) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Word Document Stack Overflow Vulnerability (CVE-2010-3214) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Word Document Heap Overflow Vulnerability (CVE-2010-3218) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Excel Record Array Indexing Vulnerability (CVE-2010-3236) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Word BKF Objects Array Indexing Vulnerability (CVE-2010-3219) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Excel Extra PtgExtraArray Parsing Vulnerability (CVE-2010-3239) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Excel Formula Record Buffer Overflow Vulnerability (CVE-2010-3231) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Word LVL Structure Heap Overflow Vulnerability (CVE-2010-3220) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Excel Ghost Record Type Parsing Vulnerability (CVE-2010-3242) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Oracle Products HTTP Request Remote Buffer Overflow Vulnerability (CVE-2010-2390) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Word Short Sign Memory Corruption Vulnerability (CVE-2010-3221) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Excel Formula Record Dangling Pointer Vulnerability (CVE-2010-3235) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Excel Negative Future Function Vulnerability (CVE-2010-3238) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Excel Out-of-Bounds Memory Write Vulnerability (CVE-2010-3241) VUPEN Security Research (Oct 14)
- CORE-2010-0517 - Microsoft Office HtmlDlgHelper class memory corruption CORE Security Technologies Advisories (Oct 14)
- VUPEN Security Research - Microsoft Office Word Uninitialized Pointer Vulnerability (CVE-2010-2747) VUPEN Security Research (Oct 14)
- [security bulletin] HPSBGN02589 SSRT100296 rev.1 - HP ProCurve Access Points, Access Controllers, and Mobility Controllers, Privilege Escalation security-alert (Oct 14)
- VUPEN Security Research - Microsoft Office Excel Merge Cell Record Invalid Pointer Vulnerability (CVE-2010-3237) VUPEN Security Research (Oct 14)
- VUPEN Security Research - Microsoft Office Word Document Buffer Overflow Vulnerability (CVE-2010-2748) VUPEN Security Research (Oct 14)
- Shmoocon 2011 Call for Papers Bruce Potter (Oct 14)
- [ MDVSA-2010:204 ] avahi security (Oct 14)
- [ MDVSA-2010:205 ] freeciv security (Oct 15)
- H2HC 2009 Videos Available! Rodrigo Rubira Branco (BSDaemon) (Oct 15)
- [USN-1004-1] Django vulnerability Jamie Strandboge (Oct 15)
- Re: RE: [Full-disclosure] XSS in Oracle default fcgi-bin/echo an (Oct 18)
- Re: RE: [Full-disclosure] XSS in Oracle default fcgi-bin/echo paul . szabo (Oct 19)
- <Possible follow-ups>
- Re: [Full-disclosure] XSS in Oracle default fcgi-bin/echo paul . szabo (Oct 19)
- rPSA-2010-0058-1 bzip2 bzip2-extras rPath Update Announcements (Oct 18)
- rPSA-2010-0059-1 kernel rPath Update Announcements (Oct 18)
- rPSA-2010-0060-1 httpd mod_ssl rPath Update Announcements (Oct 18)
- Re: [SquirrelMail-Security] XSS in Squirrelmail plugin 'Virtual Keyboard' <= 0.9.1 Paul Lesniewski (Oct 18)
- Re: [SquirrelMail-Security] XSS in Squirrelmail plugin 'Virtual Keyboard' <= 0.9.1 Moritz Naumann (Oct 18)
- rPSA-2010-0063-1 perl rPath Update Announcements (Oct 18)
- rPSA-2010-0064-1 libtiff rPath Update Announcements (Oct 18)
- rPSA-2010-0065-1 krb5 krb5-server krb5-services krb5-workstation rPath Update Announcements (Oct 18)
- rPSA-2010-0066-1 samba samba-client samba-server samba-swat rPath Update Announcements (Oct 18)
- Secunia Research: RealPlayer QCP Sample Chunk Parsing Buffer Overflow Secunia Research (Oct 18)
- Accounting Pro 2003 Insecure Library Loading Vulnerability apa-iutcert (Oct 18)
- Brilliant Accounting System (59) Insecure Library Loading Vulnerability apa-iutcert (Oct 18)
- Sahar Money Manager Insecure Library Loading Vulnerability apa-iutcert (Oct 18)
- Holoo Insecure Library Loading Vulnerability apa-iutcert (Oct 18)
- Rafe 7 Insecure Library Loading Vulnerability apa-iutcert (Oct 18)
- Xilisoft Video Converter Ultimate Insecure Library Loading Vulnerability apa-iutcert (Oct 18)
- Antivirus detection after malware execution jason (Oct 18)
- H2HC Cancun - Registrations are open Rodrigo Rubira Branco (BSDaemon) (Oct 19)
- Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass Roberto Suggi Liverani (Oct 19)
- Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass Mike Duncan (Oct 20)
- Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass Michal Zalewski (Oct 20)
- Re: [Full-disclosure] Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass Dan Kaminsky (Oct 20)
- Re: [Full-disclosure] Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass Early Warning (Oct 21)
- Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass Roberto Suggi Liverani (Oct 21)
- <Possible follow-ups>
- Re: Security-Assessment.com Advisory: Oracle JRE - java.net.URLConnection class - Same-of-Origin (SOP) Policy Bypass Mike Duncan (Oct 21)
- [USN-1005-1] poppler vulnerabilities Marc Deslauriers (Oct 19)
- [USN-1006-1] WebKit vulnerabilities Marc Deslauriers (Oct 19)
- The GNU C library dynamic linker expands $ORIGIN in setuid library search path Tavis Ormandy (Oct 19)
- Re: Insecure SMS authorization scheme at LiqPAY micro-payments of PrivatBank (Ukraine) MustLive (Oct 19)
- VSR Advisories: Linux RDS Protocol Local Privilege Escalation VSR Advisories (Oct 19)
- Re: VSR Advisories: Linux RDS Protocol Local Privilege Escalation Dan Rosenberg (Oct 20)
- SQL injection in DeluxeBB advisory (Oct 20)
- Path disclosure in Tribiq CMS advisory (Oct 20)
- SQL Injection in 4site CMS advisory (Oct 20)
- [SECURITY] [DSA 2121-1] New TYPO3 packages fix several vulnerabilities Florian Weimer (Oct 20)
- XSS vulnerability in sNews advisory (Oct 20)
- <Possible follow-ups>
- XSS vulnerability in sNews advisory (Oct 20)
- [CORE-2010-0819] LibSMI smiGetNode Buffer Overflow When Long OID Is Given In Numerical Form CORE Security Technologies Advisories (Oct 20)
- [USN-1007-1] NSS vulnerabilities Jamie Strandboge (Oct 21)
- [USN-997-1] Firefox and Xulrunner vulnerabilities Jamie Strandboge (Oct 21)
- [USN-998-1] Thunderbird vulnerabilities Jamie Strandboge (Oct 21)
- [SecurityArchitect-009]: Microsoft Windows Mobile Double Free Vulnerability karakorsankara (Oct 21)
- [security bulletin] HPSBMA02592 SSRT100300 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows Running Adobe Flash, Remote Execution of Arbitrary Code, Denial of Service (DoS), Unauthorized Modification security-alert (Oct 21)
- [ MDVSA-2010:207 ] glibc security (Oct 21)
- Wiccle Web Builder CMS and iWiccle CMS Community Builder Multiple XSS Vulnerabilities SecPod Research (Oct 21)
- [ MDVSA-2010:208 ] pidgin security (Oct 21)
- Pecio CMS XSS Vulnerability SecPod Research (Oct 21)
- SEC Consult SA-20101021-0 :: Multiple critical vulnerabilities in Sawmill log analysis software Johannes Greil (Oct 21)
- [security bulletin] HPSBMA02591 SSRT100299 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS), Privilege Escalation security-alert (Oct 21)
- Micro CMS Persistent XSS Vulnerability. SecPod Research (Oct 21)
- [security bulletin] HPSBMA02596 SSRT100271 rev.1 - HP AssetCenter and HP AssetManager for AIX, HP-UX, Linux, Solaris and Windows , Remote Cross Site Scripting (XSS) security-alert (Oct 21)
- Java Multiple Issues Early Warning (Oct 21)
- [USN-1008-1] libvirt vulnerabilities Jamie Strandboge (Oct 22)
- [USN-1008-2] Virtinst update Jamie Strandboge (Oct 22)
- [security bulletin] HPSBMA02593 SSRT100237 rev.1 - HP Virtual Connect Enterprise Manager (VCEM) for Windows, Remote Arbitrary File Download security-alert (Oct 22)
- [ MDVSA-2010:209 ] libsmi security (Oct 22)
- [SECURITY] [DSA 2122-1] New glibc packages fix local privilege escalation Florian Weimer (Oct 22)
- [USN-1008-3] libvirt update Jamie Strandboge (Oct 25)
- [ MDVSA-2010:212 ] glibc security (Oct 25)
- [ MDVSA-2010:210 ] firefox security (Oct 25)
- IPv6 security myths Fernando Gont (Oct 25)
- Re: IPv6 security myths Fernando Gont (Oct 26)
- The GNU C library dynamic linker will dlopen arbitrary DSOs during setuid loads. Tavis Ormandy (Oct 25)
- Vulnerabilities in W-Agora MustLive (Oct 25)
- [USN-1009-1] GNU C Library vulnerabilities Kees Cook (Oct 25)
- Re: MULTIPLE REMOTE SQL INJECTION VULNERABILITIES---MIM:InfiniX v1.2.003---> robi (Oct 25)
- [ MDVSA-2010:211 ] mozilla-thunderbird security (Oct 25)
- Aardvark Topsite XSS vulnerability Yam Mesicka (Oct 25)
- How Visual Studio Makes Your Applications Vulnerable to Binary Planting ACROS Security Lists (Oct 25)
- RE: How Visual Studio Makes Your Applications Vulnerable to Binary Planting Michael Wojcik (Oct 26)
- Message not available
- RE: How Visual Studio Makes Your Applications Vulnerable to Binary Planting Michael Wojcik (Oct 26)
- <Possible follow-ups>
- RE: RE: [Full-disclosure] Windows Vista/7 lpksetup dll hijack Thor (Hammer of God) (Oct 26)
- RE: RE: [Full-disclosure] Windows Vista/7 lpksetup dll hijack Jann Horn (Oct 26)
- RE: RE: [Full-disclosure] Windows Vista/7 lpksetup dll hijack Thor (Hammer of God) (Oct 26)
- RE: RE: [Full-disclosure] Windows Vista/7 lpksetup dll hijack Jann Horn (Oct 26)
- Re: Nessus Client Insecure Library Loading Vulnerability Renaud Deraison (Oct 27)
- <Possible follow-ups>
- XSS vulnerability in BlogBird platform advisory (Oct 27)
- <Possible follow-ups>
- XSS vulnerability in Zomplog advisory (Oct 27)
- <Possible follow-ups>
- Information disclosure in BloofoxCMS advisory (Oct 27)
- <Possible follow-ups>
- [security bulletin] HPSBST02595 SSRT1000303 rev.1 - HP Storage Essentials Using LDAP, Remote Unauthenticated Access security-alert (Oct 27)
- Re: Secunia PSI Insecure Library Loading Vulnerability Jakob Balle (Oct 28)