SecurityReason.com - Our Reason is

Security

	SecurityReason
IT News

Search

SecurityAlert Database

About SecurityAlert

ExploitAlert Database

SecurityReason Research

	WLB
WLB Database

Send to WLB

About WLB

	Services
Security Audit

Schedule

Prices of services

Contact

	RSS
SecurityReason IT News

SecurityAlert

World Laboratory of Bugtraq

ExploitAlert

Apache

PHP

	Corporate
Contact

About SecurityReason



	Note
If you have found a vulnerability, please send to our SecurityAlert Database : secalert()securityreason()com Also if you have new ( 0-day ) exploit, please send to our ExploitAlert Archive : exploit()securityreason()com

Selected Category : World Laboratory of Bugtraq

01 02 03 04 05 06 07 08 09

03.11.2011 -	Singtel 2Wire Hardcoded Password / Cross Site Request Forgery
03.11.2011 -	Oracle Hyperion Financial Management Code Execution
03.11.2011 -	Efront 3.6.10 Build 11944 Cross Site Scripting / SQL Injection
01.11.2011 -	PHP Photo Album 0.4.1.16 Cross Site Scripting / Disclosure
01.11.2011 -	Joomla HM Community SQL Injection / Cross Site Scripting
01.11.2011 -	Slang Media Group Shell Upload
01.11.2011 -	Joomla Alameda 1.0 SQL Injection
01.11.2011 -	jbShop SQL Injection
01.11.2011 -	WordPress Classipress Theme 3.1.4 Cross Site Scripting
30.10.2011 -	PHP Photo Album <= (0.4.1.16) Multiple Disclosure Vulnerabilities
30.10.2011 -	poMMo Aardvark PR16.1 Cross Site Scripting
30.10.2011 -	EnjoyGraph SQL Injection
29.10.2011 -	Simple Balance 2.0 Cross Site Scripting
29.10.2011 -	Plici 2.0.0.Stable.r.1878 Cross Site Scripting
29.10.2011 -	Subgroop SQL Injection
29.10.2011 -	SjXjV 2.3 SQL Injection
29.10.2011 -	Joomla Techfolio 1.0 SQL Injection
29.10.2011 -	eFront Enterprise 3.6.10 Database Disclosure / SQL Injection
29.10.2011 -	eFront 3.6.10 Build 11944 Shell Upload / Code Execution / SQL Injection
29.10.2011 -	Online Subtitles Workshop Cross Site Scripting
29.10.2011 -	MG For Media Solutions SQL Injection
26.10.2011 -	vtiger CRM 5.2.1 Multiple Remote Cross-Site Scripting Vulnerabilities
26.10.2011 -	OmniTouch Instant Communication Suite XSRF / XSS
26.10.2011 -	phpLDAPadmin 1.2.1.1 Remote PHP Code Injection
26.10.2011 -	InverseFlow 2.4 Cross Site Scripting
26.10.2011 -	WebSkinz SQL Injection
26.10.2011 -	Art Dimension SQL Injection
26.10.2011 -	Alsbtain Bulletin 1.5 / 1.6 Local File Inclusion
26.10.2011 -	Cisco Nexus OS (NX-OS) Command Injection
26.10.2011 -	Joomla YJ Contact Local File Inclusion

	Alert
libc/fnmatch(3) DoS - 2011-05-13 Allow attacker to denial of service apache 2.2.17 server


	Apache
» Apache HTTP Server Denial of Service Vulnerability

» Multiple Vendors libc/fnmatch(3) DoS (incl apache poc)

» Apache Continuum cross-site scripting vulnerability

» Apache Tomcat DoS Vulnerability



	PHP
» PHP Hashtables Denial of Service

» PHP 5.3.6 multiple null pointer dereference

» PHP 5.3.6 ZipArchive invalid use glob(3)

» libzip 0.9.3 _zip_name_locate NULL Pointer Dereference (incl PHP 5.3.5)



	ADT
Protect your family and valuables with Home Security Systems