Security Focus Vulnerabilities

Syndicate content SecurityFocus
SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.
Updated: 24 sec ago

Bugtraq: Alfine CMS v2.6 - (Login) Auth Bypass Vulnerability

28 June, 2016 - 13:00
Alfine CMS v2.6 - (Login) Auth Bypass Vulnerability

Bugtraq: Mutualaid CMS v4.3.1 - SQL Injection Web Vulnerability

28 June, 2016 - 12:00
Mutualaid CMS v4.3.1 - SQL Injection Web Vulnerability

Bugtraq: Ladesk Agent #1 (Bug Bounty) - Session Reset Password Vulnerability

28 June, 2016 - 12:00
Ladesk Agent #1 (Bug Bounty) - Session Reset Password Vulnerability

Bugtraq: [SECURITY] [DSA 3607-1] linux security update

28 June, 2016 - 07:20
[SECURITY] [DSA 3607-1] linux security update

Bugtraq: Craft CMS affected by server side template injection

28 June, 2016 - 07:20
Craft CMS affected by server side template injection

Bugtraq: BigTree CMS <= 4.2.11 Authenticated SQL Injection Vulnerability

28 June, 2016 - 07:20
BigTree CMS <= 4.2.11 Authenticated SQL Injection Vulnerability

Bugtraq: [fd] CVE ID request: Untangle NGFW <= v12.1.0 post-auth command injection

28 June, 2016 - 07:20
[fd] CVE ID request: Untangle NGFW <= v12.1.0 post-auth command injection

Bugtraq: MyLittleForum v2.3.5 PHP Command Injection

28 June, 2016 - 07:00
MyLittleForum v2.3.5 PHP Command Injection

Bugtraq: [slackware-security] php (SSA:2016-176-01)

28 June, 2016 - 00:25
[slackware-security] php (SSA:2016-176-01)

Bugtraq: [SECURITY] [DSA 3606-1] libpdfbox security update

27 June, 2016 - 09:35
[SECURITY] [DSA 3606-1] libpdfbox security update

Bugtraq: #146416 Ruby:HTTP Header injection in 'net/http'

27 June, 2016 - 06:45
#146416 Ruby:HTTP Header injection in 'net/http'

Bugtraq: SEC Consult SA-20160624-0 :: ASUS DSL-N55U router XSS and information disclosure

27 June, 2016 - 06:45
SEC Consult SA-20160624-0 :: ASUS DSL-N55U router XSS and information disclosure

Bugtraq: [KIS-2016-06] SugarCRM <= 6.5.18 (MySugar::addDashlet) Insecure fopen() Usage Vulnerability

27 June, 2016 - 06:45
[KIS-2016-06] SugarCRM <= 6.5.18 (MySugar::addDashlet) Insecure fopen() Usage Vulnerability

Bugtraq: [KIS-2016-07] SugarCRM <= 6.5.23 (SugarRestSerialize.php) PHP Object Injection Vulnerability

27 June, 2016 - 06:45
[KIS-2016-07] SugarCRM <= 6.5.23 (SugarRestSerialize.php) PHP Object Injection Vulnerability

Bugtraq: [KIS-2016-04] SugarCRM <= 6.5.18 Missing Authorization Check Vulnerabilities

24 June, 2016 - 08:00
[KIS-2016-04] SugarCRM <= 6.5.18 Missing Authorization Check Vulnerabilities

Bugtraq: ESA-2016-069: EMC Documentum WebTop and WebTop Clients Improper Authorization Vulnerability

24 June, 2016 - 08:00
ESA-2016-069: EMC Documentum WebTop and WebTop Clients Improper Authorization Vulnerability

Bugtraq: Open-Xchange Security Advisory 2016-06-22

24 June, 2016 - 08:00
Open-Xchange Security Advisory 2016-06-22

Bugtraq: [ERPSCAN-16-018] SAP Application server for Javat - DoS vulnerability

24 June, 2016 - 07:00
[ERPSCAN-16-018] SAP Application server for Javat - DoS vulnerability

Bugtraq: [ERPSCAN-16-017] SAP JAVA AS icman - DoS vulnerability

24 June, 2016 - 07:00
[ERPSCAN-16-017] SAP JAVA AS icman - DoS vulnerability

Bugtraq: Magic values in 32-bit processes on 64-bit OS-es and how to exploit them

22 June, 2016 - 13:35
Magic values in 32-bit processes on 64-bit OS-es and how to exploit them