Security - Ravens PHP Scripts

Ravens PHP Scripts: Security

MKPortal Shoutbox Message Cross-Site Request Forgery

Posted on Thursday, December 21, 2006 @ 10:56:31 CST in Security
by Raven

SECUNIA ADVISORY ID: SA23431

VERIFY ADVISORY: http://secunia.com/advisories/23431/

CRITICAL: Less critical

IMPACT: Cross Site Scripting

SOFTWARE: MKPortal 1.x - http://secunia.com/product/9502/

DESCRIPTION: Demential has discovered a vulnerability in MKPortal, which can be exploited by malicious people to conduct cross-site request forgery attacks. Read More...

Mozilla Firefox Multiple Vulnerabilities

Posted on Wednesday, December 20, 2006 @ 16:03:14 CST in Security
by Raven

SECUNIA ADVISORY ID: SA23282

VERIFY ADVISORY: http://secunia.com/advisories/23282/

CRITICAL: Highly critical

IMPACT: Cross Site Scripting, Exposure of sensitive information, DoS, System access

SOFTWARE:
Mozilla Firefox 1.x - http://secunia.com/product/4227/
Mozilla Firefox 2.0.x - http://secunia.com/product/12434/

DESCRIPTION: Multiple vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to gain knowledge of certain information, conduct cross-site scripting attacks, and potentially compromise a user's system. Read More...

Mozilla SeaMonkey Multiple Vulnerabilities

Posted on Wednesday, December 20, 2006 @ 16:02:03 CST in Security
by Raven

SECUNIA ADVISORY ID: SA23422

VERIFY ADVISORY: http://secunia.com/advisories/23422/

CRITICAL: Highly critical

IMPACT: Cross Site Scripting, DoS, System access

SOFTWARE: Mozilla SeaMonkey 1.x - http://secunia.com/product/9126/

DESCRIPTION: Multiple vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to conduct cross-site scripting attacks and potentially compromise a user's system. See vulnerabilities #1 through #7 for more information: SA23282 The following two vulnerabilities have also been reported: Read More...

Mozilla Thunderbird Multiple Vulnerabilities

Posted on Wednesday, December 20, 2006 @ 16:01:08 CST in Security
by Raven

SECUNIA ADVISORY ID: SA23420

VERIFY ADVISORY: http://secunia.com/advisories/23420/

CRITICAL: Highly critical

IMPACT: Cross Site Scripting, DoS, System access

SOFTWARE:
Mozilla Thunderbird 1.0.x - http://secunia.com/product/9735/
Mozilla Thunderbird 1.5.x - http://secunia.com/product/4652/

DESCRIPTION: Multiple vulnerabilities have been reported in Mozilla Thunderbird, which can be exploited by malicious people to conduct cross-site scripting attacks and potentially compromise a user's system. See vulnerabilities #1 through #6 for more information: SA23282 The following two vulnerabilities have also been reported: Read More...

WinFtp Server Data Handling Denial of Service Vulnerability

Posted on Wednesday, December 20, 2006 @ 16:00:04 CST in Security
by Raven

SECUNIA ADVISORY ID: SA23412

VERIFY ADVISORY: http://secunia.com/advisories/23412/

CRITICAL: Moderately critical

IMPACT: DoS

SOFTWARE: WinFtp Server 2.x - http://secunia.com/product/12923/

DESCRIPTION: shinnai has discovered a vulnerability in WinFtp Server, which can be exploited by malicious people to cause a DoS (Denial of Service). Read More...

Sun Java JRE Multiple Vulnerabilities

Posted on Wednesday, December 20, 2006 @ 15:59:13 CST in Security
by Raven

SECUNIA ADVISORY ID: SA23445

VERIFY ADVISORY: http://secunia.com/advisories/23445/

CRITICAL: Highly critical

IMPACT: Privilege escalation, System access

SOFTWARE:
Sun Java JDK 1.5.x - http://secunia.com/product/4621/
Sun Java JRE 1.5.x / 5.x - http://secunia.com/product/4228/
Sun Java JRE 1.4.x - http://secunia.com/product/784/
Sun Java JRE 1.3.x - http://secunia.com/product/87/
Sun Java SDK 1.4.x - http://secunia.com/product/1661/
Sun Java SDK 1.3.x - http://secunia.com/product/1660/

DESCRIPTION: Some vulnerabilities have been reported in Sun Java JRE (Java Runtime Environment), which can be exploited by malicious people to compromise a user's system. Read More...

MKPortal Shoutbox Message Cross-Site Request Forgery

Mozilla Firefox Multiple Vulnerabilities

Mozilla SeaMonkey Multiple Vulnerabilities

Mozilla Thunderbird Multiple Vulnerabilities

WinFtp Server Data Handling Denial of Service Vulnerability

Sun Java JRE Multiple Vulnerabilities

Site Info

Site Navigation

Partners

Recommended Sites

Old Articles