The XmlRpc package of Zend Framework is vulnerable to XML
eXteφΰ� � � g�e���e1955
CVE-2012-1957
CVE-2012-1958
CVE-2012-1959
CVE-2012-1960
CVE-2012-1961
CVE-2012-1962
ύ� � � g�e���edates>
2012-04-24
2012-04-24
Dokuwiki -- cross site scripting vulnerability
47930
CVE-2011-1929
tomcat -- Cross-site scripting vulnerability
tomcat
5.5.05.5.32
tomcat
� � �
���T@�����8-5913
CVE-2010-0183
CVE-2010-1121
CVE-2010-1125
CVE-2009-1755
http://www.nlnetlabs.nl/publications/NSD_vulnerability_announcement.html
―� � � g�e���e
CVE-2008-5705
CVE-2008-5706
32889
32420
http://milw0rm.com/exploits/7183
<΅ � � � g�e���ech files to content. Users can view files
attached to content which they do not otherwise have access to.
If the core upload module is not enabled, your site will not be
affected.
A deficiency in the user»ΐ� � ���
U�Jι@F����
postgresqlpostgresql
postgresql-server
7.3Αΰ� � � g�e���eme>
http://secunia.com/secunia_research/2007-76/
2007-11-06
2007-11-09
2007-11-12
� � � g�e���eproperly sanitised before being used in SQL queries. This
can be exploited to manipulate SQL queries by injecting arbitrary
SQL code.
Successful exploitation allows e.g. retrieving usernames and
passwordΞ � � �
p�d�vΕ@���ovulnerabilities
libmusicbrainz
2.1.3SecurityFocΤΐ� � � g�e���eg reports:
With Rails 1.1.0 through 1.1.5 (minus the short-lived 1.1.3),
you can trigger the evaluation of RubyΪΰ� � ���
Y�`Κ@¬����itset_test()"
function in "ibclamav/others.c" may be exploited to cause a
crash614
CVE-2006-1615
Some unspecified vulnerabilities in the "mosDBTable"
class and the "DOMIT" library havνΐ� � � g�e���e
jabber
1.4.3.1_1,1
1.4.4
bnc
2.9.3
rσΰ� � � g�e���enicode changelog reports:
Fix a bug that allowed to overflow a buffer via a long
escape sequence, which is probably exploitable (fix by
Rob Hollϊ� � ��+
)�R����)ffect FreeBSD 4.6-RELEASE or later systems, as these
systems ensure that the file descriptors 0, 1, and 2 are
always open for set-user-ID and set-group-ID programs � � �����[
}����
+2.8.21_1t>1.3.32+2.8.21_1