Security Focus Latest Security Advisories

Syndicate content SecurityFocus
SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.
Updated: 32 min 19 sec ago

Bugtraq: Mutualaid CMS v4.3.1 - SQL Injection Web Vulnerability

June 28, 2016 - 12:00pm
Mutualaid CMS v4.3.1 - SQL Injection Web Vulnerability
Categories:

Bugtraq: Ladesk Agent #1 (Bug Bounty) - Session Reset Password Vulnerability

June 28, 2016 - 12:00pm
Ladesk Agent #1 (Bug Bounty) - Session Reset Password Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3607-1] linux security update

June 28, 2016 - 8:00am
[SECURITY] [DSA 3607-1] linux security update
Categories:

Bugtraq: Craft CMS affected by server side template injection

June 28, 2016 - 8:00am
Craft CMS affected by server side template injection
Categories:

Bugtraq: BigTree CMS <= 4.2.11 Authenticated SQL Injection Vulnerability

June 28, 2016 - 8:00am
BigTree CMS <= 4.2.11 Authenticated SQL Injection Vulnerability
Categories:

Bugtraq: [fd] CVE ID request: Untangle NGFW <= v12.1.0 post-auth command injection

June 28, 2016 - 8:00am
[fd] CVE ID request: Untangle NGFW <= v12.1.0 post-auth command injection
Categories:

Bugtraq: MyLittleForum v2.3.5 PHP Command Injection

June 28, 2016 - 6:00am
MyLittleForum v2.3.5 PHP Command Injection
Categories:

Bugtraq: [slackware-security] php (SSA:2016-176-01)

June 28, 2016 - 12:00am
[slackware-security] php (SSA:2016-176-01)
Categories:

Bugtraq: [SECURITY] [DSA 3606-1] libpdfbox security update

June 27, 2016 - 10:00am
[SECURITY] [DSA 3606-1] libpdfbox security update
Categories:

Bugtraq: #146416 Ruby:HTTP Header injection in 'net/http'

June 27, 2016 - 6:00am
#146416 Ruby:HTTP Header injection in 'net/http'
Categories:

Bugtraq: SEC Consult SA-20160624-0 :: ASUS DSL-N55U router XSS and information disclosure

June 27, 2016 - 6:00am
SEC Consult SA-20160624-0 :: ASUS DSL-N55U router XSS and information disclosure
Categories:

Bugtraq: [KIS-2016-06] SugarCRM <= 6.5.18 (MySugar::addDashlet) Insecure fopen() Usage Vulnerability

June 27, 2016 - 6:00am
[KIS-2016-06] SugarCRM <= 6.5.18 (MySugar::addDashlet) Insecure fopen() Usage Vulnerability
Categories:

Bugtraq: [KIS-2016-07] SugarCRM <= 6.5.23 (SugarRestSerialize.php) PHP Object Injection Vulnerability

June 27, 2016 - 6:00am
[KIS-2016-07] SugarCRM <= 6.5.23 (SugarRestSerialize.php) PHP Object Injection Vulnerability
Categories:

Bugtraq: [KIS-2016-04] SugarCRM <= 6.5.18 Missing Authorization Check Vulnerabilities

June 24, 2016 - 8:00am
[KIS-2016-04] SugarCRM <= 6.5.18 Missing Authorization Check Vulnerabilities
Categories:

Bugtraq: ESA-2016-069: EMC Documentum WebTop and WebTop Clients Improper Authorization Vulnerability

June 24, 2016 - 8:00am
ESA-2016-069: EMC Documentum WebTop and WebTop Clients Improper Authorization Vulnerability
Categories:

Bugtraq: Open-Xchange Security Advisory 2016-06-22

June 24, 2016 - 8:00am
Open-Xchange Security Advisory 2016-06-22
Categories:

Bugtraq: [ERPSCAN-16-018] SAP Application server for Javat - DoS vulnerability

June 24, 2016 - 6:00am
[ERPSCAN-16-018] SAP Application server for Javat - DoS vulnerability
Categories:

Bugtraq: [ERPSCAN-16-017] SAP JAVA AS icman - DoS vulnerability

June 24, 2016 - 6:00am
[ERPSCAN-16-017] SAP JAVA AS icman - DoS vulnerability
Categories: