Security Focus Latest Security Advisories

Syndicate content SecurityFocus
SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.
Updated: 35 min 9 sec ago

Bugtraq: Symantec SEPM v12.1 Multiple Vulnerabilities

June 29, 2016 - 11:00am
Symantec SEPM v12.1 Multiple Vulnerabilities
Categories:

Bugtraq: KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution

June 29, 2016 - 11:00am
KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution
Categories:

Bugtraq: [KIS-2016-10] Concrete5 <= 5.7.3.1 (Application::dispatch) Local File Inclusion Vulnerability

June 29, 2016 - 11:00am
[KIS-2016-10] Concrete5 <= 5.7.3.1 (Application::dispatch) Local File Inclusion Vulnerability
Categories:

Bugtraq: [KIS-2016-09] Concrete5 <= 5.7.3.1 Multiple Stored Cross-Site Scripting Vulnerabilities

June 29, 2016 - 11:00am
[KIS-2016-09] Concrete5 <= 5.7.3.1 Multiple Stored Cross-Site Scripting Vulnerabilities
Categories:

Bugtraq: [KIS-2016-08] Concrete5 <= 5.7.3.1 Multiple Cross-Site Request Forgeries Vulnerabilities

June 28, 2016 - 11:00pm
[KIS-2016-08] Concrete5 <= 5.7.3.1 Multiple Cross-Site Request Forgeries Vulnerabilities
Categories:

Bugtraq: Iranian Weblog Services v3.3 CMS - Multiple Web Vulnerabilities

June 28, 2016 - 2:00pm
Iranian Weblog Services v3.3 CMS - Multiple Web Vulnerabilities
Categories:

Bugtraq: Alfine CMS v2.6 - (Login) Auth Bypass Vulnerability

June 28, 2016 - 12:00pm
Alfine CMS v2.6 - (Login) Auth Bypass Vulnerability
Categories:

Bugtraq: Mutualaid CMS v4.3.1 - SQL Injection Web Vulnerability

June 28, 2016 - 12:00pm
Mutualaid CMS v4.3.1 - SQL Injection Web Vulnerability
Categories:

Bugtraq: Ladesk Agent #1 (Bug Bounty) - Session Reset Password Vulnerability

June 28, 2016 - 12:00pm
Ladesk Agent #1 (Bug Bounty) - Session Reset Password Vulnerability
Categories:

Bugtraq: [SECURITY] [DSA 3607-1] linux security update

June 28, 2016 - 8:00am
[SECURITY] [DSA 3607-1] linux security update
Categories:

Bugtraq: Craft CMS affected by server side template injection

June 28, 2016 - 8:00am
Craft CMS affected by server side template injection
Categories:

Bugtraq: BigTree CMS <= 4.2.11 Authenticated SQL Injection Vulnerability

June 28, 2016 - 8:00am
BigTree CMS <= 4.2.11 Authenticated SQL Injection Vulnerability
Categories:

Bugtraq: [fd] CVE ID request: Untangle NGFW <= v12.1.0 post-auth command injection

June 28, 2016 - 8:00am
[fd] CVE ID request: Untangle NGFW <= v12.1.0 post-auth command injection
Categories:

Bugtraq: MyLittleForum v2.3.5 PHP Command Injection

June 28, 2016 - 6:00am
MyLittleForum v2.3.5 PHP Command Injection
Categories:

Bugtraq: [slackware-security] php (SSA:2016-176-01)

June 28, 2016 - 12:00am
[slackware-security] php (SSA:2016-176-01)
Categories:

Bugtraq: [SECURITY] [DSA 3606-1] libpdfbox security update

June 27, 2016 - 10:00am
[SECURITY] [DSA 3606-1] libpdfbox security update
Categories:

Bugtraq: #146416 Ruby:HTTP Header injection in 'net/http'

June 27, 2016 - 6:00am
#146416 Ruby:HTTP Header injection in 'net/http'
Categories:

Bugtraq: SEC Consult SA-20160624-0 :: ASUS DSL-N55U router XSS and information disclosure

June 27, 2016 - 6:00am
SEC Consult SA-20160624-0 :: ASUS DSL-N55U router XSS and information disclosure
Categories:

Bugtraq: [KIS-2016-06] SugarCRM <= 6.5.18 (MySugar::addDashlet) Insecure fopen() Usage Vulnerability

June 27, 2016 - 6:00am
[KIS-2016-06] SugarCRM <= 6.5.18 (MySugar::addDashlet) Insecure fopen() Usage Vulnerability
Categories:

Bugtraq: [KIS-2016-07] SugarCRM <= 6.5.23 (SugarRestSerialize.php) PHP Object Injection Vulnerability

June 27, 2016 - 6:00am
[KIS-2016-07] SugarCRM <= 6.5.23 (SugarRestSerialize.php) PHP Object Injection Vulnerability
Categories: