Feed aggregator

[SECURITY] [DSA 3296-1] libcrypto++ security update

BugTraq Latest Security Advisories - June 29, 2015 - 10:14am

Posted by Alessandro Ghedini on Jun 29

-------------------------------------------------------------------------
Debian Security Advisory DSA-3296-1 security () debian org
https://www.debian.org/security/ Alessandro Ghedini
June 29, 2015 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : libcrypto++
CVE ID : CVE-2015-2141

Evgeny Sidorov...
Categories:

novius-os.5.0.1 Persistent XSS, LFI & Open Redirect Vulnerabilities

BugTraq Latest Security Advisories - June 29, 2015 - 10:04am

Posted by apparitionsec on Jun 29

[+] Credits: John Page ( hyp3rlinx )

[+] Domains: hyp3rlinx.altervista.org

[+] Source: http://hyp3rlinx.altervista.org/advisories/AS-NOVIUSOS0629.txt

Vendor:
=======================
community.novius-os.org

Product:
===============================================================
novius-os.5.0.1-elche is a PHP Based Content Management System
community.novius-os.org/developpers/download.html

Advisory Information:...
Categories:

CollabNet Subversion Edge indes local file inclusion

BugTraq Latest Security Advisories - June 29, 2015 - 9:54am

Posted by Oliver-Tobias Ripka on Jun 29

# Vuln Title: Local file inclusion in CollabNet Subversion Edge Management
# Frontend via logfile "listViewItem" parameter of the "index" action
#
# Date: 28.06.2015
# Author: otr
# Software Link: https://www.open.collab.net/downloads/svnedge
# Vendor: CollabNet
# Version: 4.0.11
# Tested on: Fedora Linux
# Type: Local file inclusion
#
# Risk: Medium
# Status: public/fixed
# Fixed version: 5.0

Timeline:

2014-10-09 Flaw...
Categories:

CollabNet Subversion Edge missing single login restriction

BugTraq Latest Security Advisories - June 29, 2015 - 9:46am

Posted by Oliver-Tobias Ripka on Jun 29

# Vuln Title: The CollabNet Subversion Edge management missing single login
# restriction
#
# Date: 28.06.2015
# Author: otr
# Software Link: https://www.open.collab.net/downloads/svnedge
# Vendor: CollabNet
# Version: 4.0.11
# Tested on: Fedora Linux
# Type: No single login restriction
#
# Risk: Low
# Status: public/unfixed
# Fixed version: -

Timeline:

2014-10-09 Flaw Discovered
2014-10-20 Vendor contacted
2014-10-21 Vendor response
2014-12-08...
Categories: