CREATE TRIGGER in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 does not properly check the execute permission for trigger functions marked SECURITY DEFINER, which allows remote authenticated...
Unspecified vulnerability in Oracle GlassFish Enterprise Server 3.0.1 and 3.1.1 allows remote attackers to affect confidentiality and integrity, related to JSF. Date published : 2012-07-17 http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.6, and 11.1.2.0 allows remote attackers to affect integrity via unknown vectors. Date published : 2012-07-17 http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
Open redirect vulnerability in the login page in WebsitePanel before 1.2.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in ReturnUrl to Default.aspx. Date published...
Multiple directory traversal vulnerabilities in src/acloglogin.php in Wangkongbao CNS-1000 and 1100 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) lang or (2) langid cookie to port 85....
The Nova scheduler in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of service (excessive database lookup calls and server...
(1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack on a temporary HTML...
The VMware Broker in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 does not properly authenticate SOAP requests, which allows remote attackers to execute arbitrary VMware Broker API commands. Date published : 2012-07-17 http://www.eucalyptus.com/eucalyptus-cloud/security/esa-04 http://secunia.com/advisories/49912
The Walrus service in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 allows remote attackers to gain administrator privileges via a crafted REST request. Date published : 2012-07-17 http://www.eucalyptus.com/eucalyptus-cloud/security/esa-03 http://secunia.com/advisories/49912
Unspecified vulnerability in the Oracle JRockit component in Oracle Fusion Middleware 28.2.3 and before, and 27.7.2 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Date published : 2012-07-17...
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect availability via unknown vectors. Date published : 2012-07-17 http://www.securityfocus.com/bid/54496 http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
Unspecified vulnerability in Oracle Sun Solaris 9, 10, and 11 allows remote attackers to affect confidentiality, related to Network/NFS. Date published : 2012-07-17 http://www.securityfocus.com/bid/54560 http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect integrity via unknown vectors related to pkg.depotd. Date published : 2012-07-17 http://www.securityfocus.com/bid/54559 http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
Unspecified vulnerability in Oracle Sun Solaris 10 allows remote attackers to affect confidentiality, integrity, and availability, related to Gnome PDF viewer. Date published : 2012-07-17 http://www.securityfocus.com/bid/54513 http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html