Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. Date published : 2016-10-25 http://www.securityfocus.com/bid/93650 http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote authenticated users to affect confidentiality via unknown vectors. Date published : 2016-10-25 http://www.securityfocus.com/bid/93719 http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Ruckus Wireless H500 web management interface denial of service Date published : 2016-10-25 http://b910a83a1a1fa9c20d93-2435f2f08e773abe005b52170fce6d94.r84.cf2.rackcdn.com/security/faq-security-advisory-id-062117.txt https://www.tripwire.com/state-of-security/vulnerability-management/ruckus-vulnerability/
Ruckus Wireless H500 web management interface authentication bypass Date published : 2016-10-25 http://b910a83a1a1fa9c20d93-2435f2f08e773abe005b52170fce6d94.r84.cf2.rackcdn.com/security/faq-security-advisory-id-062117.txt https://www.tripwire.com/state-of-security/vulnerability-management/ruckus-vulnerability/
Ruckus Wireless H500 web management interface CSRF Date published : 2016-10-25 http://b910a83a1a1fa9c20d93-2435f2f08e773abe005b52170fce6d94.r84.cf2.rackcdn.com/security/faq-security-advisory-id-062117.txt https://www.tripwire.com/state-of-security/vulnerability-management/ruckus-vulnerability/
Shotwell version 0.22.0 (and possibly other versions) is vulnerable to a TLS/SSL certification validation flaw resulting in a potential for man in the middle attacks. Date published : 2016-10-25 https://bugzilla.gnome.org/show_bug.cgi?id=754488
TGCaptcha2 version 0.3.0 is vulnerable to a replay attack due to a missing nonce allowing attackers to use a single solved CAPTCHA multiple times. Date published : 2016-10-25 https://bugzilla.redhat.com/show_bug.cgi?id=1316083 https://patrick.uiterwijk.org/2016/03/09/fedora-spam-dwf-2016-89000/
Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution Date published : 2016-10-25 http://www.securityfocus.com/bid/93604 http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to execute arbitrary code...
Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to execute arbitrary code...
Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to execute arbitrary code...
ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via malformed options data in an OPT resource record. Date published...
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla Date published : 2016-10-21 http://www.securityfocus.com/bid/92185 http://extensions.joomla.org/extensions/extension/e-commerce/shopping-cart/catalog
XSS & SQLi in HugeIT slideshow v1.0.4 Date published : 2016-10-21 http://www.securityfocus.com/bid/93822 http://extensions.joomla.org/extensions/extension/photos-a-images/slideshow/slideshow