Cross-site scripting (XSS) vulnerability in Eucalyptus Management Console (EMC) 4.0.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Date published : 2020-01-27 https://groups.google.com/a/eucalyptus.com/d/msg/security-announce/tFcxwess0TE/Br0sQW1mJBMJ
WordPress Portable phpMyAdmin Plugin has an authentication bypass vulnerability Date published : 2020-01-27 http://www.openwall.com/lists/oss-security/2013/10/24/1 http://www.securityfocus.com/bid/63249
The Phonemes mode in Pwgen 2.06 generates predictable passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack. Date published : 2020-01-27 http://www.openwall.com/lists/oss-security/2013/06/06/1 http://www.openwall.com/lists/oss-security/2013/10/16/15
XnView 2.03 has an integer overflow vulnerability Date published : 2020-01-27 http://www.securityfocus.com/bid/61505
XnView 2.03 has a stack-based buffer overflow vulnerability Date published : 2020-01-27 http://www.securityfocus.com/bid/61503
IrfanView FlashPix Plugin 4.3.4 0 has an Integer Overflow Vulnerability Date published : 2020-01-27 http://www.securityfocus.com/bid/60232 https://exchange.xforce.ibmcloud.com/vulnerabilities/84903
Command-injection vulnerability in Huawei E587 3G Mobile Hotspot 11.203.27 allows remote attackers to execute arbitrary shell commands with root privileges due to an error in the Web UI. Date published : 2020-01-27 https://www.securityfocus.com/bid/61167/info https://exchange.xforce.ibmcloud.com/vulnerabilities/85782
SimpleHRM 2.3 and earlier could allow remote attackers to bypass the authentication process in ‘user_manager.php’ via spoofing a cookie. Date published : 2020-01-27 http://www.securityfocus.com/bid/59255 http://www.openwall.com/lists/oss-security/2013/04/17/1
Directory traversal vulnerability in AWS XMS 2.5 allows remote attackers to view arbitrary files via the ‘what’ parameter. Date published : 2020-01-27 http://www.securityfocus.com/bid/58753 http://www.exploit-db.com/exploits/24906
PHP Code Injection vulnerability in FUDforum Bulletin Board Software 3.0.4 could allow remote attackers to execute arbitrary code on the system. Date published : 2020-01-27 http://www.securityfocus.com/bid/58845 https://exchange.xforce.ibmcloud.com/vulnerabilities/83229
Pinboard 1.0.6 theme for WordPress has XSS. Date published : 2020-01-27 http://www.openwall.com/lists/oss-security/2013/02/14/4
The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML. Date published : 2020-01-27 https://lists.wikimedia.org/pipermail/mediawiki-announce/2014-December/000173.html http://www.openwall.com/lists/oss-security/2014/12/21/2
Directory traversal vulnerability in the ReportDownloadServlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to read arbitrary files via unspecified vectors. Date published : 2020-01-27 http://support.lexmark.com/index?page=content&id=TE666 http://www.zerodayinitiative.com/advisories/ZDI-14-411/
Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors. Date published : 2020-01-27 http://support.lexmark.com/index?page=content&id=TE666 http://www.zerodayinitiative.com/advisories/ZDI-14-410/