[webapps] – WordPress Count per Day Plugin 3.2.5 (counter.php) – XSS Vulnerability
WordPress Count per Day Plugin 3.2.5 (counter.php) - XSS Vulnerability
Apple Security Advisory 2013-03-14-2
Apple Security Advisory 2013-03-14-2 - Safari 6.0.3 is now available and addresses multiple security issues.
Apple Security Advisory 2013-03-14-1
Apple Security Advisory 2013-03-14-1 - OS X Mountain Lion version 10.8.3 and Security Update 2013-001 addresses multiple vulnerabilities. These updates address a canonicalization issue with HFS and Apache, a buffer overflow in libtiff, an authentication bypass, and more.
Apple Security Advisory 2013-03-04-1
Apple Security Advisory 2013-03-04-1 - Multiple vulnerabilities existed in Java 1.6.0_41, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox, have been addressed.
Viscosity setuid-set ViscosityHelper Privilege Escalation
This Metasploit module exploits a vulnerability in Viscosity 1.4.1 on Mac OS X. The vulnerability exists in the setuid ViscosityHelper, where an insufficient validation of path names allows execution of arbitrary python code as root. This Metasploit module has been tested successfully on Viscosity 1.4.1 over Mac OS X 10.7.5.
Setuid Tunnelblick Privilege Escalation
This Metasploit module exploits a vulnerability in Tunnelblick 3.2.8 on Mac OS X. The vulnerability exists in the setuid openvpnstart, where an insufficient validation of path names allows execution of arbitrary shell scripts as root. This Metasploit module has been tested successfully on Tunnelblick 3.2.8 build 2891.3099 over Mac OS X 10.7.5.
[webapps] – MTP Poll 1.0 – Multiple XSS Vulnerabilities
MTP Poll 1.0 - Multiple XSS Vulnerabilities
[webapps] – MTP Guestbook 1.0 – Multiple XSS Vulnerabilities
MTP Guestbook 1.0 - Multiple XSS Vulnerabilities