月度存档: 12月 2013

ECShop 2.7.2 search.php SQL注入漏洞

Adobe Reader ToolButton Use After Free

Nvidia (nvsvc) Display Driver Service Local Privilege Escalation

Microsoft Windows ndproxy.sys Local Privilege Escalation

PotPlayer 1.5.42509 Beta – DoS (Integer Division by Zero Exploit)

PHP openssl_x509_parse() Memory Corruption Vulnerability

MS13-101 Windows Kernel win32k.sys – Integer Overflow

Red Hat JBoss Portal GateIn Portal不正确URL转义多个反射型跨站脚本漏洞

Windows Apple Safari远程代码执行漏洞

IBM DB2/DB2 Connect远程拒绝服务漏洞(CVE-2013-6717)

Linux Kernel KVM本地权限提升漏洞

RealPlayer ‘RMP’文件处理远程堆缓冲区溢出漏洞

McAfee Email Gateway管理员系统标签多个属性命令执行漏洞

Python CVE-2013-7040信息泄漏漏洞

MIUI系统多个安全漏洞

Google Android架构Fragment注入本地安全绕过漏洞

SUSE ‘sap_suse_cluster_connector’未明本地安全漏洞

WordPress FormCraft Plugin ‘form.php’ SQL注入漏洞

WordPress PhotoSmash Galleries Plugin ‘bwbps-uploader.php’任意文件上传漏洞

TYPO3内容编辑向导多个跨站脚本漏洞

Debian devscripts ‘uscan’远程命令执行漏洞

Debian devscripts ‘uscan’文件名处理任意文件删除漏洞

PHP OpenSSL Extension ‘openssl_x509_parse()’内存破坏漏洞

Adobe ColdFusion 9 – Administrative Login Bypass

vBulletin 5 – index.php/ajax/api/reputation/vote nodeid Parameter SQL Injection

WordPress page-flip-image-gallery plugins Remote File Upload

WordPress Plugin DZS Video Gallery 3.1.3 – Remote and Local File Disclosure Vulnerability

Tftpd32客户端’Remote File’字段格式串漏洞