CNET Forums: Message List - VULNERABILITIES / FIXES - April 27, 2012 http://forums.cnet.com/ The latest posts in VULNERABILITIES / FIXES - April 27, 2012. CNET Forums: Message List - VULNERABILITIES / FIXES - April 27, 2012 http://i.i.com.com/cnwk.1d/i/cobd/cnet/cnet_88x31.gif http://forums.cnet.com/ 31 88 CNET.com CNET http://www.cnet.com Car Portal CMS Cross-Site Request Forgery Vulnerability Release Date : 2012-04-27<br><br>Criticality level : Less critical<br>Impact : Cross Site Scripting<br>Where : From remo ... http://forums.cnet.com/7726-6132_102-5304473.html http://forums.cnet.com/7726-6132_102-5304473.html 27 Apr 2012 17:29:08 PDT DiY-CMS Cross-Site Request Forgery Vulnerability Release Date : 2012-04-27<br><br>Criticality level : Less critical<br>Impact : Cross Site Scripting<br>Where : From remo ... http://forums.cnet.com/7726-6132_102-5304428.html http://forums.cnet.com/7726-6132_102-5304428.html 27 Apr 2012 16:10:32 PDT eFront &quot;courses_ID&quot; Path Disclosure Weakness Release Date : 2012-04-27<br><br>Criticality level : Not critical<br>Impact : Exposure of system information<br>Where : ... http://forums.cnet.com/7726-6132_102-5304441.html http://forums.cnet.com/7726-6132_102-5304441.html 27 Apr 2012 16:09:36 PDT Oracle Database Multiple Vulnerabilities Release Date: 2012-04-18 <br>Last Update: 2012-04-27 <br><br>Criticality level : Moderately critical<br>Impact : Securit ... http://forums.cnet.com/7726-6132_102-5304400.html http://forums.cnet.com/7726-6132_102-5304400.html 27 Apr 2012 14:05:37 PDT concrete5 &quot;approveImmediately&quot; Cross-Site Scripting <b>concrete5 &quot;approveImmediately&quot; Cross-Site Scripting Vulnerability</b><br><br>Release Date : 2012-04-27<br>< ... http://forums.cnet.com/7726-6132_102-5304369.html http://forums.cnet.com/7726-6132_102-5304369.html 27 Apr 2012 13:44:00 PDT HP LaserJet Printers / Digital Senders Unauthorized Firmware <b>HP LaserJet Printers / Digital Senders Unauthorized Firmware Update Security Issue</b><br><br>Release Date: 2011-12-0 ... http://forums.cnet.com/7726-6132_102-5304373.html http://forums.cnet.com/7726-6132_102-5304373.html 27 Apr 2012 12:38:05 PDT TwonkyManager TwonkyServer Directory Traversal Vulnerability Release Date : 2012-04-27<br><br>Criticality level : Less critical<br>Impact : Exposure of sensitive information<br>Wher ... http://forums.cnet.com/7726-6132_102-5304370.html http://forums.cnet.com/7726-6132_102-5304370.html 27 Apr 2012 12:29:12 PDT TwonkyServer Directory Traversal Vulnerability Release Date : 2012-04-27<br><br>Criticality level : Less critical<br>Impact : Exposure of sensitive information<br>Wher ... http://forums.cnet.com/7726-6132_102-5304329.html http://forums.cnet.com/7726-6132_102-5304329.html 27 Apr 2012 12:26:11 PDT Drupal Ubercart Module Script Insertion and Code Injection <b>Drupal Ubercart Module Script Insertion and Code Injection Vulnerabilities</b><br><br>Release Date : 2012-04-27<br><b ... http://forums.cnet.com/7726-6132_102-5304238.html http://forums.cnet.com/7726-6132_102-5304238.html 27 Apr 2012 07:29:12 PDT VMware ESX Server Multiple Vulnerabilities Release Date : 2012-04-27<br><br>Criticality level : Highly critical<br>Impact : Privilege escalation<br>DoS<br>System a ... http://forums.cnet.com/7726-6132_102-5304243.html http://forums.cnet.com/7726-6132_102-5304243.html 27 Apr 2012 07:21:29 PDT WordPress Zingiri Web Shop Plugin Cross-Site Scripting <b>WordPress Zingiri Web Shop Plugin Cross-Site Scripting and Script Insertion Vulnerabilities</b><br><br>Release Date : ... http://forums.cnet.com/7726-6132_102-5304209.html http://forums.cnet.com/7726-6132_102-5304209.html 27 Apr 2012 07:15:06 PDT Debian update for spip Release Date : 2012-04-27<br><br>Criticality level : Less critical<br>Impact : Cross Site Scripting<br>Where : From remo ... http://forums.cnet.com/7726-6132_102-5304229.html http://forums.cnet.com/7726-6132_102-5304229.html 27 Apr 2012 07:02:44 PDT gpEasy CMS &quot;jsoncallback&quot; Cross-Site Scripting Vulnerability Release Date : 2012-04-27<br><br>Criticality level : Less critical<br>Impact : Cross Site Scripting<br>Where : From remo ... http://forums.cnet.com/7726-6132_102-5304228.html http://forums.cnet.com/7726-6132_102-5304228.html 27 Apr 2012 07:02:40 PDT Ubuntu update for jetty Release Date : 2012-04-27<br><br>Criticality level : Less critical<br>Impact : DoS<br>Where : From remote<br>Solution St ... http://forums.cnet.com/7726-6132_102-5304227.html http://forums.cnet.com/7726-6132_102-5304227.html 27 Apr 2012 07:02:36 PDT HP NonStop Server Java Multiple Vulnerabilities Release Date : 2012-04-27<br><br>Criticality level : Highly critical<br>Impact : Manipulation of data<br>Exposure of sen ... http://forums.cnet.com/7726-6132_102-5304241.html http://forums.cnet.com/7726-6132_102-5304241.html 27 Apr 2012 07:00:52 PDT Quest Toad for Data Analysts Insecure Default Directory <b>Quest Toad for Data Analysts Insecure Default Directory Permissions</b><br><br>Release Date : 2012-04-27<br><br>Criti ... http://forums.cnet.com/7726-6132_102-5304202.html http://forums.cnet.com/7726-6132_102-5304202.html 27 Apr 2012 05:17:26 PDT Joomla! nBill Component &quot;message&quot; Cross-Site Scripting <b>Joomla! nBill Component &quot;message&quot; Cross-Site Scripting Vulnerability</b><br><br>Release Date : 2012-04-27<b ... http://forums.cnet.com/7726-6132_102-5304201.html http://forums.cnet.com/7726-6132_102-5304201.html 27 Apr 2012 05:17:22 PDT VULNERABILITIES / FIXES - April 27, 2012 <b>PHP Volunteer Management Cross-Site Scripting and SQL Injection Vulnerabilities</b><br><br>Release Date : 2012-04-27< ... http://forums.cnet.com/7726-6132_102-5304189.html http://forums.cnet.com/7726-6132_102-5304189.html 27 Apr 2012 05:10:16 PDT