-
Secunia Advisory 21943
Mambo Serverstat Component File Inclusion Vulnerability- Criticality: High
- Description: xoron has discovered a vulnerability in the Serverstat component for Mambo, which can be exploited by malicious people to compromise a vulnerable system.
- Secunia Advisory: http://secunia.com/advisories/21943/
-
Secunia Advisory 21948
Dokeos "extAuthSource['newUser']" File Inclusion Vulnerability- Criticality: High
- Description: James Bercegay has reported a vulnerability in Dokeos, which can be exploited by malicious people to compromise a vulnerable system.
Input passed to the "extAuthSource['newUser']" parameter in claroline/inc/claro_init_local.inc.php is not properly verified before being used to include files. This can be exploited to include arbitrary files from local or external resources.
- Secunia Advisory: http://secunia.com/advisories/21948/
-
Secunia Advisory 21949
Red Hat update for firefox- Criticality: High
- Description: Red Hat has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially compromise a user's system.
- Secunia Advisory: http://secunia.com/advisories/21949/
-
Secunia Advisory 21950
rPath updates for firefox and thunderbird- Criticality: High
- Description: rPath has issued updates for firefox and thunderbird. These fix some vulnerabilities, which can be exploited by malicious people to conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially compromise a user's system.
- Secunia Advisory: http://secunia.com/advisories/21950/