Digital Security Research Group

Services

Vulnerabilities

Exploits

Publications

News

Blog

About DSecRG


		RSS 04.02.2008 [DSECRG-08-008] Textpattern 4.0.5 - Multiple Security Vulnerabilities (DOS,XSS) 31.01.2008 [DSECRG-08-007] OpenBSD BGPD - XSS 29.01.2008 [DSECRG-08-006] Nucleus 3.31 - XSS in URL 29.01.2008 [DSECRG-08-005] phpCMS 1.2.2 - Remote File Disclosure 16.01.2008 [DSECRG-08-004] Oracle Database 10g - Code Execution and SQL injection 16.01.2008 [DSECRG-08-003] Blogcms 4.2.1b - Multiple Security Vulnerabilities (SQL,XSS) 15.01.2008 [DSECRG-08-002] Aria 0.99-6 - Local File Include Vulnerability 09.01.2008 [DSECRG-08-001] Tuned Studios Templates - Local File Include Vulnerability 27.12.2007 [DSECRG-07-002] 2z 0.9.6.1 - Multiple Security Vulnerabilities (XSS, XSRF) 25.12.2007 [DSECRG-07-001] RunCMS 1.6 - Multiple Security Vulnerabilities (SQL,XSS,PHP Include) 1 2 3 4 5

Upcoming Advisories
The following is a list most important vulnerabilities discovered by DSecRG researchers that are yet to be published.
The affected vendor has been contacted on the specified date and work on a patch for vulnerability.

[DSECRG-09-067]	SAP	14.12.2009
[DSECRG-09-066]	Oracle	14.12.2009
[DSECRG-]	Oracle	16.11.2009
[DSECRG-09-063]	progress	13.10.2009
[DSECRG-09-057]	SAP	08.09.2009
[DSECRG-09-056]	SAP	08.09.2009
[DSECRG-09-050]	SAP	11.08.2009
[DSECRG-09-042]	Oracle	26.06.2009
[DSECRG-09-041]	Oracle	26.06.2009
[DSECRG-09-047]	HP	07.04.2009
[DSECRG-09-032]	Oracle	18.03.2009
[DSECRG-09-029]	Oracle	03.03.2009
[DSECRG-09-028]	Apple	26.02.2009
[DSECRG-09-027]	Oracle	25.02.2009
[DSECRG-09-026]	Oracle	19.02.2009
[DSECRG-09-024]	Oracle	21.01.2009
[DSECRG-09-023]	Adobe	20.01.2009
[DSECRG-09-012]	Oracle	19.10.2008

+7 (812) 703-1547, +7 (812) 430-9130 e-mail: research@dsecrg.com
Rss: Vulnerabilities, Exploits, News, Publications, Summary