03 February 2012

• WordPress uCan Post plugin Multiple HTML Injection Vulnerabilities
• Opera Web Browser Information Disclosure and Security Bypass Vulnerabilities
• IBM Lotus Symphony Image Object Integer Overflow
• OpenSSL DTLS Remote Denial of Service

02 February 2012

• IBM WebSphere Application Server SibRaRecoverableSiXaResource Information Disclosure
• SAP NetWeaver Multiple Remote Vulnerabilities
• KingSCADA Credential Information Disclosure
• JBoss "mod_cluster" Security Bypass

01 February 2012

• Cisco IP Video Phone E20 Default Root Credentials Authentication Bypass
• SolarWinds Storage Manager Server SQL Injection
• Google Chrome Multiple Security Vulnerabilities
• GE Energy D20/D200 Substation Controller Code Execution and Information Disclosure Vulnerabilities
• Cisco Digital Media Manager Remote Privilege Escalation

31 January 2012

• Joomla! "com_some" Component "controller" Parameter Local File Include
• osCommerce Multiple Unspecified Cross Site Scripting Vulnerabilities
• Apache Struts "ParameterInterceptor" Class OGNL Security Bypass
• Multiple Red Hat Network Products XMLRPC Credential Information Disclosure
• Linux Kernel Local Privilege Escalation

30 January 2012

• WordPress AllWebMenus Plugin "actions.php" Arbitrary File Upload
• IBM WebSphere Application Server Cross-Site Scripting
• IBM solidDB "SELECT" Statement Denial of Service
• Tucan Manager Plugin Update Security Bypass
• Linux Kernel iocbs Local Denial of Service