[Canvas] Agora 2.25 is out
Yuriy Gurkin
audit at gleg.net
Wed Jul 10 16:16:45 EDT 2013
Agora 2.25 is out with Sophos and Trend Micro sploits and Symantec
DoS; pretty fresh DoSes for Monkey httpd and Squid and nice web apps
modules.
List is below.
[def]:
- Sophos Web Protection Appliance local file disclosure. which could
be leveraged to clear text passwords retrieval and administrator users
impersonation. public.
- Symantec AntiVirus Intel Alert Handler service DOS. which seems to
be an old, but still usefull bug.
- Trend Micro Control Manager SQL Injection. public
[other]:
- Monkey HTTPD Denial of service. public
- Squid Denial of service. public
[web]:
- Webid Local File Disclosure Vulnerability
- WHMCS all-in-one client management, billing & support solution. SQL Injection
- Wordpress wp-FileManager Arbitrary File Download Vulnerability
Regards.
More information about the Canvas
mailing list