EVA-Web 2.1.2 - article-album.php3?debut_image Cross-Site Scripting
EVA-Web 2.1.2 - article-album.php3?debut_image Cross-Site...
-0.4AI Score
EVA-Web 2.1.2 - index.php Multiple Cross-Site Scripting Vulnerabilities
EVA-Web 2.1.2 - index.php Multiple Cross-Site Scripting...
0.1AI Score
7.4AI Score
EVA-Web 2.1.2 - rubrique.php3?date Cross-Site Scripting
EVA-Web 2.1.2 - rubrique.php3?date Cross-Site...
-0.4AI Score
7.4AI Score
7.4AI Score
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks,...
1.5AI Score
EVA-Web <=2.1.2 vuln. Vuln. discovered by : r0t Date: 27 may 2006 vendor:http://spip-edu.edres74.net/ affected versions:2.1.2 and prior orginal advisory:http://pridels.blogspot.com/2006/05/eva-web-212-vuln.html Vuln. Description: EVA-Web contains a flaw that allows a remote cross site scripting....
0.6AI Score
Presentation: Bypassing client application protection techniques with notepad
Topic: Bypassing client application protection techniques Category: Protection bypass Affected products: CheckPoint VPN-1(TM) & FireWall-1(R) NG with Application Intelligence (R55) HFA 9 Microsoft Windows XP SP2 Agnitum Outpost Pro 2.1, 2.5 Tiny Firewall Pro v6.0.100 ZoneAlarm Pro with Web...
0.2AI Score
Bypassing client application protection techniques
Topic: Bypassing client application protection techniques Category: Protection bypass Affected products: CheckPoint VPN-1(TM) & FireWall-1(R) NG with Application Intelligence (R55) HFA 9 Microsoft Windows XP SP2 Agnitum Outpost Pro 2.1, 2.5 Tiny Firewall Pro v6.0.100 ZoneAlarm Pro with Web...
0.1AI Score
[Full-Disclosure] VieNuke VieBoard SQL Injection Vulnerability... again
<---> >>> http://www.securityfocus.com/bid/8967/info/ [...] Solution: VieNuke has released a patch: http://www.vienuke.com/VieBoard_Patch.zip [...] <---> >>> http://www.securityfocus.com/bid/8967/solution/ [...] VieNuke VieBoard 2.6 Beta 1: VieNuke Patch VieBoard_Patch...
0.9AI Score
6.9AI Score
0.002EPSS
7.4AI Score
0.7AI Score
[Full-Disclosure] SQL Injections in VieNuke
This ASP Portal/Forum, http://www.vienuke.com, is a nest of SQL Injections... ... the first thing I have tried http://www.vienuke.com/vie/viewtopic.asp?forumid=48&id=2736' :-) Full-Disclosure - We believe in it. Charter:...
1.6AI Score
ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 uses insufficiently random data to (1) generate session tokens for HSMs using the C rand function, or (2) generate certificates or keys using /dev/urandom instead of another source which blocks when the entropy.....
7.6AI Score
0.005EPSS
Forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to determine the real pathname of the server by requesting an invalid extension, which produces an error page that includes the...
6.7AI Score
0.008EPSS
Buffer overflows in forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 allows remote attackers to execute arbitrary code via long arguments to the parameters (1) Mode, (2) Certificate_File, (3) useExpiredCRLs, (4) listenLength, (5)...
7.8AI Score
0.206EPSS
Cross-site scripting (CSS) vulnerability in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to execute arbitrary code or display false information by including HTML or script in the certificate's description, which is executed when the certificate is...
7AI Score
0.019EPSS
Hi again, I just found an other Script injection issue in Xoops Private Message Box. http://xooped-site/pmlite.php?to_userid=[USER_ID_OF_TARGET]&msg_id=&image=fo o.gif'><script>alert("test");</script><img%20src='http://www.isecurelabs.com /images/barre.jpg&op=submit&theme=snow&sub...
-0.1AI Score
Xoops Private Message System Script injection
-- [ Xoops Private Message System Script injection ] -- Discovered on 29/01/2002 Vendor: http://xoops.sourceforge.net -- [ Overview ] -- XOOPS is an open source portal script written extensively in object-oriented PHP, backend with MySQL Database. Xoops offers for members a Private Message System.....
0.4AI Score
NMRC Advisory - Multiple Valicert Problems
Information Anarchy 2K01 * Nomad Mobile Research Centre A D V I S O R Y www.nmrc.org Cyberiad [[email protected]] Phuzzy L0gic [[email protected]] ...
-0.1AI Score
-0.1AI Score
-0.3AI Score
Michael Sandrof IrcII 4.4-7 - Remote Buffer Overflow
Michael Sandrof IrcII 4.4-7 - Remote Buffer...
0.7AI Score
7.4AI Score
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-97:06 Security Advisory FreeBSD, Inc. Topic: Pentium processors have flaw allowing unpriviledged crashes Category: core Module: kern Announced: 1997-12-09 Affects: FreeBSD...
-0.1AI Score