5327 matches found
LizardCart.txt
New eVuln Advisory: Lizard Cart CMS SQL Injection Vulnerability --------------------Summary---------------- Software: Lizard Cart CMS Sowtware's Web Site: http://sourceforge.net/projects/lizardcart Versions: 1.04 Critical Level: Dangerous Type: SQL Injection Class: Remote Status: Unpatched Exploi...
Primo Cart SQL inj.
Primo Cart SQL inj. Vuln. discovered by : r0t Date: 2 jan. 2006 orginal advisory:http://pridels.blogspot.com/2006/01/primo-cart-sql-inj.html vendor:www.primoplace.com/primo-cart.htm affected version:1.0 and prior Product Description: Primo Cart is a fully customizable turnkey shopping cart soluti...
[SA18281] MyBB Multiple Vulnerabilities
TITLE: MyBB Multiple Vulnerabilities SECUNIA ADVISORY ID: SA18281 VERIFY ADVISORY: http://secunia.com/advisories/18281/ CRITICAL: Moderately critical IMPACT: Unknown, Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: MyBB formerly MyBulletinBoard 1.x...
CVE-2005-4805
Unspecified vulnerability in Sun Java System Application Server 7 Standard and Platform Edition 6 and earlier, and 2004Q2 Standard and Platform Edition Update 2 and earlier, allows remote attackers to obtain the source code for Java Server pages JSP via unknown vectors...
OoApp Guestbook XSS vuln.
OoApp Guestbook XSS vuln. Vuln. discovered by : r0t Date: 30 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/ooapp-guestbook-xss-vuln.html vendor:http://www.ooapp.com/ affected version:2.1 and prior Product Description: This is a free php based guestbook for your web site. Easy to...
Kayako SupportSuite multiple vuln.
Kayako SupportSuite multiple vuln. Vuln. discovered by : r0t Date: 30 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/kayako-supportsuite-multiple-vuln.html vendor:http://www.kayako.com/supportsuite.php affected version: v3.00.26 and prior Product Description: Kayako SupportSuite...
CVE-2005-4550
The PORTAL schema in Oracle Application Server OracleAS Discussion Forum Portlet allows remote attackers to obtain the source code for arbitrary JSP and other files via a dfnextpage parameter with a trailing null byte %00...
CVE-2005-4550
CVE-2005-4550 affects the PORTAL schema in Oracle Application Server (OracleAS) Discussion Forum Portlet. The vulnerability allows remote attackers to obtain the source code for arbitrary JSP and other files via a df_next_page parameter that can contain a trailing null byte (%00). This is caused ...
oracle Application server discussion forum portlet - Multiple Vulnerabilities
oracle Application server discussion forum portlet - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/16048/info Oracle Application Server Discussion Forum Portlet is affected by multiple remote vulnerabilities. The following specific vulnerabilities were identified: The...
oracle Application server discussion forum portlet - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/16048/info Oracle Application Server Discussion Forum Portlet is affected by multiple remote vulnerabilities. The following specific vulnerabilities were identified: The application is prone to a cross-site scripting vulnerability. Discussion Forum Portle...
CVE-2005-4473
Unspecified vulnerability in Macromedia JRun 4 web server JWS allows remote attackers to view web application source code via "a malformed URL."...
Macromedia JRun Application Server platform multiple vulnerabilities
Source code leak, Web server DoS...
CVE-2005-4473
Unspecified vulnerability in Macromedia JRun 4 web server JWS allows remote attackers to view web application source code via "a malformed URL."...
CVE-2005-4473
CVE-2005-4473 concerns Macromedia JRun 4 web server (JWS). The public description states an unspecified vulnerability that enables remote attackers to view web application source code via a malformed URL. This is the only concrete detail provided across linked records; no version-specific impact,...
WebDB SQL inj vuln.
WebDB SQL inj vuln. Vuln. discovered by : r0t Date: 22 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/webdb-sql-inj-vuln.html vendor:http://www.loissoftware.com affected version:1.1 and prior Product Description: WebDB is the totally generic, instant online database system - It is...
WANDSOFT e-SEARCH XSS vuln.
WANDSOFT e-SEARCH XSS vuln. Vuln. discovered by : r0t Date: 22 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/wandsoft-e-search-xss-vuln.html vendor:http://www.wandsoft.com/products/ affected version:latest and its also used as search module for WANDSOFT e-Suite 4 and prior. Produ...
SiteEnable XSS vuln.
SiteEnable XSS vuln. Vuln. discovered by : r0t Date: 21 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/siteenable-xss-vuln.html vendor:http://www.siteenable.com/ affected version:3.3 and prior Product Description: SiteEnable is an open source Web application that combines content...
OpenCms XSS vuln.
OpenCms XSS vuln. Vuln. discovered by : r0t Date: 21 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/opencms-xss-vuln.html vendor:http://www.opencms.org/ affected version:6.0.3 and prior Product Description: OpenCms is a professional level Open Source Website Content Management...
Speartek XSS vuln.
Speartek XSS vuln. Vuln. discovered by : r0t Date: 21 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/speartek-xss-vuln.html vednor:http://www.speartek.com affected version:6.0 and prior Product Description: SpearTek's advanced solutions help you optimize the Internet channel to fu...
RAMSite R|1 CMS XSS vuln.
RAMSite R|1 CMS XSS vuln. Vuln. discovered by : r0t Date: 21 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/ramsite-r1-cms-xss-vuln.html vendor:http://ramsiter1.imikalsen.com/ affected version:1.0 and prior Product Description: The RAMSite R|1 CMS is an advanced, yet easy to use a...