PrestaShop 1.1 admin/login.php PATH_INFO Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/32689/info PrestaShop is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

Anwsion 1.1 Beta 2盲注漏洞一个

简要描述： 有段时间没研究你们程序了，今天看了下，发现了一个盲注. 详细说明： 该注入存在个人主页上， 由于做了url伪静态，但是还是可以注入 http://wenda.anwsion.com/people/296?notificationid-45654 漏洞证明：...

Nemesis Player (NSP) Local Denial of Service (DoS) Vulnerability

Exploit for unknown platform in category dos / poc ================================================================ Nemesis Player NSP Local Denial of Service DoS Vulnerability ================================================================ !/usr/bin/perl Exploit Title: Nemesis Player NSP Local...

ProjectCMS 1.1b Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications =============================================== ProjectCMS 1.1b Multiple Remote Vulnerabilities =============================================== ---------------------------------------------------------------------------------------------- ...

projectCMS 1.1b - Multiple Vulnerabilities

|| || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ---------------------------------------------------------------------------------------------- | MULTPLE REMO...

CVE-2008-5791

Multiple unspecified vulnerabilities in PrestaShop e-Commerce Solution before 1.1 Beta 2 aka 1.1.0.1 have unknown impact and attack vectors, related to the 1 bankwire module, 2 cheque module, and other components...

Mozilla Firefox/SeaMonkey UTF-8基于栈的缓冲区溢出漏洞

BUGTRAQ ID: 31397 CVE ID：CVE-2008-0016 CNCVE ID：CNCVE-20080016 Mozilla Firefox/SeaMonkey是一款开放源代码的WEB浏览器和WEB应用套件。 Mozilla Firefox/SeaMonkey处理UTF-8 URL存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 Mozilla...

CVE-2008-4176

SQL injection vulnerability in izle.asp in FoT Video scripti 1.1 beta allows remote attackers to execute arbitrary SQL commands via the oyun parameter...

CVE-2007-6141

Cross-site scripting XSS vulnerability in vBTube.php in vBTube 1.1 Beta allows remote attackers to inject arbitrary web script or HTML via the search parameter...

CVE-2007-6141

Cross-site scripting XSS vulnerability in vBTube.php in vBTube 1.1 Beta allows remote attackers to inject arbitrary web script or HTML via the search parameter...

CVE-2007-6141

The CVE-2007-6141 entry documents a Cross-site scripting (XSS) vulnerability in vbTube.php of vBTube 1.1 Beta, where an attacker can inject arbitrary script/HTML via the search parameter. Affected component: vbTube.php in vBTube 1.1 Beta. Root cause: insufficient input sanitization on the search ...

Sun Java Web Server 1.1 Beta - Viewable .jhtml Source

Sun Java Web Server 1.1 Beta - Viewable .jhtml Source source: https://www.securityfocus.com/bid/1891/info A vulnerability exists in Sun Microsystems' JavaWebServer for Win32, version 1.1Beta. JavaWebServer is a Java-oriented web application development platform. If a URL is submitted requesting a...