EUVD-2006-0987

Malware in sbrugna...

EUVD-2006-3827

Malware in sbrugna...

EJ3 TOPo 2.2.178 Inc_header.PHP Cross-Site Scripting Vulnerability

No description provided by source...

CVE-2006-3833

index.php in EJ3 TOPo 2.2.178 allows remote attackers to overwrite existing entries and establish new passwords for the overwritten entries via a URL with a modified entry ID...

CVE-2006-3834

EJ3 TOPo 2.2.178 includes the password in cleartext in the ID field to index.php, which allows context-dependent attackers to obtain entry passwords via log files, referrers, or other vectors...

CVE-2006-3833

This CVE affects EJ3 TOPo 2.2.178 and concerns index.php handling in EJ3 TOPo where a modified entry ID in a URL allows remote attackers to overwrite existing entries and create new passwords for those entries. Root cause appears to be improper handling of entry IDs in the web interface, enabling...

CVE-2006-3834

EJ3 TOPo 2.2.178 is affected: the product stores the password in cleartext in the ID field used by index.php, enabling context-dependent attackers to obtain entry passwords via log files, referrers, or similar vectors. The available sources (NVD/NVD listing) describe this plaintext password expos...

CVE-2006-0984

Cross-site scripting XSS vulnerability in incheader.php in EJ3 TOPo 2.2.178 allows remote attackers to inject arbitrary web script or HTML via the gTopNombre parameter...

CVE-2006-0984

CVE-2006-0984 affects EJ3 TOPo version 2.2.178, where the script inc_header.php is vulnerable to cross-site scripting (XSS). The underlying issue is that the gTopNombre parameter is used in a way that allows remote attackers to inject arbitrary web script or HTML. The NVD entry lists an overall C...

EJ3 TOPo 2.2.178 - Inc_header.php Cross-Site Scripting

EJ3 TOPo 2.2.178 - Incheader.php Cross-Site Scripting source: https://www.securityfocus.com/bid/16879/info EJ3 TOPo is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

CVE-2005-1716

TOPo 2.2 2.2.178 stores data files in the data directory under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as client IP addresses...

CVE-2005-1716

TOPo 2.2 2.2.178 stores data files in the data directory under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as client IP addresses...

CVE-2005-1716

The CVE refers to TOPo 2.2 (2.2.178), where data files are stored in the data directory under the web document root with insufficient access control. This could allow remote attackers to view sensitive information, such as client IP addresses. Connected documents (e.g., Red Hat advisory and CVE l...

[SA15325] TOPo Multiple Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...