Xorux Lpar2RRD and Stor2RRD Operating System Command Injection Vulnerability

Bash is a shell command language interpreter written for the GNU Project and running on Unix-like operating systems by American software developer Brian J. Fox. It can read and execute commands from standard input devices or files. An operating system command injection vulnerability exists in Xor...

CloudBees Jenkins Email Extension Plugin Information Disclosure Vulnerability

CloudBees Jenkins is a set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . Email Extension Plugin is used in one of the email plugin . CloudBees...

PhpGedView 2.61 Multiple PHP Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/9368/info PhpGedView is prone to multiple file include vulnerabilities. The source of the issue is that a number of scripts that ship with the software permit remote users to influence require paths for various external...

PhpGedView 2.61 PHPInfo Information Disclosure Weakness

No description provided by source. source: http://www.securityfocus.com/bid/9371/info PhpGedView allows remote users to access information displayed by the phpinfo function. This may disclose sensitive information about the environment the software runs in. This issue is reported to affect...

PhpGedView 2.61 Search Script Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9369/info PhpGedView is prone to a cross-site scripting vulnerability. Remote attackers may create malicious links to this script that include hostile HTML and script code. If such a link was followed by a victim user, th...

PT-2010-1249 · Ssmtp +1 · Ssmtp +1

Name of the Vulnerable Software and Affected Versions: ssmtp versions 2.61 through 2.62 Description: The issue allows local users to cause an application exit via an e-mail message containing a long line that begins with a . dot character. This is considered a usability problem for senders of...

[SECURITY] Fedora 13 Update: ssmtp-2.61-15.fc13

A secure, effective and simple way of getting mail off a system to your mail hub. It contains no suid-binaries or other dangerous things - no mail spool to poke around in, and no daemons running in the background. Mail is simply forwarded to the configured mailhost. Extremely easy configuration...

Fedora 8 : ssmtp-2.61-11.6.fc8.1 (2008-8040)

Fix for CVE-2008-3962 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

[SECURITY] Fedora 9 Update: ssmtp-2.61-11.6.fc9.1

A secure, effective and simple way of getting mail off a system to your mail hub. It contains no suid-binaries or other dangerous things - no mail spool to poke around in, and no daemons running in the background. Mail is simply forwarded to the configured mailhost. Extremely easy configuration...

[SECURITY] Fedora 8 Update: ssmtp-2.61-11.6.fc8.1

A secure, effective and simple way of getting mail off a system to your mail hub. It contains no suid-binaries or other dangerous things - no mail spool to poke around in, and no daemons running in the background. Mail is simply forwarded to the configured mailhost. Extremely easy configuration...

Cross site scripting

Cross-site scripting XSS vulnerability in webevent.cgi in WebEvent 2.61 through 4.03 allows remote attackers to inject arbitrary web script or HTML via the cmd parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

Working Resources BadBlue 2.55 - MFCISAPICommand Remote Buffer Overflow (2)

Working Resources BadBlue 2.55 - MFCISAPICommand Remote Buffer Overflow 2 // source: https://www.securityfocus.com/bid/12673/info A remote buffer overflow vulnerability affects Working Resources BadBlue. This issue is due to a failure of the application to securely copy GET request parameters int...

BadBlue 2.5 Easy File Sharing Remote Buffer Overflow

No description provided by source. / BadBlue, Easy File Sharing Remote BOverflow Homepage: badblue.com Affected version: v2.5 2.60 and below not tested Patched version: v2.61 Link: badblue.com/bbs98.exe Date: 27 February 2005 Application Risk: Severely High Internet Risk: Low Dicovery Credits:...

CVE-2004-0031

PHPGEDVIEW 2.61 is affected by CVE-2004-0031: an unauthenticated remote attacker can trigger a direct HTTP request to editconfig.php to reinstall the software and change the administrator password. The description does not specify affected server versions beyond 2.61 in the initial document, nor ...

CVE-2004-0033

admin.php in PHPGEDVIEW 2.61 allows remote attackers to obtain sensitive information via an action parameter with a phpinfo command...

CVE-2004-0030

CVE-2004-0030 describes a PHP remote file inclusion in PHPGEDVIEW 2.61 via PGV_BASE_DIRECTORY in functions.php, authentication_index.php, and config_gedcom.php, enabling remote code execution by referencing a URL on a remote server. Root cause: unsafely using a user-controllable base directory pa...

PT-2004-1245 · Php · Phpgedview

Name of the Vulnerable Software and Affected Versions: PHPGEDVIEW version 2.61 Description: The issue allows remote attackers to execute arbitrary PHP code by modifying the PGV BASE DIRECTORY parameter to reference a URL on a remote web server that contains the code. This is possible due to a...