AWStats 6.0 6.2 - configdir Remote Command Execution (Perl)

AWStats 6.0 6.2 - configdir Remote Command Execution Perl !/usr/bin/perl ---GHC--------------------------------- Remote command execution exploit Product: Advanced Web Statistics 6.0 - 6.2 URL:http://awstats.sourceforge.net Greets & respects to our friends: 1dt.w0lf and all rst.void.ru Special...

Advanced Guestbook 2.2/2.3 - User-Agent HTML Injection

source: https://www.securityfocus.com/bid/14391/info Advanced Guestbook is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code...

CVE-2004-1213

Cross-site scripting XSS vulnerability in index.php in Advanced Guestbook 2.3.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the entry parameter...

CVE-2004-1213

Cross-site scripting XSS vulnerability in index.php in Advanced Guestbook 2.3.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the entry parameter...

CVE-2004-1213

The CVE-2004-1213 entry concerns an XSS vulnerability in the index.php of Advanced Guestbook versions 2.3.1, 2.2, and potentially other releases. The issue allows remote attackers to inject arbitrary web scripts or HTML via the entry parameter. The description provided with the CVE states the vul...

Advanced Guestbook

There's a XSS in Advanced Guestbook 2.3.1 For example: index.php?entry=scriptalertdocument.cookie/script greetings, -- Emile van Elen...

security flaw

Unknown vulnerability in the Linux kernel before 2.4.23, on the AMD AMD64 and Intel EM64T architectures, associated with "setting up TSS limits," allows local users to cause a denial of service crash and possibly execute arbitrary code...

Advanced Guestbook 2.22.3 - Cross-Site Scripting

Advanced Guestbook 2.22.3 - Cross-Site Scripting source: https://www.securityfocus.com/bid/11798/info It is reported that Advanced Guestbook is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This...

Advanced Guestbook 2.2/2.3 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/11798/info It is reported that Advanced Guestbook is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a...

Advanced Poll info.php Information Disclosure

Binary data 1580.prm...

Advanced Poll info.php Information Disclosure

Binary data 1581.prm...

RHEL 2.1 : sendmail (RHSA-2002:259)

The sendmail packages shipped with Red Hat Linux Advanced Server have a security bug if sendmail is configured to use smrsh. This security errata release fixes the problem. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 SMRSH the SendMail Restricted SHell is a /bin/sh...

RHEL 2.1 : vim (RHSA-2002:302)

Updated VIM packages are available for Red Hat Linux Advanced Server. These updates resolve a security issue when opening a specially crafted text file. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 VIM VIsual editor iMproved is a version of the vi editor. VIM allows a use...

RHEL 2.1 : nss_ldap (RHSA-2002:180)

Updated nssldap packages are now available for Red Hat Linux Advanced Server 2.1. These updates fix a potential buffer overflow which can occur when nssldap is set to configure itself using information stored in DNS as well as a format string bug in logging functions used in pamldap. Updated 09 J...

RHEL 2.1 : ypserv (RHSA-2002:224)

Updated ypserv packages which fix a memory leak are now available for Red Hat Linux Advanced Server. Updated 08 Jan 2003 Added fixed packages for the Itanium IA64 architecture. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 ypserv is an NIS authentication server. ypserv...

RHEL 2.1 : ethereal (RHSA-2002:291)

Updated Ethereal packages are available which fix various security issues. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 Ethereal is a package designed for monitoring network traffic on your system. Several security issues have been found in the Ethereal packages distribut...

RHEL 2.1 : mod_ssl (RHSA-2002:136)

Updated modssl packages are now available for Red Hat Advanced Server. These updates incorporate a fix for an incorrect bounds check in versions of modssl up to and including version 2.8.9. The modssl module provides strong cryptography for the Apache Web server via the Secure Sockets Layer SSL a...

RHEL 2.1 : php (RHSA-2002:129)

PHP versions earlier than 4.1.0 contain a vulnerability that could allow arbitrary commands to be executed. updated 22 Aug 2002 The initial set of errata packages contained an incorrect set of dependencies. This meant that a number of packages would need to be installed before php that were not...

CVE-2004-1952

SQL injection vulnerability in Advanced Guestbook 2.2 allows remote attackers to execute arbitrary SQL commands and gain privileges via the password...

Advanced Guestbook 2.2 - Password SQL Injection

Advanced Guestbook 2.2 - Password SQL Injection source: https://www.securityfocus.com/bid/10209/info It has been reported that Advanced Guestbook is prone to a SQL injection vulnerability that could allow an attacker to gain administrative access to the application. This issue is reported to exis...