7610 matches found
pPIM Multiple Remote Vulnerabilities
pPIM is prone to multiple vulnerabilities, including two security-bypass issues, a cross-site scripting issue, and a file-upload issue. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holder...
Blogsa 1.0 - Widgets.aspx Cross-Site Scripting
Blogsa 1.0 - Widgets.aspx Cross-Site Scripting source: https://www.securityfocus.com/bid/33957/info Blogsa is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...
Mandrake Security Advisory MDVSA-2009:054 (nagios)
The remote host is missing an update to nagios announced via advisory MDVSA-2009:054. OpenVAS Vulnerability Test $Id: mdksa2009054.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:054 nagios Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft In...
CVE-2008-6295
Multiple cross-site scripting XSS vulnerabilities in Camera Life 2.6.2b8 allow remote attackers to inject arbitrary web script or HTML via the q parameter to 1 search.php and 2 rss.php; the query string after the image name in 3 photos/photo; the path parameter to 4 folder.php; page parameter and...
APC PowerChute Network Shutdown - HTTP Response Splitting Cross-Site Scripting
APC PowerChute Network Shutdown - HTTP Response Splitting Cross-Site Scripting source: https://www.securityfocus.com/bid/33924/info APC PowerChute Network Shutdown is prone to an HTTP-response-splitting vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize...
APC PowerChute Network Shutdown - HTTP Response Splitting / Cross-Site Scripting
source: https://www.securityfocus.com/bid/33924/info APC PowerChute Network Shutdown is prone to an HTTP-response-splitting vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...
IBM Websphere Application Server 6.17.0 - Administrative Console Cross-Site Scripting
IBM Websphere Application Server 6.17.0 - Administrative Console Cross-Site Scripting source: https://www.securityfocus.com/bid/34001/info IBM WebSphere Application Server WAS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker m...
CVE-2009-0737
Multiple cross-site scripting XSS vulnerabilities in the web-based installer config/index.php in MediaWiki 1.6 before 1.6.12, 1.12 before 1.12.4, and 1.13 before 1.13.4, when the installer is in active use, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
JOnAS 4.10.3 - select Error Page Cross-Site Scripting
JOnAS 4.10.3 - select Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/33912/info JOnAS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
Audacity Buffer Overflow Vulnerability - Windows
Audacity is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Audacity Buffer Overflow Vulnerability (Windows)
This host has Audacity installed and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodaudacitybofvulnwin.nasl 5055 2017-01-20 14:08:39Z teissa $ Audacity Buffer Overflow Vulnerability Windows Authors: Sharath S Copyright: Copyright c 2009 SecPod,...
Audacity Buffer Overflow Vulnerability - Linux
Audacity is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Safari < 3.2.2 Multiple Vulnerabilities
Binary data 4932.prm...
FreeBSD : codeigniter -- arbitrary script execution in the new Form Validation class (83574d5a-f828-11dd-9fdf-0050568452ac)
znirkel reports : The eval function in resetpostarray crashes when posting certain data. By passing in carefully-crafted input data, the eval function could also execute malicious PHP code. Note that CodeIgniter applications that either do not use the new Form Validation class or use the old...
Ignite Realtime OpenFire Multiple Vulnerabilities
This host is running OpenFire and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbopenfiremultvuln.nasl 5676 2017-03-22 16:29:37Z cfi $ Ignite Realtime OpenFire Multiple Vulnerabilities Authors: Sharath S Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Bitrix Site Manager 67 - Multiple Input Validation Vulnerabilities
Bitrix Site Manager 67 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/33689/info Bitrix Site Manager is prone to multiple input-validation vulnerabilities: - An authentication-bypass vulnerability - A cross-site scripting vulnerability An attacker may levera...
Slackware 12.2 / current : xdg-utils (SSA:2009-033-01)
New xdg-utils packages are available for Slackware 12.2 and -current to fix security issues. Applications that use /etc/mailcap could be tricked into running an arbitrary script through xdg-open, and a separate flaw in xdg-open could allow the execution of arbitrary commands embedded in untrusted...
ConPresso CMS 4.07 - Multiple Remote Vulnerabilities
ConPresso CMS 4.07 - Multiple Remote Vulnerabilities source: https://www.securityfocus.com/bid/33436/info ConPresso CMS is prone to multiple remote vulnerabilities: - A cross-site scripting vulnerability - A cross-domain scripting vulnerability - A session-fixation vulnerability An attacker can...
MoinMoin 1.8 - AttachFile.py Cross-Site Scripting
MoinMoin 1.8 - AttachFile.py Cross-Site Scripting source: https://www.securityfocus.com/bid/33365/info MoinMoin is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code...
MoinMoin 1.8 - 'AttachFile.py' Cross-Site Scripting
source: https://www.securityfocus.com/bid/33365/info MoinMoin is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...