725 matches found
Seo4SMF for SMF forums Multiple Vulnerabilities
Exploit for unknown platform in category web applications =============================================== Seo4SMF for SMF forums Multiple Vulnerabilities =============================================== 1 Inyection SQL Linea 50 al 63 $query = dbquery" SELECT m.IDTOPIC, m.subject ,b.IDBOARD, b.name...
Seo4SMF for SMF forums - Multiple Vulnerabilities
Seo4SMF for SMF forums - Multiple Vulnerabilities 1 Inyection SQL Linea 50 al 63 $query = dbquery" SELECT m.IDTOPIC, m.subject ,b.IDBOARD, b.name FROM $dbprefixmessages AS m, $dbprefixboards AS b WHERE m.IDTOPIC = $topic AND m.IDBOARD = b.IDBOARD IMIT 1", FILE, LINE;...
Viart shopping cart 3.5 - Multiple Vulnerabilities
=============================================================== !vuln ViArt Shopping Cart v3.5 is prone to multiple remote vulnerabilities. Earlier versions may also be affected. ===============================================================...
ViArt Shopping Cart 3.5 XSS / Info Disclosure
============================================================== ViArt Shopping Cart v3.5 is multiple remote vulnerbalities maybe anathor version ============================================================== --==Author==-- : Florinu --==E-mail==-- : [email protected] -dont add to your messenger ...
ViArt Shopping Cart 3.5 Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ======================================================= ViArt Shopping Cart 3.5 Multiple Remote Vulnerabilities ======================================================= =============================================================== !vuln...
ViArt Shopping Cart 3.5 Multiple Remote Vulnerabilities
No description provided by source. ============================================================== ViArt Shopping Cart v3.5 is multiple remote vulnerbalities maybe anathor version ============================================================== --==Author==-- : Florinu --==E-mail==-- :...
Viart shopping cart 3.5 - Multiple Vulnerabilities
Viart shopping cart 3.5 - Multiple Vulnerabilities =============================================================== !vuln ViArt Shopping Cart v3.5 is prone to multiple remote vulnerabilities. Earlier versions may also be affected. ===============================================================...
ViArt Shopping Cart 3.5 XSS / Path Disclosure
=============================================================== !vuln ViArt Shopping Cart v3.5 is prone to multiple remote vulnerabilities. Earlier versions may also be affected. ===============================================================...
ViArt Shopping Cart v3.5 Multiple Remote Vulnerabilities
=============================================================== !vuln ViArt Shopping Cart v3.5 is prone to multiple remote vulnerabilities. Earlier versions may also be affected. ===============================================================...
Opera Web Browser Multiple Vulnerabilities - Dec08 (Windows)
The host is installed with Opera web browser and is prone to multiple Vulnerabilities. OpenVAS Vulnerability Test $Id: secpodoperamultvulndec08win.nasl 6519 2017-07-04 14:08:14Z cfischer $ Opera Web Browser Multiple Vulnerabilities - Dec08 Windows Authors: Chandan S Copyright: Copyright c 2008...
Opera Web Browser Multiple XSS Vulnerability (Windows)
The host is installed with Opera web browser and is prone to multiple Cross Site Scripting XSS Vulnerability. OpenVAS Vulnerability Test $Id: gboperamultvulnoct08win.nasl 6519 2017-07-04 14:08:14Z cfischer $ Opera Web Browser Multiple XSS Vulnerability Windows Authors: Chandan S Copyright:...
Admbook PHP Code Injection Flaw
The remote web server contains a PHP script that allows arbitrary code injection. Description : The remote host is running AdmBook, a PHP-based guestbook. The remote version of this software is prone to remote PHP code injection due to a lack of sanitization of the HTTP header 'X-Forwarded-For'...
Gentoo Security Advisory GLSA 200603-22 (php)
The remote host is missing updates announced in advisory GLSA 200603-22. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
selfgen-xss.txt
Release Date: August 23 2008 Platform: Web Severity: Important Summary: Bam host a large number of websites for student unions throughout the uk using a custom cms system called Self Generate. This vulnerability affects all of these websites and allows attackers to inject arbitrary html/javascrip...
CVE-2008-3700
Kayako SupportSuite
SA-2008-001 - Devel - Cross site scripting
The devel module contains many useful developer functions, such as a query log and the display of variables. The contents of the variable table is not escaped prior to display. Should an unprivileged user be able to control the contents of a site variable, it would be possible to inject arbitrary...
Microsoft DebugView Dbgv.sys内核模块本地权限升漏洞
BUGTRAQ ID: 26359 CVECAN ID: CVE-2007-4223 DebugView允许用户监控本地系统或可通过TCP/IP访问的网络中计算机上的调试输出。 DebugView所加载的Dbgv.sys内核模块中的功能可能允许将用户提供的数据拷贝到内核中可控的地址,这样恶意用户就可以向运行的内核中注入任意代码。 如果要利用这个漏洞,管理员必须加载DebugView,这样才会将Dbgv.sys驱动加载到内核,然后所有用户在系统重启之前都可以访问有漏洞的内核模块。 Microsoft DebugView 4.64...
SA-2007-027 - Token - Cross site scripting
Several server variables are not escaped consistently. When a malicious user is able to enter comments and then entice a victim to visit a webpage, arbitrary HTML and script code can be injected and executed in the context of the victim's session on the targeted website. For example, a malicious...
Shop-Script FREE <= 2.0 Remote Command Execution Exploit
Exploit for unknown platform in category web applications ======================================================== Shop-Script FREE = 2.0 Remote Command Execution Exploit ======================================================== ?php Shop-Script FREE = 2.0 Remote Command Execution Exploit by InATe...
CVE-2007-4077
Multiple cross-site scripting XSS vulnerabilities in AlstraSoft Video Share Enterprise allow remote attackers to inject arbitrary web script or HTML via the 1 msg, 2 page, 3 viewkey, or 4 viewtype parameter to a viewvideo.php; the 5 next parameter to b signup.php; the 6 searchid parameter to c...