Lucene search
K

33 matches found

Prion
Prion
added 2012/09/15 5:55 p.m.21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in index.php in Flogr 2.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the PATHINFO or 2 an arbitrary parameter...

4.3CVSS6.1AI score0.01631EPSS
Exploits3References5Affected Software1
Cvelist
Cvelist
added 2012/09/15 5:0 p.m.32 views

CVE-2012-4336

Multiple cross-site scripting XSS vulnerabilities in index.php in Flogr 2.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the PATHINFO or 2 an arbitrary parameter...

5.7AI score0.01631EPSS
Exploits3References5
Prion
Prion
added 2011/05/13 5:5 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in component handlers in the javatemplates aka Java Templates plugin in Apache Struts 2.x before 2.2.3 allow remote attackers to inject arbitrary web script or HTML via an arbitrary parameter value to a .action URI, related to improper handling of...

4.3CVSS6.1AI score0.06127EPSS
Exploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/12/02 12:0 a.m.36 views

SuSE 11 / 11.1 Security Update : postgresql (SAT Patch Numbers 2457 / 2458)

This update of postgresql fixes several minor security vulnerabilities : - Postgresql does not properly check privileges during certain RESET ALL operations, which allows remote authenticated users to remove arbitrary parameter settings. CVE-2010-1975 - The PL/Tcl implementation in postgresql loa...

8.5CVSS8.7AI score0.06902EPSS
Exploits4References12
UbuntuCve
UbuntuCve
added 2009/12/24 4:30 p.m.15 views

CVE-2009-4416

Cross-site scripting XSS vulnerability in login.php in phpGroupWare 0.9.16.12, and possibly other versions before 0.9.16.014, allows remote attackers to inject arbitrary web script or HTML via an arbitrary parameter whose name begins with the "phpgw" sequence...

4.3CVSS6AI score0.02265EPSS
Exploits1References1
NVD
NVD
added 2009/12/24 4:30 p.m.16 views

CVE-2009-4416

Cross-site scripting XSS vulnerability in login.php in phpGroupWare 0.9.16.12, and possibly other versions before 0.9.16.014, allows remote attackers to inject arbitrary web script or HTML via an arbitrary parameter whose name begins with the "phpgw" sequence...

4.3CVSS5.7AI score0.02265EPSS
Exploits1References9
seebug.org
seebug.org
added 2008/11/22 12:0 a.m.16 views

Exodus 0.10 (uri handler) Arbitrary Parameter Injection Exploit

No description provided by source. !-- Exodus v0.10 remote code execution exploit by Nine:Situations:Group::strawdog This uses the "-l" argument to overwrite a file inside Microsoft Help and Support Center folders oh rgod... Firstly run netcat in listen mode to drop the vbscript shell run this...

7.1AI score
Exploits0
0day.today
0day.today
added 2008/11/20 12:0 a.m.59 views

Exodus 0.10 (uri handler) Arbitrary Parameter Injection Exploit

Exploit for unknown platform in category remote exploits =============================================================== Exodus 0.10 uri handler Arbitrary Parameter Injection Exploit =============================================================== testfile echo Dim wshShell testfile echo Set...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/11/20 12:0 a.m.16 views

Exodus 0.10 - URI Handler Arbitrary Parameter Injection (2)

Exodus 0.10 - URI Handler Arbitrary Parameter Injection 2 testfile echo Dim wshShell testfile echo Set wshShell = CreateObject"WScript.Shell" testfile echo wshShell.Run"cmd /c start calc" testfile echo ^ testfile nc -L -s 192.168.0.1 -p 5222 -vv click me click me milw0rm.com 2008-11-20...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2008/11/20 12:0 a.m.33 views

Exodus 0.10 - URI Handler Arbitrary Parameter Injection (2)

testfile echo Dim wshShell testfile echo Set wshShell = CreateObject"WScript.Shell" testfile echo wshShell.Run"cmd /c start calc" testfile echo ^ testfile nc -L -s 192.168.0.1 -p 5222 -vv click me click me milw0rm.com 2008-11-20...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/11/19 12:0 a.m.44 views

Exodus v0.10 uri handler arbitrary parameter injection

-------------------------------------------------------------------------------- Exodus v0.10 uri handler arbitrary parameter injection by Nine:Situations:Group::strawdog tested against IE8b/xpsp3 may not work against non-English systems because of an installation bug...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2008/11/17 12:0 a.m.32 views

Exodus 0.10 - URI Handler Arbitrary Parameter Injection (1)

-------------------------------------------------------------------------------- Exodus v0.10 uri handler arbitrary parameter injection by Nine:Situations:Group::strawdog tested against IE8b/xpsp3 may not work against non-English systems because of an installation bug...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/11/17 12:0 a.m.20 views

Exodus 0.10 (uri handler) Arbitrary Parameter Injection Vulnerability

Exploit for unknown platform in category remote exploits ===================================================================== Exodus 0.10 uri handler Arbitrary Parameter Injection Vulnerability =====================================================================...

7.1AI score
Exploits0
Rows per page
Query Builder