222 matches found
PR10-02: Various XSS and information disclosure flaws within 3Com* iMC (Intelligent Management Center)
PR10-02: Various XSS and information disclosure flaws within 3Com iMC Intelligent Management Center On the 12th April 2010 Hewlett Packard completed its acquisition of 3Com Vulnerability found: 29th January 2010 Vendor informed: 1st February 2010 Vulnerability fixed: 13th May 2010 Severity:...
CVE-2010-2103
Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...
CVE-2010-2103
Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...
Cross site scripting
Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...
CVE-2010-2103
Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...
CVE-2010-2103
CVE-2010-2103: Apache Axis2/Java Axis2 administration console (axis2-admin/engagingglobally) is vulnerable to cross-site scripting via the modules parameter. Affected: Axis2/Java 1.4.1, 1.5.1 (and possibly other versions) used in SAP Business Objects 12, 3Com IMC, etc. The vulnerability is due to...
CVE-2010-2103
Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...
Apache Axis2 'xsd' Parameter Directory Traversal
The version of Apache Axis2 installed on the remote host is affected by a directory traversal vulnerability due to improper sanitization of user-supplied input to the 'xsd' parameter in activated services. An attacker can exploit this issue to read arbitrary files on the affected host...
Apache Axis2 Default Credentials
The installation of Apache Axis2 hosted on the remote web server uses a default set of credentials to control access to its administrative console. A remote attacker can exploit this to gain administrative control. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
Apache Axis2 Detection
The remote web server hosts Apache Axis2, an open source web services engine. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid46739; scriptversion"1.16"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"Apache Axis2...
Apache Axis2 crossite scripting
Crossite scripting via administration interface...
PR10-03: Authenticated Cross-Site Scripting (XSS) within the Apache Axis2 administration console
PR10-03: Authenticated XSS within the Apache Axis2 administration console Vulnerability found: 30th January 2010 Vendor informed: 1st February 2010 Vulnerability fixed: Severity: Medium Description: Axis2 is a web services/SOAP/WDSL engine, widely used within many commercial products Procheckup h...
Apache Axis2 < 1.5 'xsd' Parameter Directory Traversal
Binary data 5554.prm...
Apache Axis2 1.4.1 Local File Inclusion
Exploit Title: Apache Axis21.4.1 Local File Inclusion Vulnerability Date: 2010/5/24 Author: HC Software Link: http://ws.apache.org/axis2/download/141/download.cgi Version: Axis2 1.4.1 Tested on: Linux category: Webapps Code : 1.http://Domain Name/axis2/services/xxxxxxx?xsd=../conf/axis2.xml ex:...
Apache Axis2(1.4.1) Local File Inclusion Vulnerability
Exploit for php platform in category web applications ====================================================== Apache Axis21.4.1 Local File Inclusion Vulnerability ====================================================== Exploit Title: Apache Axis21.4.1 Local File Inclusion Vulnerability Date:...
Apache Axis2 1.4.1 - Local File Inclusion
Apache Axis2 1.4.1 - Local File Inclusion Exploit Title: Apache Axis21.4.1 Local File Inclusion Vulnerability Date: 2010/5/24 Author: HC Software Link: http://ws.apache.org/axis2/download/141/download.cgi Version: Axis2 1.4.1 Tested on: Linux category: Webapps Code : 1.http://Domain...
Apache Axis2 1.4.1 - Local File Inclusion
Exploit Title: Apache Axis21.4.1 Local File Inclusion Vulnerability Date: 2010/5/24 Author: HC Software Link: http://ws.apache.org/axis2/download/141/download.cgi Version: Axis2 1.4.1 Tested on: Linux category: Webapps Code : 1.http://Domain Name/axis2/services/xxxxxxx?xsd=../conf/axis2.xml ex:...
ProCheckUp Security Advisory 2010.3
PR10-03: Authenticated XSS within the Apache Axis2 administration console Vulnerability found: 30th January 2010 Vendor informed: 1st February 2010 Vulnerability fixed: Severity: Medium Description: Axis2 is a web services/SOAP/WDSL engine, widely used within many commercial products Procheckup h...
3Com* iMC (Intelligent Management Center) - Cross-Site Scripting Information Disclosure Flaws
3Com iMC Intelligent Management Center - Cross-Site Scripting Information Disclosure Flaws PR10-02: Various XSS and information disclosure flaws within 3Com iMC Intelligent Management Center On the 12th April 2010 Hewlett Packard completed its acquisition of 3Com Vulnerability found: 29th January...
Apache Axis2 Administration Console - (Authenticated) Cross-Site Scripting
Apache Axis2 Administration Console - Authenticated Cross-Site Scripting PR10-03 Authenticated Cross-Site Scripting Vulnerability XSS within Apache Axis2 administration console Source: http://www.procheckup.com/vulnerabilitymanager/vulnerabilities/pr10-03 Advisory publicly released: Friday, 21 Ma...