Lucene search
K

222 matches found

securityvulns
securityvulns
added 2010/05/28 12:0 a.m.135 views

PR10-02: Various XSS and information disclosure flaws within 3Com* iMC (Intelligent Management Center)

PR10-02: Various XSS and information disclosure flaws within 3Com iMC Intelligent Management Center On the 12th April 2010 Hewlett Packard completed its acquisition of 3Com Vulnerability found: 29th January 2010 Vendor informed: 1st February 2010 Vulnerability fixed: 13th May 2010 Severity:...

7AI score
Exploits0
NVD
NVD
added 2010/05/27 10:30 p.m.27 views

CVE-2010-2103

Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...

4.3CVSS8AI score0.34927EPSS
Exploits1References10
UbuntuCve
UbuntuCve
added 2010/05/27 10:30 p.m.59 views

CVE-2010-2103

Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...

4.3CVSS7.3AI score0.34927EPSS
Exploits1References1
Prion
Prion
added 2010/05/27 10:30 p.m.27 views

Cross site scripting

Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...

4.3CVSS7.7AI score0.34927EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2010/05/27 10:0 p.m.30 views

CVE-2010-2103

Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...

7AI score0.34927EPSS
Exploits1References10
CVE
CVE
added 2010/05/27 10:0 p.m.208 views

CVE-2010-2103

CVE-2010-2103: Apache Axis2/Java Axis2 administration console (axis2-admin/engagingglobally) is vulnerable to cross-site scripting via the modules parameter. Affected: Axis2/Java 1.4.1, 1.5.1 (and possibly other versions) used in SAP Business Objects 12, 3Com IMC, etc. The vulnerability is due to...

4.3CVSS6.8AI score0.34927EPSS
Exploits1References10Affected Software1
Debian CVE
Debian CVE
added 2010/05/27 10:0 p.m.42 views

CVE-2010-2103

Cross-site scripting XSS vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary w...

4.3CVSS8.1AI score0.34927EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2010/05/27 12:0 a.m.95 views

Apache Axis2 'xsd' Parameter Directory Traversal

The version of Apache Axis2 installed on the remote host is affected by a directory traversal vulnerability due to improper sanitization of user-supplied input to the 'xsd' parameter in activated services. An attacker can exploit this issue to read arbitrary files on the affected host...

5.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2010/05/27 12:0 a.m.104 views

Apache Axis2 Default Credentials

The installation of Apache Axis2 hosted on the remote web server uses a default set of credentials to control access to its administrative console. A remote attacker can exploit this to gain administrative control. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

10CVSS8.2AI score0.89871EPSS
Exploits17References4
Tenable Nessus
Tenable Nessus
added 2010/05/27 12:0 a.m.49 views

Apache Axis2 Detection

The remote web server hosts Apache Axis2, an open source web services engine. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid46739; scriptversion"1.16"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"Apache Axis2...

5.5AI score
Exploits0References1
securityvulns
securityvulns
added 2010/05/26 12:0 a.m.24 views

Apache Axis2 crossite scripting

Crossite scripting via administration interface...

2.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2010/05/26 12:0 a.m.46 views

PR10-03: Authenticated Cross-Site Scripting (XSS) within the Apache Axis2 administration console

PR10-03: Authenticated XSS within the Apache Axis2 administration console Vulnerability found: 30th January 2010 Vendor informed: 1st February 2010 Vulnerability fixed: Severity: Medium Description: Axis2 is a web services/SOAP/WDSL engine, widely used within many commercial products Procheckup h...

6.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/05/26 12:0 a.m.14 views

Apache Axis2 < 1.5 'xsd' Parameter Directory Traversal

Binary data 5554.prm...

7.3AI score
Exploits0References1
Packet Storm
Packet Storm
added 2010/05/25 12:0 a.m.32 views

Apache Axis2 1.4.1 Local File Inclusion

Exploit Title: Apache Axis21.4.1 Local File Inclusion Vulnerability Date: 2010/5/24 Author: HC Software Link: http://ws.apache.org/axis2/download/141/download.cgi Version: Axis2 1.4.1 Tested on: Linux category: Webapps Code : 1.http://Domain Name/axis2/services/xxxxxxx?xsd=../conf/axis2.xml ex:...

7.4AI score
Exploits0
0day.today
0day.today
added 2010/05/24 12:0 a.m.50 views

Apache Axis2(1.4.1) Local File Inclusion Vulnerability

Exploit for php platform in category web applications ====================================================== Apache Axis21.4.1 Local File Inclusion Vulnerability ====================================================== Exploit Title: Apache Axis21.4.1 Local File Inclusion Vulnerability Date:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/05/24 12:0 a.m.12 views

Apache Axis2 1.4.1 - Local File Inclusion

Apache Axis2 1.4.1 - Local File Inclusion Exploit Title: Apache Axis21.4.1 Local File Inclusion Vulnerability Date: 2010/5/24 Author: HC Software Link: http://ws.apache.org/axis2/download/141/download.cgi Version: Axis2 1.4.1 Tested on: Linux category: Webapps Code : 1.http://Domain...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/05/24 12:0 a.m.60 views

Apache Axis2 1.4.1 - Local File Inclusion

Exploit Title: Apache Axis21.4.1 Local File Inclusion Vulnerability Date: 2010/5/24 Author: HC Software Link: http://ws.apache.org/axis2/download/141/download.cgi Version: Axis2 1.4.1 Tested on: Linux category: Webapps Code : 1.http://Domain Name/axis2/services/xxxxxxx?xsd=../conf/axis2.xml ex:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2010/05/22 12:0 a.m.32 views

ProCheckUp Security Advisory 2010.3

PR10-03: Authenticated XSS within the Apache Axis2 administration console Vulnerability found: 30th January 2010 Vendor informed: 1st February 2010 Vulnerability fixed: Severity: Medium Description: Axis2 is a web services/SOAP/WDSL engine, widely used within many commercial products Procheckup h...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2010/05/21 12:0 a.m.36 views

3Com* iMC (Intelligent Management Center) - Cross-Site Scripting Information Disclosure Flaws

3Com iMC Intelligent Management Center - Cross-Site Scripting Information Disclosure Flaws PR10-02: Various XSS and information disclosure flaws within 3Com iMC Intelligent Management Center On the 12th April 2010 Hewlett Packard completed its acquisition of 3Com Vulnerability found: 29th January...

6.7AI score
Exploits0
exploitpack
exploitpack
added 2010/05/21 12:0 a.m.22 views

Apache Axis2 Administration Console - (Authenticated) Cross-Site Scripting

Apache Axis2 Administration Console - Authenticated Cross-Site Scripting PR10-03 Authenticated Cross-Site Scripting Vulnerability XSS within Apache Axis2 administration console Source: http://www.procheckup.com/vulnerabilitymanager/vulnerabilities/pr10-03 Advisory publicly released: Friday, 21 Ma...

0.4AI score
Exploits0
Rows per page
Query Builder