94 matches found
AContent 1.0 - Cross-Site Scripting / HTML Injection
source: https://www.securityfocus.com/bid/43238/info AContent is prone to multiple cross-site scripting vulnerabilities and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...
Rumba XML 2.4 - index.php Multiple HTML Injection Vulnerabilities
Rumba XML 2.4 - index.php Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/42914/info Rumba XML is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated...
ArtGK CMS - Cross-Site Scripting / HTML Injection
source: https://www.securityfocus.com/bid/42923/info ArtGK CMS is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...
PHPAuthent 0.2.1 - useradd.php Multiple HTML Injection Vulnerabilities
PHPAuthent 0.2.1 - useradd.php Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/38908/info phpAuthent is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HT...
Hijacking Opera's Native Page using malicious RSS payloads
Hijacking Opera's Native Page using malicious RSS payloads ---------------------------------------------------------------------------- --------- For complete post with images, please visit - http://securethoughts.com/2009/10/hijacking-operas-native-page-using-malicio us-rss-payloads/ Well, this...
IBM Tivoli Identity Manager 5.0.5 - User Profile HTML Injection
IBM Tivoli Identity Manager 5.0.5 - User Profile HTML Injection source: https://www.securityfocus.com/bid/36293/info IBM Tivoli Identity Manager is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically...
Many Sites Using Flash Cookies to Silently Track Users
A huge number of Web sites are employing a little-known tracking mechanism to gather information on visitors and are failing to disclose the practice in their privacy policies, according to a new paper from a group of university researchers. The technique employs cookies generated by the Adobe...
lt-thumb-overflow.txt
2007/05/19 ---------------------------------------------------------------------------------------------------- LeadTools Thumbnail Browser Control lttmb14E.ocx v. 14.5.0.44 Remote Stack-Based Buffer Overflow url: http://www.leadtools.com/ peice: eheheh, take a look at thier site : author: shinna...
LeadTools Thumbnail Browser Control - lttmb14E.ocx Remote Buffer Overflow
LeadTools Thumbnail Browser Control - lttmb14E.ocx Remote Buffer Overflow 2007/05/19 ---------------------------------------------------------------------------------------------------- LeadTools Thumbnail Browser Control lttmb14E.ocx v. 14.5.0.44 Remote Stack-Based Buffer Overflow url:...
LeadTools Thumbnail Browser Control (lttmb14E.ocx) Remote BoF Exploit
Exploit for unknown platform in category remote exploits ===================================================================== LeadTools Thumbnail Browser Control lttmb14E.ocx Remote BoF Exploit ===================================================================== 2007/05/19...
Information disclosure
Unspecified vulnerability in the EmbeddedWB Web Browser ActiveX control allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-1190
Unspecified vulnerability in the EmbeddedWB Web Browser ActiveX control allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Microsoft Windows Media Player - Plugin Overflow (MS06-006) (3)
Microsoft Windows Media Player - Plugin Overflow MS06-006 3 !/usr/bin/perl wmp-profiteer.pl Exploiting 'Non-Critical' Media Player Vulnerabilities for Fun and Profit By Matthew Murphy [email protected] It's come to my attention that the HTML versions of the exploit posted on several sites have...
MS Windows Media Player Plugin Overflow Exploit (MS06-006)(3)
No description provided by source. !/usr/bin/perl wmp-profiteer.pl Exploiting 'Non-Critical' Media Player Vulnerabilities for Fun and Profit By Matthew Murphy [email protected] It's come to my attention that the HTML versions of the exploit posted on several sites have become mangled. Notables...