Lucene search
K

134 matches found

0day.today
0day.today
added 2013/03/19 12:0 a.m.44 views

ViewGit 0.0.6 - Multiple XSS Vulnerabilities

ViewGit "is a git web repository viewer that aims to be easy to set up and upgrade, light on dependencies, and comfortable to use." http://viewgit.fealdia.org/. ViewGit contains multiple persistent arbitrary script injection XSS vulnerabilities in its "Shortlog" and "Heads" tables. These...

3.7CVSS6.5AI score0.03955EPSS
Exploits6
Exploit DB
Exploit DB
added 2013/03/19 12:0 a.m.40 views

ViewGit 0.0.6 - Multiple Cross-Site Scripting Vulnerabilities

Vulnerability Report Author: Matthew R. Bucci Date: 18 March, 2013 CVE-2013-2294 Description of Vulnerability: ----------------------------- ViewGit "is a git web repository viewer that aims to be easy to set up and upgrade, light on dependencies, and comfortable to use."...

6.1CVSS6.3AI score0.03955EPSS
Exploits6
securityvulns
securityvulns
added 2012/06/25 12:0 a.m.50 views

CORE-2012-0530 - Lattice Diamond Programmer Buffer Overflow

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Lattice Diamond Programmer Buffer Overflow 1. Advisory Information Title: Lattice Diamond Programmer Buffer Overflow Advisory ID: CORE-2012-0530 Advisory URL:...

6.8CVSS0.1AI score0.04101EPSS
Exploits6
Packet Storm
Packet Storm
added 2012/06/21 12:0 a.m.32 views

Commentics 2.0 Cross Site Request Forgery / Cross Site Scripting

Commentics 2.0 Vendor information: "Commentics is a free, advanced PHP comment script with many features. Professionally written and with open source code, its main aims are to be integrable, customizable and secure." Vendor URI: http://www.commentics.org/ Issues: Cross Site Scripting, Cross Site...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2011/06/15 12:0 a.m.57 views

Javascript Injection in Microsoft Lync 4.0.7577.0

============================================================================ Foofus.net Security Advisory: foofus-20110610 ============================================================================ Title: Javascript Injection in Microsoft Lync Version: 4.0.7577.0 Vendor: Microsoft Release Date:...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2011/06/13 12:0 a.m.36 views

Microsoft Lync 4.0.7577.0 Javascript Injection

============================================================================ Foofus.net Security Advisory: foofus-20110610 ============================================================================ Title: Javascript Injection in Microsoft Lync Version: 4.0.7577.0 Vendor: Microsoft Release Date:...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2011/01/20 5:54 a.m.10 views

Report : A global shift in cybercrime !!

The target of attacks has shifted from traditional infrastructure to mobile users and endpoint devices, according to a new report. Research from SpiderLabs found that malicious tools became more customized, automated and persistent in 2010. This trend combined with the popularity of mobile device...

6.9AI score
Exploits0
Atlassian
Atlassian
added 2009/03/19 4:27 p.m.18 views

Cache Plugin -Cross-site script error

Our e-security department found the error below after scanning the Cache Plugin: Number System/Location Defect Type Status R3 Cache Plugin Client-side Attacks: Cross-site Scripting Open Description Security Risk: It is possible to steal or manipulate customer session and cookies, which may be use...

0.2AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/03/19 4:27 p.m.20 views

Cache Plugin -Cross-site script error

Our e-security department found the error below after scanning the Cache Plugin: Number System/Location Defect Type Status R3 Cache Plugin Client-side Attacks: Cross-site Scripting Open Description Security Risk: It is possible to steal or manipulate customer session and cookies, which may be use...

0.2AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/03/19 4:23 p.m.22 views

Reporting Plugin- Cross-site scripting error

Our e-security found the following error for the Reporting plugin: Number System/Location Defect Type Status R2 Reporting Plugin Client-side Attacks: Cross-site Scripting Open Description Security Risk: It is possible to steal or manipulate customer session and cookies, which may be used to...

0.1AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/03/19 4:23 p.m.20 views

Reporting Plugin- Cross-site scripting error

Our e-security found the following error for the Reporting plugin: Number System/Location Defect Type Status R2 Reporting Plugin Client-side Attacks: Cross-site Scripting Open Description Security Risk: It is possible to steal or manipulate customer session and cookies, which may be used to...

0.1AI score
Exploits0
Atlassian
Atlassian
added 2009/03/19 4:15 p.m.18 views

Latex Plugin-Cross-site Scripting Error

Our security group scanned the plugin below and found the following issue for the Latex Plugin: Number System/Location Defect Type Status R1 Latex Plugin Client-side Attacks: Cross-site Scripting Open Description Security Risk: It is possible to steal or manipulate customer session and cookies,...

Exploits0Affected Software1
Atlassian
Atlassian
added 2009/03/19 4:15 p.m.29 views

Latex Plugin-Cross-site Scripting Error

Our security group scanned the plugin below and found the following issue for the Latex Plugin: Number System/Location Defect Type Status R1 Latex Plugin Client-side Attacks: Cross-site Scripting Open Description Security Risk: It is possible to steal or manipulate customer session and cookies,...

Exploits0Affected Software1
Atlassian
Atlassian
added 2009/03/19 4:15 p.m.16 views

Latex Plugin-Cross-site Scripting Error

Our security group scanned the plugin below and found the following issue for the Latex Plugin: Number System/Location Defect Type Status R1 Latex Plugin Client-side Attacks: Cross-site Scripting Open Description Security Risk: It is possible to steal or manipulate customer session and cookies,...

Exploits0
Rows per page
Query Builder