3838 matches found
Moderate: kdelibs security update
3.5.4-13.el5.0.1 - Remove Version branding - Maximum rpm trademark logos removed pics/crystalsvg/-mime-rpm 3.5.4-13.el5 - Resolves: 293571 CVE-2007-0537 Konqueror improper HTML comment rendering CVE-2007-1564 FTP protocol PASV design flaw affects konqueror 3.5.4-12.el5 - resolves: 293421,...
CVE-2007-5178
contrib/mxglancesdesc.php in the mxglance 2.3.3 module for mxBB places a critical security check within a comment because of a missing comment delimiter, which allows remote attackers to conduct remote file inclusion attacks and execute arbitrary PHP code via a URL in the mxrootpath parameter...
CVE-2007-4874
Multiple cross-site scripting XSS vulnerabilities in SimpNews 2.41.03 allow remote attackers to inject arbitrary web script or HTML via the 1 lusername parameter to admin/layout2b.php, and the 2 backurl parameter to comment.php...
CVE-2007-1865
The ipv6getsockoptsticky function in the kernel in Red Hat Enterprise Linux RHEL Beta 5.1.0 allows local users to obtain sensitive information kernel memory contents via a negative value of the len parameter. NOTE: this issue has been disputed in a bug comment, stating that "len is ignored when...
Only allow basic formatting macros in comments
panel:bgColor=e7f4fa NOTE: This suggestion is for Confluence Cloud. Using Confluence Server? See the corresponding suggestion|http://jira.atlassian.com/browse/CONFSERVER-9387. panel Currently it is possible for users with create comments permission to embed macros in these comments. This is a...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Olate Download od 3.4.2 allow remote attackers to inject arbitrary web script or HTML via 1 the PHPSELF variable in modules/core/uim.php and 2 url tags in a comment in modules/core/fldm.php...
CVE-2007-4541
Multiple cross-site scripting XSS vulnerabilities in Olate Download od 3.4.2 allow remote attackers to inject arbitrary web script or HTML via 1 the PHPSELF variable in modules/core/uim.php and 2 url tags in a comment in modules/core/fldm.php...
GeoBlog MOD_1.0 - deletecomment.php?id Arbitrary Comment Deletion
GeoBlog MOD1.0 - deletecomment.php?id Arbitrary Comment Deletion source: https://www.securityfocus.com/bid/24966/info geoBlog is prone to multiple security-bypass vulnerabilities because the application fails to properly validate users when deleting user blogs and comments. An attacker may exploi...
CVE-2007-3507
Stack-based buffer overflow in the localvcentryparsevalue function in vorbiscomment.c in flac123 aka flac-tools or flac before 0.0.10 allows user-assisted remote attackers to execute arbitrary code via a large comment valuelength...
CVE-2007-3507
Stack-based buffer overflow in the localvcentryparsevalue function in vorbiscomment.c in flac123 aka flac-tools or flac before 0.0.10 allows user-assisted remote attackers to execute arbitrary code via a large comment valuelength...
LightBlog <= 5 Add_Comment.PHP Cross-Site Scripting Vulnerability
LightBlog 5 AddComment.PHP Cross-Site Scripting Vulnerability. Webapps exploit for php platform source: http://www.securityfocus.com/bid/24741/info LightBlog is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may...
FreeBSD : flac123 -- stack overflow in comment parsing (32d38cbb-2632-11dc-94da-0016179b2dd5)
isecpartners reports : flac123, also known as flac-tools, is vulnerable to a buffer overflow in vorbis comment parsing. This allows for the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
flac123 0.0.9 - Stack overflow in comment parsing
iSEC Partners Security Advisory - 2007-002-flactools http://www.isecpartners.com -------------------------------------------- flac123 0.0.9 - Stack overflow in comment parsing Vendor URL: http://flac-tools.sourceforge.net/ Severity: High Allows for arbitrary code execution Author: David Thiel...
Design/Logic Flaw
The 1 login, 2 admin profile edit, 3 reminder, 4 edit profile, 5 profile view, 6 gallery view, 7 gallery comment, and 8 gallery feedback capabilities in web-app.org WebAPP before 0.9.9.7 do not verify presence of users in memberlist.dat, which has unknown impact and remote attack vectors...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Papoo Light 3.6 before 20070611 allow remote attackers to inject arbitrary web script or HTML via 1 the URI in a GET request or 2 the Title field of a visitor comment, and 3 allow remote authenticated users to inject arbitrary web script or HTM...
CVE-2007-3269
Multiple cross-site scripting XSS vulnerabilities in Papoo Light 3.6 before 20070611 allow remote attackers to inject arbitrary web script or HTML via 1 the URI in a GET request or 2 the Title field of a visitor comment, and 3 allow remote authenticated users to inject arbitrary web script or HTM...
CVE-2007-3269
Multiple cross-site scripting XSS vulnerabilities in Papoo Light 3.6 before 20070611 allow remote attackers to inject arbitrary web script or HTML via 1 the URI in a GET request or 2 the Title field of a visitor comment, and 3 allow remote authenticated users to inject arbitrary web script or HTM...
flac123 -- stack overflow in comment parsing
isecpartners reports: flac123, also known as flac-tools, is vulnerable to a buffer overflow in vorbis comment parsing. This allows for the execution of arbitrary code...
YaPIG 0.95b Remote Code Execution Exploit
No description provided by source. ?php / This module adds a comment file in $giddir . $gid . "" .$phid file Each File will have this format if $SEPARATOR=":"; title:author:date:email:web:message\n if a message contains "\n" character, it will be replaced with "br /" The variables receives by the...
yapig-exec.txt
" The variables receives by the form POST: - integer $gid the gid of the gallery - interger $phid the phid of the image - string $tit title of the comment - string $author author name - string $mail comment authoer email - string $web comment author web - string $msg comment itself @package user ...