453 matches found
Divine Content Server 5.0 - Error Page Cross-Site Scripting
Divine Content Server 5.0 - Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/8763/info It has been reported that Divine Content Server is prone to a cross-site scripting vulnerability due to insufficient sanitization of user-supplied input. The problem exists in the...
Divine Content Server 5.0 - Error Page Cross-Site Scripting
source: https://www.securityfocus.com/bid/8763/info It has been reported that Divine Content Server is prone to a cross-site scripting vulnerability due to insufficient sanitization of user-supplied input. The problem exists in the 'pagename' attribute in the error page of the software. This issu...
CVE-2002-1018
The library feature for Adobe Content Server 3.0 does not verify if a customer has already checked out an eBook, which allows remote attackers to cause a denial of service resource exhaustion by checking out the same book multiple times...
CVE-2002-1019
The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook for an arbitrary length of time via a modified loanMin parameter to download.asp...
CVE-2002-1020
The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook even when the maximum number of loans is exceeded by accessing the "Add to bookbag" feature when the server reports that no more copies are available...
CVE-2002-1019
CVE-2002-1019 affects the Adobe Content Server 3.0 library feature. The vulnerability arises in a downloadable eBook workflow where a remote attacker can manipulate the loanMin parameter in download.asp to extend the loan period for an arbitrary length of time. The available documentation explici...
CVE-2002-1018
The library feature for Adobe Content Server 3.0 does not verify if a customer has already checked out an eBook, which allows remote attackers to cause a denial of service resource exhaustion by checking out the same book multiple times...
CVE-2002-1020
The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook even when the maximum number of loans is exceeded by accessing the "Add to bookbag" feature when the server reports that no more copies are available...
CVE-2002-1020
The CVE-2002-1020 entry concerns Adobe Content Server 3.0. The vulnerability arises in the library feature used for the Add to bookbag operation: when the server reports that no more copies are available, a remote attacker can still check out an eBook. This implies an underlying logic flaw where ...
CVE-2002-1018
The CVE-2002-1018 entry concerns the library feature of Adobe Content Server 3.0, which does not verify whether a customer has already checked out an eBook. This allows remote attackers to cause a denial of service (resource exhaustion) by repeatedly checking out the same book. The connected docu...
CVE-2002-1019
The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook for an arbitrary length of time via a modified loanMin parameter to download.asp...
Vulnerability: protected Adobe eBooks can be copied between computers
-----BEGIN PGP SIGNED MESSAGE----- Hash: MD5 Product Vulnerability Reporting Form SUMMARY =============================================================================== Adobe Content Server now in use by more than 300 online retail sites enables the distribution of eBooks and electronic document...
Vulnerability found: Adobe Acrobat eBook Reader and Content Server
-----BEGIN PGP SIGNED MESSAGE----- Hash: MD5 Product Vulnerability Reporting Form CONTACT INFORMATION =============================================================================== Name : Vladimir Katalov E-mail : [email protected] Phone / fax : +7 095 216-7937 +1 866 448-2703 fax; US, toll-fre...