Unfixed XSS vulnerability at www.classicwebdevelopment.com

Security researcher OMEHA, has submitted on 10/05/2007 a cross-site-scripting XSS vulnerability affecting www.classicwebdevelopment.com, which at the time of submission ranked 4190254 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/05/2007. ...

Unfixed XSS vulnerability at www.yycc.net

Security researcher MaXWeL, has submitted on 10/03/2007 a cross-site-scripting XSS vulnerability affecting www.yycc.net, which at the time of submission ranked 536725 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/03/2007. It is currently...

XSS on Obedit v3.03

=============================================== Obedit v3.03 - XSS Vuln. =============================================== Author: Ishkur fuxxx0rz at gmail com Impact: XSS and Cookie Alert Patches: in development ------------------------------------------- Affected Software Description:...

obedit-xss.txt

=============================================== Obedit v3.03 - XSS Vuln. =============================================== Author: Ishkur Impact: XSS and Cookie Alert Patches: in development ------------------------------------------- Affected Software Description:...

kdm -- passwordless login vulnerability

The KDE development team reports: KDM can be tricked into performing a password-less login even for accounts with a password set under certain circumstances, namely autologin to be configured and "shutdown with password" enabled...

SOL7923 - Cross-site scripting vulnerability in the logon page after enabling a pre-logon sequence - CVE-2007-6704

A cross-site scripting XSS vulnerability—CVE-2007-6704—exists in the FirePass logon page when a pre-logon sequence is enabled. The affected FirePass URL fails to fully sanitize URL input before the web page content is sent to the browser. It is possible for an attacker to create web pages,...

konquerer -- address bar spoofing

The KDE development team reports: The Konqueror address bar is vulnerable to spoofing attacks that are based on embedding white spaces in the url. In addition the address bar could be tricked to show an URL which it is intending to visit for a short amount of time instead of the current URL...

qt security update

CentOS Errata and Security Advisory CESA-2007:0883 Updated qt packages that correct two security flaws are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Qt is a software toolkit that simplifies the task of writing and...

Directory traversal

Directory traversal vulnerability in Enriva Development Magellan Explorer 3.32 build 2305 and earlier allows remote FTP servers to create or overwrite arbitrary files via a .. dot dot in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder...

CVE-2007-4842

CVE-2007-4842 affects Enriva Development Magellan Explorer 3.32 build 2305 and earlier. It describes a directory traversal via .. in a filename that remote FTP servers can use to create/overwrite arbitrary files. The note indicates this can be leveraged for code execution by writing to a Startup ...

CVE-2007-4842

Directory traversal vulnerability in Enriva Development Magellan Explorer 3.32 build 2305 and earlier allows remote FTP servers to create or overwrite arbitrary files via a .. dot dot in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder...

PHP 5.2.4 <= various mysql functions safemode & open_basedir bypass

Application: PHP =5.2.4 Web Site: http://php.net Platform: unix Bug: safemode & openbasedir bypass ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept 4 Credits =========== 1 Introduction =========== "PHP is a widely-used general-purpose scripting...

PHP <=5.2.4 open_basedir bypass & code exec & denial of service

Application: PHP =5.2.4 Web Site: http://php.net Platform: unix Bug: openbasedir bypass & code exec & denial of service/some people call this as a buffer overflow , but it's a denial of service./ special condition: default php-memory-limit ------------------------------------------------------- 1...

[SECURITY] Fedora 7 Update: qgit-1.5.7-1.fc7

With qgit you are able to browse revisions history, view patch content and changed files, graphically following different development branches...

Lighttpd <= 1.4.16 FastCGI Header Overflow Remote Exploit

No description provided by source. / Remote Lighttpd + FastCGI + PHP example exploit Tested with Lighttpd 1.4.16 and PHP 5.2.4 To avoid abuse there's a "remove me" in the code. Example: ./exploit localhost 80 /etc/passwd or wget --referer="?php system'/usr/bin/id'; ?" localhost ./exploit localhos...

php524-basedir.txt

Application: PHP dll . / Bug: openbasedir bypass & code exec & denial of service/some people call this as a buffer overflow , but it's a denial of service./ special condition: default php-memory-limit ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept ...

[HISPASEC] 2K7SEPT6 Magellan Explorer 3.32 build 2305 Remote FTP Client Directory Traversal

HISPASEC Security Advisory http://blog.hispasec.com/lab/ Name : 2K7SEPT6 Magellan Explorer 3.32 build 2305 Remote FTP Client Directory Traversal Class : Remote Directory Traversal Threat level : HIGH Discovered : 2007-08-14 Published : 2007-09-06 Credit : Gynvael Coldwind Vulnerable : 3.32 built...

PHP <= 5.2.4 multiple Iconv functions denial of service

Application: PHP =5.2.4 Web Site: http://php.net Platform: unix Bug: denial of service function: iconv,iconvstrlen,iconvmimedecode,iconvmimedecodeheaders special condition: default php-memory-limit ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept 4...

PHP < 5.2.3 fnmatch() denial of service

Application: PHP 5.2.3 Web Site: http://php.net Platform: unix Bug: denial of service fonction: fnmatch special condition: default php-memory-limit ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept 4 Greets 5 Credits =========== 1 Introduction...

PHP < 5.2.4 setlocale() denial of service

Application: PHP 5.2.4 Web Site: http://php.net Platform: unix Bug: denial of service fonction: setlocale special condition: default php-memory-limit ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept 4 Greets 5 Credits =========== 1 Introduction...