2442 matches found
ATutor 2.0.2 - Multiple Vulnerabilities
ATutor 2.0.2 - Multiple Vulnerabilities ATutor 2.0.2 Multiple Remote Vulnerabilities SQLi/XSS/PD Vendor: ATutor Inclusive Design Institute Product web page: http://www.atutor.ca Affected version: 2.0.2 build r10589 Summary: ATutor is an Open Source Web-based Learning Content Management System LCM...
ATutor 2.0.2 HTTP Response Splitting
ATutor 2.0.2 lang HTTP Response Splitting Vulnerability Vendor: ATutor Inclusive Design Institute Product web page: http://www.atutor.ca Affected version: 2.0.2 build r10589 Summary: ATutor is an Open Source Web-based Learning Content Management System LCMS designed with accessibility and...
ATutor 2.0.2 (lang) HTTP Response Splitting Vulnerability
Summary ATutor is an Open Source Web-based Learning Content Management System LCMS designed with accessibility and adaptability in mind. Educators can quickly assemble, package, and redistribute Web-based instructional content, easily retrieve and import prepackaged content, and conduct their...
Aruba Advisory AID-070611 Cross Site Scripting vulnerability in ArubaOS and AirWave Administration Web Interfaces
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ADVISORY NUMBER AID-070611 Advisory 1: TITLE Cross Site Scripting vulnerability in ArubaOS and AirWave Administration Web Interfaces. SUMMARY A persistent Cross Site Scripting vulnerability XSS was discovered where an attacker could plant an AP with...
Apple Developer Cross Site Scripting / Redirect
Vulnerabilities via URL Redirector in developer.apple.com 1. VULNERABILITY DESCRIPTION Arbitrary URL Redirect ====================== POC Browsers: All https://developer.apple.com/membercenter/urlRedirect.action?fullURL=http://attacker.in/malwareexistsinthispage Issue References: OWASP Top 10 A10 ...
Xerver HTTP CRLF Injection Response Splitting (CVE-2009-4086)
This is a CRLF injection vulnerability in Xerver HTTP Server. Remote attackers could use this vulnerability to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via certain byte sequences at the end of a URL...
RHEL 6 : perl (RHSA-2011:0558)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0558 advisory. Perl is a high-level programming language commonly used for system administration utilities and web programming. The Perl CGI module provide...
Ubuntu: Security Advisory (USN-1129-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu Update for perl USN-1129-1
Ubuntu Update for Linux kernel vulnerabilities USN-1129-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN11291.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for perl USN-1129-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...
USN-1129-1: Perl vulnerabilities
It was discovered that the Safe.pm Perl module incorrectly handled Safe::reval and Safe::rdo access restrictions. An attacker could use this flaw to bypass intended restrictions and possibly execute arbitrary code. CVE-2010-1168, CVE-2010-1447 It was discovered that the CGI.pm Perl module...
FreeBSD Ports: bugzilla
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: bugzilla
The remote host is missing an update to the system as announced in the referenced advisory. VID c8c927e5-2891-11e0-8f26-00151735203a OpenVAS Vulnerability Test $ Description: Auto generated from VID c8c927e5-2891-11e0-8f26-00151735203a Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...
CVE-2011-0581
Multiple CRLF injection vulnerabilities in Adobe ColdFusion 8.0 through 9.0.1 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified tags...
Crlf injection
Multiple CRLF injection vulnerabilities in Adobe ColdFusion 8.0 through 9.0.1 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified tags...
CVE-2011-0581
CVE-2011-0581 affects Adobe ColdFusion 8.0–9.0.1 with multiple CRLF injection vulnerabilities in various tags that allow remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting. The provided connected documents confirm the affected product and the underlying issue (C...
CVE-2010-4572
CRLF injection vulnerability in chart.cgi in Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x before 4.0rc2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the query string, a different vulnerability than...
CVE-2010-4572
CRLF injection vulnerability in chart.cgi in Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x before 4.0rc2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the query string, a different vulnerability than...
Mandriva Update for perl-CGI-Simple MDVSA-2010:252 (perl-CGI-Simple)
Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:252 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...
www.eVuln.com : HTTP Response Splitting in Social Share
www.eVuln.com advisory: HTTP Response Splitting in Social Share Summary: http://evuln.com/vulns/168/summary.html Details: http://evuln.com/vulns/168/description.html -----------Summary----------- eVuln ID: EV0168 Software: Social Share Vendor: n/a Version: 2010-06-05 Critical Level: low Type: HTT...
Mandriva Update for perl-CGI-Simple MDVSA-2010:250 (perl-CGI-Simple)
Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:250 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...