2442 matches found
Crlf injection
CRLF injection vulnerability in the WebContainer component in IBM WebSphere Application Server WAS 5.1.1.19 and earlier 5.1.x versions allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...
CVE-2008-4283
CRLF injection vulnerability in the WebContainer component in IBM WebSphere Application Server WAS 5.1.1.19 and earlier 5.1.x versions allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...
CVE-2008-4283
CRLF injection vulnerability in the WebContainer component in IBM WebSphere Application Server WAS 5.1.1.19 and earlier 5.1.x versions allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...
CVE-2008-4283
CVE-2008-4283 describes a CRLF injection vulnerability in the WebContainer component of IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.1.x versions. The issue allows remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via unspecified vectors. Accor...
Oracle Application Server - multiple security vulnerabilities
Application: Oracle Application Server Versions Affected: Oracle Application Server 10.1.2.0.2 Vendor URL: http://oracle.com Bugs: Response Splitting XSS Exploits: YES Reported: 21.01.2009 Vendor response: 23.01.2009 Date of Public Advisory: 22.02.2012 Author: Alexandr Polyakov Description Oracle...
Ninja Blog 4.8 Remote Information Disclosure Vulnerability
No description provided by source. Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/index.php?s=ad&id=6 ---- Due to insufficient validation of client-side data, we can alt...
CMS NetCat 3.12 SQL Injection / XSS / LFI
NetCat &control=...
Open redirect
Multiple open redirect vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via 1 the redirect parameter in a logoff action to modules/auth/index.php or 2 the url parameter to modules/linkmanager/redirect.php...
CVE-2008-5742
Multiple open redirect vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via 1 the redirect parameter in a logoff action to modules/auth/index.php or 2 the url parameter to modules/linkmanager/redirect.php...
CVE-2008-5742
CVE-2008-5742 describes multiple open redirect vulnerabilities in AIST NetCat 3.12 and earlier. The issues allow remote attackers to redirect users to arbitrary sites and conduct phishing via (1) the redirect parameter in a logoff action to modules/auth/index.php and (2) the url parameter to modu...
CMS NetCat <= 3.12 Multiple Remote Vulnerabilities
No description provided by source. NetCat = 3.12 Multiple Remote Vulnerabilities The description: The set vulnerability in CMS NetCat versions 3.12 and more low was revealed. 1. Multiple File Including Vulnerabilities Vulnerability exists for the reason that direct access to some files, around...
CMS NetCat 3.12 - Multiple Vulnerabilities
CMS NetCat 3.12 - Multiple Vulnerabilities NetCat &control= etc. 4. HTTP Response Sp...
Многочисленные уязвимости в NetCat CMS <= 3.12
Многочисленные уязвимости в NetCat CMS = 3.12 Описание: Были обнаружены многочисленные уязвимости в CMS NetCat 3.12. Некоторым уязвимостям, перечисленным ниже, также подвержена версия NetCat 3.0. 1. Множественные уязвимости типа "Чтение произвольных файлов" File Including Уязвимость существует по...
CMS NetCat <= 3.12 Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ================================================== CMS NetCat = 3.12 Multiple Remote Vulnerabilities ================================================== NetCat = 3.12 Multiple Remote Vulnerabilities The description: The set vulnerability in...
Unfixed HTTP Response Splitting vulnerability at 666vip.com
Security researcher xylitol, has submitted on 12/07/2008 a HTTP Response Splitting vulnerability affecting 666vip.com, which at the time of submission ranked 9093742 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2008. It is currently...
Unfixed HTTP Response Splitting vulnerability at h4x0rclan.com
Security researcher xylitol, has submitted on 12/07/2008 a HTTP Response Splitting vulnerability affecting h4x0rclan.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2008. It is currently...
Unfixed HTTP Response Splitting vulnerability at fleetcars.com
Security researcher xylitol, has submitted on 12/07/2008 a HTTP Response Splitting vulnerability affecting fleetcars.com, which at the time of submission ranked 20358218 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2008. It is currentl...
Unfixed HTTP Response Splitting vulnerability at blackmetal-666.com
Security researcher xylitol, has submitted on 12/07/2008 a HTTP Response Splitting vulnerability affecting blackmetal-666.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2008. It is currently...
Unfixed HTTP Response Splitting vulnerability at fantasmas.com
Security researcher xylitol, has submitted on 12/07/2008 a HTTP Response Splitting vulnerability affecting fantasmas.com, which at the time of submission ranked 1456379 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2008. It is currently...
Unfixed HTTP Response Splitting vulnerability at wiki.uiah.fi
Security researcher xylitol, has submitted on 12/07/2008 a HTTP Response Splitting vulnerability affecting wiki.uiah.fi, which at the time of submission ranked 130465 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2008. It is currently...