2442 matches found
CVE-2008-3906
CRLF injection vulnerability in Sys.Web in Mono 2.0 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the query string...
CVE-2008-3906
CRLF injection vulnerability in Sys.Web in Mono 2.0 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the query string...
CVE-2008-3906
CRLF injection vulnerability in Sys.Web in Mono 2.0 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the query string...
CVE-2008-3906
CVE-2008-3906 is a CRLF injection vulnerability in Mono’s Sys.Web (versions 2.0 and earlier) that enables remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via CRLF sequences in the query string. Multiple advisories (Mandriva MDVSA-2008:210-1, Ubuntu USN-826-1,...
CVE-2008-3906
CRLF injection vulnerability in Sys.Web in Mono 2.0 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the query string...
FreeBSD Ports: squid
The remote host is missing an update to the system as announced in the referenced advisory. VID 4e4bd2c2-6bd5-11d9-9e1e-c296ac722cb3 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: squid
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Vulnerabilities in FeedBurner FeedSmith for WordPress
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Full path disclosure и HTTP Response Splitting + Cross-Site Scripting уязвимостях в плагине FeedBurner FeedSmith для WordPress. Который разрабатывается FeedBurner, принадлежащей компании Google. Full path disclosure:...
Unfixed HTTP Response Splitting vulnerability at www.unimelb.edu.au
Security researcher xylitol, has submitted on 16/08/2008 a HTTP Response Splitting vulnerability affecting www.unimelb.edu.au, which at the time of submission ranked 5662 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/09/2008. It is current...
Unfixed HTTP Response Splitting vulnerability at gggnet.com
Security researcher xylitol, has submitted on 29/07/2008 a HTTP Response Splitting vulnerability affecting gggnet.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/10/2008. It is currently unfixed...
Unfixed HTTP Response Splitting vulnerability at hypedesigns.com
Security researcher xylitol, has submitted on 15/07/2008 a HTTP Response Splitting vulnerability affecting hypedesigns.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/11/2008. It is currently...
Unfixed HTTP Response Splitting vulnerability at cooldudes.com
Security researcher xylitol, has submitted on 14/07/2008 a HTTP Response Splitting vulnerability affecting cooldudes.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/11/2008. It is currently...
CVE-2008-2497
CRLF injection vulnerability in Mambo before 4.6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...
CVE-2008-2497
CVE-2008-2497 affects Mambo prior to 4.6.4, with a CRLF injection vulnerability that lets remote attackers inject arbitrary HTTP headers and perform HTTP response splitting via unspecified vectors. The connected documents confirm the affected software and the underlying CRLF issue, but do not pro...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. pMachinePro: HTTP Response Splitting...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. pMachinePro: HTTP Response Splitting...
Vulnerability in pMachinePro
Здравствуйте 3APA3A! Сообщаю вам о найденной мною HTTP Response Splitting уязвимости в pMachinePro. Уязвимость в скрипте sitelaunch.php в параметре go. Которая может быть использована в частности для проведения Cross-Site Scripting атаки. XSS:...
GLSA-200803-18 : Cacti: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200803-18 Cacti: Multiple vulnerabilities The following inputs are not properly sanitized before being processed: 'viewtype' parameter in the file graph.php, 'filter' parameter in the file graphview.php, 'action' and 'loginusernam...
GLSA-200803-19 : Apache: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200803-19 Apache: Multiple vulnerabilities Adrian Pastor and Amir Azam ProCheckUp reported that the HTTP Method specifier header is not properly sanitized when the HTTP return code is '413 Request Entity too large' CVE-2007-6203...
Apache: Multiple vulnerabilities
Background The Apache HTTP server is one of the most popular web servers on the Internet. Description Adrian Pastor and Amir Azam ProCheckUp reported that the HTTP Method specifier header is not properly sanitized when the HTTP return code is "413 Request Entity too large" CVE-2007-6203. The...