Joomla! Component mod_VisitorData 1.1 - Remote code Execution

Joomla Module Camp26 Visitor Data 1.1 Remote code Execution ============================================================ - Discovered by : Chip D3 Bi0s - Email : [email protected] - Date : 2010-04-28 - Severity : 9/10 CVSS scored ------------------------------- Module Camp26 Visitor Data For...

500page.jsp contains HTTP Header XSS vulnerability

The 500page.jsp contains an XSS vulnerability via the 'Referrer' HTTP header...

500page.jsp contains HTTP Header XSS vulnerability

The 500page.jsp contains an XSS vulnerability via the 'Referrer' HTTP header...

500page.jsp contains HTTP Header XSS vulnerability

The 500page.jsp contains an XSS vulnerability via the 'Referrer' HTTP header...

Google Chrome < 4.1.249.1036 Multiple Vulnerabilities

Binary data 5364.pasl...

Scripts Feed Dating Software SQL Injection

============================================================================== Scripts Feed Dating Software Cookie Manip/SQLi Multiple Remote Vulnerabilities ============================================================================== + My home http://hack-tech.com + Date Submitted: February 27...

WikyBlog 1.7.3rc2 XSS / Shell Upload / RFI

======================================================================================== | Title : WikyBlog-1.7.3rc2 Mullti Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com | Web Site : http://www.wikyblog.com/ | Dork : Powered by WikyBlog | Tested on:...

Debian DSA-1950-1 : webkit - several vulnerabilities

Several vulnerabilities have been discovered in WebKit, a Web content engine library for Gtk+. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0945 Array index error in the insertItemBefore method in WebKit, allows remote attackers to execute...

CVE-2003-1587

Cross-site scripting XSS vulnerability in LoganPro allows remote attackers to inject arbitrary web script or HTML via a crafted User-Agent HTTP header...

CVE-2003-1586

Cross-site scripting XSS vulnerability in WebExpert allows remote attackers to inject arbitrary web script or HTML via a crafted User-Agent HTTP header...

CVE-2003-1586

CVE-2003-1586 describes a cross-site scripting (XSS) vulnerability in WebExpert, exploitable by remote attackers through a crafted User-Agent HTTP header. Affected: WebExpert (component/feature unspecified beyond XSS via User-Agent). Root cause: improper sanitization of the User-Agent header lead...

CVE-2003-1587

CVE-2003-1587 describes a cross-site scripting (XSS) vulnerability in LoganPro where remote attackers can inject arbitrary script via a crafted User-Agent header. Affected component is the web application LoganPro; root cause is insufficient input validation/escaping for User-Agent. The CVSS v2 s...

Sun Java System Web Server < 7.0 Update 8 Multiple Heap-based Buffer Overflow Vulnerabilities

Sun Java Web Server is prone to multiple heap-based buffer overflow vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2010-0387

Multiple heap-based buffer overflows in 1 webservd and 2 the admin server in Sun Java System Web Server 7.0 Update 7 allow remote attackers to cause a denial of service daemon crash and possibly have unspecified other impact via a long string in an "Authorization: Digest" HTTP header...

Heap overflow

Multiple heap-based buffer overflows in 1 webservd and 2 the admin server in Sun Java System Web Server 7.0 Update 7 allow remote attackers to cause a denial of service daemon crash and possibly have unspecified other impact via a long string in an "Authorization: Digest" HTTP header...

XOOPS任意文件删除和HTTP头注入漏洞

No description provided by source...

Red Hat Directory Server Accept-Language HTTP Header Parsing Buffer Overflow (CVE-2008-2928)

Red Hat Directory Server is an LDAP-based server that centralizes application settings, user profiles, group data, policies, and access control information into an operating system-independent, network-based registry. Fedora Directory Server is a free version of Red Hat Directory Server. There...

FreeBSD : pligg -- XSS and Cross-Site Request Forgery (bec38383-e6cb-11de-bdd4-000c2930e89b)

secunia reports : Russ McRee has discovered some vulnerabilities in Pligg, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks. Input passed via the 'Referer' HTTP header to various scripts e.g. admin/adminconfig.php, admin/adminmodules.php,...

Stack overflow

Stack-based buffer overflow in ovalarm.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Accept-Language header in an OVABverbose action...

CVE-2009-4180

Stack-based buffer overflow in snmpviewer.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Host header...