myBloggie 2.1.1

myBloggie 2.1.1 Vendor: http://www.mywebland.com/ When the comments are posted there's no check for "script" tags allowing a script injection attack. Proof of Concept scriptalert"Hi world!";/script ..-= DominusVis =-.. Infektion Group Brazil...

MercuryBoard 1.1 - Multiple Input Validation Vulnerabilities

MercuryBoard 1.1 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/12359/info Multiple input validation vulnerabilities affect MercuryBoard. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it in...

konversation -- shell script command injection

Konversation comes with Perl scripts that do not properly escape shell characters on executing a script. This makes it possible to attack Konversation with shell script command injection...

[EXPL] ITA Forum SQL Injection

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

CVE-2004-1158

Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka t...

Cacti: SQL injection vulnerability

Background Cacti is a complete web-based front end to rrdtool. Description Cacti is vulnerable to a SQL injection attack where an attacker may inject SQL into the Username field. Impact An attacker could compromise the Cacti service and potentially execute programs with the permissions of the use...

Re: [Full-Disclosure] THE VULNERABILITY STILL WORKS AFTER TODAY'S PATCH

Well it's not quite as easy as you make it sound I think you only took a look at http-equiv's example I posted to full disclosure and based your post on that. You see this: --snip-- iframe src="c:windowswebtip.htm" style="width:400px;height:200px;"/iframe textarea id="code" style="display:none;"...

memmansys21.txt

Title: Vulnerabilities in Member Management System 2.1 Software: Member Management System 2.1 Vendor: http://www.expinion.net/software/appmms.asp Impact: Disclosure of authentication information, Disclosure of user information, Execution of arbitrary code via network, Modification of user and adm...

Expinion.net News Manager Lite 2.5 - category_news.asp?ID SQL Injection

Expinion.net News Manager Lite 2.5 - categorynews.asp?ID SQL Injection source: https://www.securityfocus.com/bid/9935/info Multiple vulnerabilities have been identified in the application that may allow an attacker to carry out SQL injection, cross-site scripting, and account hijacking attacks. T...

oracleXSS.txt

Software: Oracle HTTP Server Powered by Apache Vendor: http://www.apache.com http://www.oracle.com Versions: Oracle HTTP Server Powered by Apache/1.3.22 Win32 modplsql/3.0.9.8.3b modssl/2.8.5 OpenSSL/0.9.6b modfastcgi/2.2.12 modoprocmgr/1.0 modperl/1.25 Platforms: Windows Bug: Cross Site Scriptin...

MetaDot < 5.6.5.4b5 - Multiple Vulnerabilities

MetaDot Multiple Vulnerabilities Vendor: Metadot Corporation Product: MetaDot Version: = 5.6.5.4b5 Website: http://www.metadot.com/ BID: 9439 Description: Metadot is a popular open source portal software GPL recognized for its revolutionary ease-of-use. It provides content management like file,...

Mambo Open Source 4.0.14 Server - SQL Injection

Mambo Open Source 4.0.14 Server - SQL Injection source: https://www.securityfocus.com/bid/9196/info It has bee reported that Mambo Open Source 4.0.14 Server is prone to SQL injection attacks. The problem is said to occur due to insufficient sanitization of data passed to specific index.php...

CVE-2003-0641

WatchGuard ServerLock for Windows 2000 before SL 2.0.3 allows local users to load arbitrary modules via the OpenProcess function, as demonstrated using 1 a DLL injection attack, 2 ZwSetSystemInformation, and 3 API hooking in OpenProcess...

CVE-2003-0641

WatchGuard ServerLock for Windows 2000 before SL 2.0.3 allows local users to load arbitrary modules via the OpenProcess function, as demonstrated using 1 a DLL injection attack, 2 ZwSetSystemInformation, and 3 API hooking in OpenProcess...

Synkron.Web 3.0 - HTML Injection

Synkron.Web 3.0 - HTML Injection source: https://www.securityfocus.com/bid/7833/info Synkron.web is prone to HTML injection attacks. The vulnerability exists in the search script and is a result of insufficient sanitization of malicious HTML code from user-supplied input. HTML and script code may...

Microsoft BizTalk Server Multiple Remote Vulnerabilities

The remote host seems to be running Microsoft BizTalk server. There are two flaws in this software that could allow an attacker to issue a SQL insertion attack or to execute arbitrary code on the remote host. Note that Nessus solely relied on the presence of a Biztalk DLL to issue this alert so i...

PHP-Nuke 6.5 (Multiple Downloads Module) - SQL Injection

source: https://www.securityfocus.com/bid/7588/info PHP-Nuke is reportedly prone to multiple SQL injection vulnerabilities in the Downloads module. Exploitation could allow for injection of malicious SQL syntax, resulting in modification of SQL query logic or other attacks...

vSignup 2.1 - SQL Injection

vSignup 2.1 - SQL Injection source: https://www.securityfocus.com/bid/6606/info A vulnerability has been discovered in vSignup. It has been reported that various PHP scripts used by vAuthenticate are prone to SQL injection attacks. This issue may be exploited by an unauthorized attacker to view...

PHPPass 2 - 'AccessControl.php' SQL Injection

source: https://www.securityfocus.com/bid/6594/info A problem with phpPass may allow an attacker to launch a SQL injection attack. The vulnerability exists in the accesscontrol.php script included with phpPass. Due to insufficient sanitization of user-supplied input, it is possible for a remote...

CVE-2002-1256

The SMB signing capability in the Server Message Block SMB protocol in Microsoft Windows 2000 and Windows XP allows attackers to disable the digital signing settings in an SMB session to force the data to be sent unsigned, then inject data into the session without detection, e.g. by modifying gro...