CVE-2008-6433

The CVE-2008-6433 issue affects Blue River Interactive Group Sava CMS prior to version 5.0.122. A cross-site scripting (XSS) vulnerability exists in index.cfm where the keywords parameter in a search action can be exploited to inject arbitrary web script or HTML. This is a remote impact vulnerabi...

CVE-2008-6434

The CVE-2008-6434 issue affects Blue River Interactive Group Sava CMS prior to version 5.0.122. The vulnerability is an SQL injection in index.cfm via the LinkServID parameter, allowing remote attackers to execute arbitrary SQL commands. The NVD entry lists a base severity of HIGH (CVSS v2: AV:N/...

Fedora Update for htop FEDORA-2008-9791

Check for the Version of htop OpenVAS Vulnerability Test Fedora Update for htop FEDORA-2008-9791 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for htop FEDORA-2008-9944

Check for the Version of htop OpenVAS Vulnerability Test Fedora Update for htop FEDORA-2008-9944 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for blender FEDORA-2008-10448

Check for the Version of blender OpenVAS Vulnerability Test Fedora Update for blender FEDORA-2008-10448 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Orca 2.0.2 Cross Site Scripting

--------------------------------------------------------------------------\ + Script : Orca-v.2.0.2 + Bug: Xss + By: J-Hacker || Jerusalem Hacker || From : soqor.net + Email : [email protected] + Download : http://www.boonex.com/thankyou.php?p=Orca-v.2.0 + D0rk :Powered by Orca Interactive Forum...

Orca 2.0.2 (Topic) Remote XSS Vulnerability

No description provided by source. --------------------------------------------------------------------------\ + Script : Orca-v.2.0.2 + Bug: Xss + By: J-Hacker || Jerusalem Hacker || From : soqor.net + Email : [email protected] + Download : http://www.boonex.com/thankyou.php?p=Orca-v.2.0 + D0rk...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in the Recly Interactive Feederator comfeederator component 1.0.5 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the 1 mosConfigabsolutepath parameter to a addtmsp.php, b edittmsp.php and c tmsp.php in includes/tmsp...

CVE-2008-5789

Multiple PHP remote file inclusion vulnerabilities affect the Recly Interactive Feederator (com_feederator) component for Joomla! 1.0.5. Exploitation can occur by supplying a URL via mosConfig_absolute_path to includes/tmsp/add_tmsp.php, edit_tmsp.php, tmsp.php, and via GLOBALS[mosConfig_absolute...

FreeBSD : emacs -- run-python vulnerability (66657bd5-ac92-11dd-b541-001f3b19d541)

Emacs developers report : The Emacs command run-python' launches an interactive Python interpreter. After the Python process starts up, Emacs automatically sends it the line : import emacs which normally imports a script named emacs.py which is distributed with Emacs. This script, which is...

Sun Solaris Text Editors Command Execution Vulnerability

Sun Solaris text editors are prone to a command-execution vulnerability. An attacker may leverage this issue to execute arbitrary commands with the privileges of another user on the affected computer. Sun Solaris 8, 9, and 10 are affected. Sun Solaris 9x86 Update 2 Sun Solaris 9 Sun Solaris 8x86...

CVE-2008-4076

CVE-2008-4076 is an XSS vulnerability affecting multiple Tor World CGI-based products (Tor Board 1.3 and earlier; Topics BBS 1.11 and earlier; Simple BBS 1.86 and earlier; Interactive BBS 1.57 and earlier). Public sources describe an ability for remote attackers to inject arbitrary script/HTML in...

JVN#18616622 Multiple Tor World CGI scripts vulnerable to arbitrary script execution

Tor World provides CGI scripts for implementing search engines, message boards, and other tools. Multiple Tor World CGI scripts contain a vulnerability which may allow an attacker to inject an arbitrary script into the web page which is generated by the affected product. This vulnerability is...

awstats-exec2.txt

\nEx: awtotalh...

AWStats Totals 1.14 - AWStatstotals.php Remote Code Execution

AWStats Totals 1.14 - AWStatstotals.php Remote Code Execution ?php / Remote Execution Exploit for AWStats Totals vulnerability Interactive Shell Version 2 Updated 05/09/08: The exploit now works with magic quotes on or off Author: Ricardo Almeida email: ricardojbaataeiouDoTpt Greetz The hacker...

AWStats Totals 1.14 - 'AWStatstotals.php' Remote Code Execution

m...

awstats-exec.txt

\n"; arrayshift$argv; $host = $argv0; Start the interactive shell while1 fwriteSTDOUT, "shell: "...

Sun Solaris 'namefs' Kernel Local Privilege Escalation Vulnerability

Sun Solaris也容易给当地的特权升级的漏洞。 本地攻击者可以利用这个问题上执行任意代码与内核级的特权。成功利用这个问题将导致被完全控制。 Sun Solaris 9x86 Sun Solaris 9 Sun Solaris 8x86 Sun Solaris 8 Sun Solaris 10.0x86 Sun Solaris 10.0 Avaya Interactive Response 3.0 Avaya Interactive Response 2.0 Avaya CMS Server 13.0 Avaya CMS Server 14.1 Avaya CMS Server 14...

Sun Solaris Platform Information and Control Library picld(1M) Local Denial of S

The Sun Solaris Platform Information and Control Library daemon 'picld1M' is prone to a local denial-of-service vulnerability. A local unprivileged attacker can exploit this issue to disable system monitoring and prevent proper operations of certain system utilities, resulting in a...

Sun Solaris 'sendfilev()' Local Denial of Service Vulnerability

Solaris 'sendfilev' 系统调用造成了本地拒绝服务漏洞。 攻击者可以利用这个问题引发系统挂起，导致在一个拒绝服务。 这个问题影响的Solaris 10和OpenSolaris之前的版本 Sun Solaris 10x86 Sun Solaris 10 Sun OpenSolaris build snv95 Sun OpenSolaris build snv92 Sun OpenSolaris build snv91 Sun OpenSolaris build snv90 Sun OpenSolaris build snv89 Sun OpenSolaris build...