4727 matches found
CVE-2011-1691
The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in the Cascading Style Sheets CSS implementation in WebCore in WebKit before r82222, as used in Google Chrome before 11.0.696.43 and other products, does not properly handle access to the 1 counterIncrement and 2 counterReset...
HTB22917: XSS vulnerabilities in phpCollab
Vulnerability ID: HTB22917 Reference: http://www.htbridge.ch/advisory/xssvulnerabilitiesinphpcollab.html Product: phpCollab Vendor: phpCollab Team http://www.php-collab.org/ Vulnerable Version: 2.5 and probably prior versions Vendor Notification: 24 March 2011 Vulnerability Type: Stored XSS Cross...
phpCollab 2.5 XSRF / XSS / Path Disclosure
================================= Vulnerability ID: HTB22918 Reference: http://www.htbridge.ch/advisory/pathdisclosureinphpcollab.html Product: phpCollab Vendor: phpCollab Team http://www.php-collab.org/ Vulnerable Version: 2.5 and probably prior versions Vendor Notification: 24 March 2011...
Eleanor CMS rc5 Cross Site Scripting / SQL Injection
================================= Vulnerability ID: HTB22912 Reference: http://www.htbridge.ch/advisory/multiplesqlinjectionsineleanorcms.html Product: Eleanor CMS Vendor: Eleanor CMS http://eleanor-cms.ru/ Vulnerable Version: rc5 Vendor Notification: 22 March 2011 Vulnerability Type: SQL Injecti...
InTerra Blog Machine 1.84 - Cross-Site Scripting
InTerra Blog Machine 1.84 - Cross-Site Scripting Vulnerability ID: HTB22931 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininterrablogmachin e.html Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably...
HTB22901: SQL injection in SyndeoCMS
Vulnerability ID: HTB22901 Reference: http://www.htbridge.ch/advisory/sqlinjectioninsyndeocms.html Product: SyndeoCMS Vendor: http://www.syndeocms.org/ http://www.syndeocms.org/ Vulnerable Version: 2.8.02 Vendor Notification: 10 March 2011 Vulnerability Type: SQL injection Risk level: High Credit...
Web Poll Pro 1.0.3 Cross Site Scripting
Product: Web Poll Pro Vendor: http://www.got.my Vulnerable Version: 1.0.3 and probably prior versions Vulnerability Type: Stored XSS Cross Site Scripting Risk level: Medium Credit: Hector.x90 Vulnerability Details: User can execute arbitrary JavaScript code within the vulnerable application. The...
SuSE 11 Security Update : Mozilla (SAT Patch Number 1328)
This update brings the Mozilla XULRunner engine to the 1.9.0.14 stable release. It also fixes various security issues : - / CVE-2009-30 /. MFSA 2009-47 / CVE-2009-3069 / CVE-2009-3070 / CVE-2009-3071 / CVE-2009-3072 / CVE-2009-3073 - Mozilla developers and community members identified and fixed...
CVE-2011-0158
MobileSafari in Apple iOS before 4.3 does not properly implement application launching through URL handlers, which allows remote attackers to cause a denial of service persistent application crash via crafted JavaScript code...
CVE-2011-0158
Summary of CVE-2011-0158 (Apple iOS/MobileSafari) : The issue affects MobileSafari on iOS prior to 4.3 where launching applications via URL handlers is not implemented correctly. This allows remote attackers to trigger a denial of service through crafted JavaScript, resulting in persistent applic...
CVE-2011-1186
Google Chrome before 10.0.648.127 on Linux does not properly handle parallel execution of calls to the print method, which might allow remote attackers to cause a denial of service application crash via crafted JavaScript code...
Code injection
Google Chrome before 10.0.648.127 on Linux does not properly handle parallel execution of calls to the print method, which might allow remote attackers to cause a denial of service application crash via crafted JavaScript code...
CVE-2011-1186
Google Chrome before 10.0.648.127 on Linux does not properly handle parallel execution of calls to the print method, which might allow remote attackers to cause a denial of service application crash via crafted JavaScript code...
CVE-2011-1186
Removed by vendor...
HTB22880: XSS vulnerability in CosmoShop
Vulnerability ID: HTB22880 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincosmoshop1.html Product: CosmoShop Vendor: Zaunz Publishing GmbH http://www.cosmoshop.de/ Vulnerable Version: ePRO V10.05.00 Vendor Notification: 24 February 2011 Vulnerability Type: Stored XSS Cross Site...
PhotoSmash 1.0.1 Cross Site Scripting
Vulnerability ID: HTB22867 Reference: http://www.htbridge.ch/advisory/xssinphotosmashwordpressplugin.html Product: PhotoSmash wordpress plugin Vendor: Byron Bennett http://smashly.net/ Vulnerable Version: 1.0.1 Vendor Notification: 22 February 2011 Vulnerability Type: XSS Cross Site Scripting...
HTB22856: XSS vulnerability in Pragyan CMS
Vulnerability ID: HTB22856 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinpragyancms1.html Product: Pragyan CMS Vendor: Pragyan Team http://sourceforge.net/projects/pragyan/ Vulnerable Version: v.3.0 beta Vendor Notification: 17 February 2011 Vulnerability Type: Stored XSS Cross Sit...
HTB22863: XSS vulnerability in xtcModified
Vulnerability ID: HTB22863 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinxtcmodified.html Product: xtcModified Vendor: xtcModified Team http://www.xtc-modified.org/ Vulnerable Version: 1.05 and probably prior versions Vendor Notification: 17 February 2011 Vulnerability Type: XSS...
HTB22861: XSS in Question and Answer Forum wordpress plugin
Vulnerability ID: HTB22861 Reference: http://www.htbridge.ch/advisory/xssinquestionandanswerforumwordpressplugin.html Product: Question and Answer Forum wordpress plugin Vendor: David Woodford hhttp://trevorpythag.co.uk Vulnerable Version: 1.2.4 Vendor Notification: 15 February 2011 Vulnerability...
HTB22831: XSS vulnerability in Gollos
Vulnerability ID: HTB22831 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityingollos.html Product: Gollos Vendor: Gollos http://www.gollos.com/ Vulnerable Version: 2.8 and probably prior versions Vendor Notification: 01 February 2011 Vulnerability Type: XSS Cross Site Scripting Risk...