4727 matches found
Prometeo 1.0.65 SQL Injection
// / ////// //////// /// / / / / // / / / / /// //////// / / // / / / // / // /// //////// // ================================= Prometeo vers. 1.0.65 -SQLi Vulnerability- ================================= -Vulnerability ID: LD3-Product: Prometeo-Vendor: Prometeo...
Prometeo v1.0.65 SQL Injection Vulnerability
Exploit for php platform in category web applications ============================================ Prometeo v1.0.65 SQL Injection Vulnerability ============================================ Prometeo vers. 1.0.65 -SQLi Vulnerability- ================================= -Vulnerability ID: LD3-Product:...
Prometeo 1.0.65 - SQL Injection
Prometeo 1.0.65 - SQL Injection // / ////// //////// /// / / / / // / / / / /// //////// / / // / / / // / // /// //////// // ================================= Prometeo vers. 1.0.65 -SQLi Vulnerability- ================================= -Vulnerability ID: LD3-Product: Prometeo-Vendor: Prometeo...
XSS vulnerability in CMSimple
Vulnerability ID: HTB22558 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincmsimple.html Product: CMSimple Vendor: Peter Andreas Harteg http://www.cmsimple.org/ Vulnerable Version: 3.3 and Probably Prior Versions Vendor Notification: 02 August 2010 Vulnerability Type: XSS Cross Site...
XSS vulnerability in Onyx
Vulnerability ID: HTB22536 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinonyx.html Product: Onyx Vendor: Hulihan Applications http://hulihanapplications.com/projects/onyx Vulnerable Version: 0.3.2 and Probably Prior Versions Vendor Notification: 27 July 2010 Vulnerability Type: XSS...
XSS vulnerability in i-Web Suite
Vulnerability ID: HTB22544 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityiniwebsuite.html Product: i-Web Suite Vendor: immediaC world wide Inc http://www.immediac.com/ Vulnerable Version: Current at 27.07.2010 and Probably Prior Versions Vendor Notification: 27 July 2010 Vulnerabilit...
i-Web Suite SQL Injection / Cross Site Scripting
========================================= Vulnerability ID: HTB22544 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityiniwebsuite.html Product: i-Web Suite Vendor: immediaC world wide Inc http://www.immediac.com/ Vulnerable Version: Current at 27.07.2010 and Probably Prior Versions Vend...
KnowledgeTree 3.5.2 Community Edition - Persistent Cross-Site Scripting
Exploit Title: KnowledgeTree 3.5.2 Community Edition Permanent XSS Vulnerability Date: 2010-08-11 Author: @fdiskyou e-mail: rui at deniable.org Software Link: http://www.knowledgetree.com/products/community/download Version: 3.5.2 Notes: Fixed in the last version. Go to search box or search...
KnowledgeTree 3.5.2 Community Edition Permanent XSS Vulnerability
Exploit for php platform in category web applications ================================================================= KnowledgeTree 3.5.2 Community Edition Permanent XSS Vulnerability ================================================================= Exploit Title: KnowledgeTree 3.5.2 Community...
XSS vulnerability in Amethyst
Vulnerability ID: HTB22501 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinamethyst1.html Product: Amethyst Vendor: Hulihan Applications http://hulihanapplications.com/projects/amethyst Vulnerable Version: 0.1.5 and Probably Prior Versions Vendor Notification: 22 July 2010...
XSS vulnerability in DT Centrepiece
Vulnerability ID: HTB22519 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityindtcentrepiece.html Product: DT Centrepiece Vendor: DT Services http://www.dt.net.nz/ Vulnerable Version: 4.5 and Probably Prior Versions Vendor Notification: 22 July 2010 Vulnerability Type: XSS Cross Site...
XSS vulnerability in SiteLoom CMS
Vulnerability ID: HTB22516 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinsiteloomcms.html Product: SiteLoom CMS Vendor: SiteLoom ApS http://www.siteloom.dk/ Vulnerable Version: Current at 21.07.2010 and Probably Prior Versions Vendor Notification: 22 July 2010 Vulnerability Type: X...
Amethyst 0.1.5 - Cross-Site Scripting
Vulnerability ID: HTB22502 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinamethyst2.html Product: Amethyst Vendor: Hulihan Applications http://hulihanapplications.com/projects/amethyst Vulnerable Version: 0.1.5 and Probably Prior Versions Vendor Notification: 22 July 2010...
Amethyst 0.1.5 - Cross-Site Scripting
Amethyst 0.1.5 - Cross-Site Scripting Vulnerability ID: HTB22502 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinamethyst2.html Product: Amethyst Vendor: Hulihan Applications http://hulihanapplications.com/projects/amethyst Vulnerable Version: 0.1.5 and Probably Prior Versions Vendor...
CVE-2010-1215
Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper aka SJOW wrapper, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging "access to an object...
Design/Logic Flaw
Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper aka SJOW wrapper, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging "access to an object...
CVE-2010-1796
The AutoFill feature in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to obtain sensitive Address Book Card information via JavaScript code that forces keystroke events for input fields...
Internet Explorer Script Engine Stack Exhaustion (CVE-2006-0753)
A stack exhaustion vulnerability exists in the Microsoft Internet Explorer Script Engine. The flaw is caused by certain types of recursive function calls in Javascript code. An attacker can exploit this vulnerability to cause a denial of service condition of the vulnerable application. In an atta...
CVE-2010-1215
Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper aka SJOW wrapper, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging "access to an object...
XSS vulnerability in WebPress
Vulnerability ID: HTB22478 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinwebpress.html Product: WebPress Vendor: YWP http://www.goywp.com/ Vulnerable Version: Current at 01.07.2010 and Probably Prior Versions Vendor Notification: 01 July 2010 Vulnerability Type: XSS Cross Site...