3987 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in the Menu module modules/menu/menu.admin.inc in Drupal Core 6.x before 6.15 allows remote authenticated users with permissions to create new menus to inject arbitrary web script or HTML via a menu description, which is not properly handled in the menu...
CVE-2009-4370
Cross-site scripting XSS vulnerability in the Menu module modules/menu/menu.admin.inc in Drupal Core 6.x before 6.15 allows remote authenticated users with permissions to create new menus to inject arbitrary web script or HTML via a menu description, which is not properly handled in the menu...
CVE-2009-4370
CVE-2009-4370 affects Drupal Core 6.x up to 6.14/6.15 via the Menu module (menu.admin.inc). An XSS flaw allows authenticated users with permission to create new menus to inject arbitrary HTML/script through a menu description, which is not properly sanitized in the menu administration overview. I...
SA-CORE-2009-009 - Drupal Core - Cross site scripting
Multiple vulnerabilities were discovered in Drupal. Contact category name cross-site scripting The Contact module does not correctly handle certain user input when displaying category information. Users privileged to create contact categories can insert arbitrary HTML and script code into the...
drupal -- multiple cross-site scripting
Drupal Team reports: The Contact module does not correctly handle certain user input when displaying category information. Users privileged to create contact categories can insert arbitrary HTML and script code into the contact module administration page. Such a cross-site scripting attack may le...
Command injection
Multiple unspecified vulnerabilities in Common Desktop Environment CDE in Sun Solaris 10, when Trusted Extensions is enabled, allow local users to execute arbitrary commands or bypass the Mandatory Access Control MAC policy via unknown vectors, related to a menu typo and the Style Manager...
Sql injection
Multiple SQL injection vulnerabilities in Open Source Security Information Management OSSIM before 2.1.2 allow remote authenticated users to execute arbitrary SQL commands via the iddocument parameter to 1 repositorydocument.php, 2 repositorylinks.php, and 3 repositoryeditdocument.php in...
[SECURITY] Fedora 10 Update: kdebase-workspace-4.3.1-1.fc10
The KDE Workspace consists of what is the desktop of the KDE Desktop Environment. This package contains: khotkeys a hotkey daemon klipper a cut & paste history utility kmenuedit the menu editor krandrtray resize and rotate X screens krunner a command run interface ksysguard a performance monitor...
MP3 Collector 2.3 - .m3u Local Crash (PoC)
MP3 Collector 2.3 - .m3u Local Crash PoC !/usr/bin/perl MP3 Collector 2.3 m3u File Local Crash PoC By : zAx Application Homepage : http://collectorz.com Application Download : http://downloads.collectorz.com/mp3collectorsetup.exe Go to Playlist menu, select Open Playlist, Select the File and a...
MP3 Collector 2.3 (m3u File) Local Crash PoC
Exploit for unknown platform in category dos / poc ============================================ MP3 Collector 2.3 m3u File Local Crash PoC ============================================ !/usr/bin/perl MP3 Collector 2.3 m3u File Local Crash PoC By : zAx Application Homepage : http://collectorz.com...
MP3 Collector 2.3 - '.m3u' Local Crash (PoC)
!/usr/bin/perl MP3 Collector 2.3 m3u File Local Crash PoC By : zAx Application Homepage : http://collectorz.com Application Download : http://downloads.collectorz.com/mp3collectorsetup.exe Go to Playlist menu, select Open Playlist, Select the File and a click on file name. $header = "http://";...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in LinPHA before 1.3.3 allow remote attackers to inject arbitrary web script or HTML via 1 ftp/index.php, 2 viewer.php, 3 functions/other.php, 4 include/leftmenu.class.php, or 5 plugins/stats/statsview.php...
Logout is not working on QA-EAC
Select 'Log Out' from the user menu. Note that you haven't been logged out...
Logout is not working on QA-EAC
Select 'Log Out' from the user menu. Note that you haven't been logged out...
Logout is not working on QA-EAC
Select 'Log Out' from the user menu. Note that you haven't been logged out...
CVE-2009-3056
PHP remote file inclusion vulnerability in include/engine/content/elements/menu.php in KingCMS 0.6.0 allows remote attackers to execute arbitrary PHP code via a URL in the CONFIGAdminPath parameter...
RadASM 2.2.1.6 Menu Editor Stack Overflow
RadASM 2.2.1.6 Menu Editor .mnu file stack overlow PoC Coded by Pankaj Kohli http://www.pank4j.com $str="A"x146; $file="sploit.mnu"; openmy $FILE, "$file" or die "Error opening file.n"; print $FILE $str ; close$FILE; print "$file has been created.n";...
RadASM 2.2.1.6 Menu Editor - .mnu Stack Overflow (PoC)
RadASM 2.2.1.6 Menu Editor - .mnu Stack Overflow PoC RadASM 2.2.1.6 Menu Editor .mnu file stack overlow PoC Coded by Pankaj Kohli http://www.pank4j.com $str="A"x146; $file="sploit.mnu"; openmy $FILE, "$file" or die "Error opening file.n"; print $FILE $str ; close$FILE; print "$file has been...
RadASM 2.2.1.6 Menu Editor (.mnu) Stack Overflow PoC
Exploit for unknown platform in category dos / poc ==================================================== RadASM 2.2.1.6 Menu Editor .mnu Stack Overflow PoC ==================================================== RadASM 2.2.1.6 Menu Editor .mnu file stack overlow PoC Coded by Pankaj Kohli $str="A"x146...
RadASM 2.2.1.6 Menu Editor (.mnu) Stack Overflow PoC
No description provided by source. RadASM 2.2.1.6 Menu Editor .mnu file stack overlow PoC Coded by Pankaj Kohli http://www.pank4j.com $str="A"x146; $file="sploit.mnu"; openmy $FILE, "$file" or die "Error opening file.n"; print $FILE $str ; close$FILE; print "$file has been created.n"; sebug.net...