Lucene search
K

3987 matches found

Prion
Prion
added 2009/12/21 4:30 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Menu module modules/menu/menu.admin.inc in Drupal Core 6.x before 6.15 allows remote authenticated users with permissions to create new menus to inject arbitrary web script or HTML via a menu description, which is not properly handled in the menu...

3.5CVSS5.7AI score0.00887EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2009/12/21 4:30 p.m.27 views

CVE-2009-4370

Cross-site scripting XSS vulnerability in the Menu module modules/menu/menu.admin.inc in Drupal Core 6.x before 6.15 allows remote authenticated users with permissions to create new menus to inject arbitrary web script or HTML via a menu description, which is not properly handled in the menu...

3.5CVSS5.9AI score0.00887EPSS
Exploits0References1
CVE
CVE
added 2009/12/21 4:0 p.m.57 views

CVE-2009-4370

CVE-2009-4370 affects Drupal Core 6.x up to 6.14/6.15 via the Menu module (menu.admin.inc). An XSS flaw allows authenticated users with permission to create new menus to inject arbitrary HTML/script through a menu description, which is not properly sanitized in the menu administration overview. I...

3.5CVSS5.2AI score0.00887EPSS
Exploits0References5Affected Software1
Drupal
Drupal
added 2009/12/16 12:0 a.m.494 views

SA-CORE-2009-009 - Drupal Core - Cross site scripting

Multiple vulnerabilities were discovered in Drupal. Contact category name cross-site scripting The Contact module does not correctly handle certain user input when displaying category information. Users privileged to create contact categories can insert arbitrary HTML and script code into the...

6.1AI score
Exploits0References11
FreeBSD
FreeBSD
added 2009/12/16 12:0 a.m.27 views

drupal -- multiple cross-site scripting

Drupal Team reports: The Contact module does not correctly handle certain user input when displaying category information. Users privileged to create contact categories can insert arbitrary HTML and script code into the contact module administration page. Such a cross-site scripting attack may le...

3.5CVSS6.1AI score0.00887EPSS
Exploits0References1
Prion
Prion
added 2009/09/29 7:30 p.m.19 views

Command injection

Multiple unspecified vulnerabilities in Common Desktop Environment CDE in Sun Solaris 10, when Trusted Extensions is enabled, allow local users to execute arbitrary commands or bypass the Mandatory Access Control MAC policy via unknown vectors, related to a menu typo and the Style Manager...

6.9CVSS7.8AI score0.0036EPSS
Exploits0References9Affected Software1
Prion
Prion
added 2009/09/28 10:30 p.m.12 views

Sql injection

Multiple SQL injection vulnerabilities in Open Source Security Information Management OSSIM before 2.1.2 allow remote authenticated users to execute arbitrary SQL commands via the iddocument parameter to 1 repositorydocument.php, 2 repositorylinks.php, and 3 repositoryeditdocument.php in...

6.5CVSS8.9AI score0.00855EPSS
Exploits1References4Affected Software1
Fedora
Fedora
added 2009/09/15 7:41 a.m.20 views

[SECURITY] Fedora 10 Update: kdebase-workspace-4.3.1-1.fc10

The KDE Workspace consists of what is the desktop of the KDE Desktop Environment. This package contains: khotkeys a hotkey daemon klipper a cut & paste history utility kmenuedit the menu editor krandrtray resize and rotate X screens krunner a command run interface ksysguard a performance monitor...

7.5CVSS1AI score0.01257EPSS
Exploits0
exploitpack
exploitpack
added 2009/09/15 12:0 a.m.11 views

MP3 Collector 2.3 - .m3u Local Crash (PoC)

MP3 Collector 2.3 - .m3u Local Crash PoC !/usr/bin/perl MP3 Collector 2.3 m3u File Local Crash PoC By : zAx Application Homepage : http://collectorz.com Application Download : http://downloads.collectorz.com/mp3collectorsetup.exe Go to Playlist menu, select Open Playlist, Select the File and a...

0.5AI score
Exploits0
0day.today
0day.today
added 2009/09/15 12:0 a.m.28 views

MP3 Collector 2.3 (m3u File) Local Crash PoC

Exploit for unknown platform in category dos / poc ============================================ MP3 Collector 2.3 m3u File Local Crash PoC ============================================ !/usr/bin/perl MP3 Collector 2.3 m3u File Local Crash PoC By : zAx Application Homepage : http://collectorz.com...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2009/09/15 12:0 a.m.42 views

MP3 Collector 2.3 - '.m3u' Local Crash (PoC)

!/usr/bin/perl MP3 Collector 2.3 m3u File Local Crash PoC By : zAx Application Homepage : http://collectorz.com Application Download : http://downloads.collectorz.com/mp3collectorsetup.exe Go to Playlist menu, select Open Playlist, Select the File and a click on file name. $header = "http://";...

7AI score
Exploits0
Prion
Prion
added 2009/09/14 2:30 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in LinPHA before 1.3.3 allow remote attackers to inject arbitrary web script or HTML via 1 ftp/index.php, 2 viewer.php, 3 functions/other.php, 4 include/leftmenu.class.php, or 5 plugins/stats/statsview.php...

4.3CVSS6AI score0.01199EPSS
Exploits1References4Affected Software1
Atlassian
Atlassian
added 2009/09/07 12:12 a.m.20 views

Logout is not working on QA-EAC

Select 'Log Out' from the user menu. Note that you haven't been logged out...

1.2AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/09/07 12:12 a.m.28 views

Logout is not working on QA-EAC

Select 'Log Out' from the user menu. Note that you haven't been logged out...

1.2AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/09/07 12:12 a.m.26 views

Logout is not working on QA-EAC

Select 'Log Out' from the user menu. Note that you haven't been logged out...

1.2AI score
Exploits0
NVD
NVD
added 2009/09/03 5:30 p.m.13 views

CVE-2009-3056

PHP remote file inclusion vulnerability in include/engine/content/elements/menu.php in KingCMS 0.6.0 allows remote attackers to execute arbitrary PHP code via a URL in the CONFIGAdminPath parameter...

7.5CVSS7.5AI score0.02086EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2009/08/05 12:0 a.m.23 views

RadASM 2.2.1.6 Menu Editor Stack Overflow

RadASM 2.2.1.6 Menu Editor .mnu file stack overlow PoC Coded by Pankaj Kohli http://www.pank4j.com $str="A"x146; $file="sploit.mnu"; openmy $FILE, "$file" or die "Error opening file.n"; print $FILE $str ; close$FILE; print "$file has been created.n";...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2009/08/04 12:0 a.m.14 views

RadASM 2.2.1.6 Menu Editor - .mnu Stack Overflow (PoC)

RadASM 2.2.1.6 Menu Editor - .mnu Stack Overflow PoC RadASM 2.2.1.6 Menu Editor .mnu file stack overlow PoC Coded by Pankaj Kohli http://www.pank4j.com $str="A"x146; $file="sploit.mnu"; openmy $FILE, "$file" or die "Error opening file.n"; print $FILE $str ; close$FILE; print "$file has been...

0.6AI score
Exploits0
0day.today
0day.today
added 2009/08/04 12:0 a.m.37 views

RadASM 2.2.1.6 Menu Editor (.mnu) Stack Overflow PoC

Exploit for unknown platform in category dos / poc ==================================================== RadASM 2.2.1.6 Menu Editor .mnu Stack Overflow PoC ==================================================== RadASM 2.2.1.6 Menu Editor .mnu file stack overlow PoC Coded by Pankaj Kohli $str="A"x146...

7AI score
Exploits0
seebug.org
seebug.org
added 2009/08/04 12:0 a.m.19 views

RadASM 2.2.1.6 Menu Editor (.mnu) Stack Overflow PoC

No description provided by source. RadASM 2.2.1.6 Menu Editor .mnu file stack overlow PoC Coded by Pankaj Kohli http://www.pank4j.com $str="A"x146; $file="sploit.mnu"; openmy $FILE, "$file" or die "Error opening file.n"; print $FILE $str ; close$FILE; print "$file has been created.n"; sebug.net...

7.1AI score
Exploits0
Rows per page
Query Builder