5335 matches found
CVE-2005-4506
Nexus Concepts Dev Hound 2.24 and earlier stores username and password information in cleartext in the devhound.tdbd file, which allows local users to gain privileges...
CVE-2005-4507
Multiple cross-site scripting XSS vulnerabilities in Nexus Concepts Dev Hound 2.24 and earlier allow remote attackers to inject arbitrary web script or HTML via multiple unspecified user input fields...
CVE-2005-4508
CVE-2005-4508 affects Nexus Concepts Dev Hound (versions 2.24 and earlier). The vulnerability allows remote attackers to discover the installation path by requesting a URL containing a non-existent .dll file, exposing partial confidentiality via a path disclosure. The available documents do not s...
CVE-2005-4507
CVE-2005-4507 documents multiple cross-site scripting (XSS) vulnerabilities in Nexus Concepts Dev Hound 2.24 and earlier. Affected component: the web application’s user input handling where unvalidated inputs can lead to script/HTML injection. Impact is partial integrity compromise of affected pa...
CVE-2005-4506
Nexus Concepts Dev Hound 2.24 and earlier stores usernames and passwords in cleartext in the devhound.tdbd file, enabling local users to gain privileges. Affected component: Dev Hound data store file devhound.tdbd. Root cause: credentials saved in cleartext. Impact: local privilege escalation if ...
CVE-2005-4506
Nexus Concepts Dev Hound 2.24 and earlier stores username and password information in cleartext in the devhound.tdbd file, which allows local users to gain privileges...
CVE-2005-4507
Multiple cross-site scripting XSS vulnerabilities in Nexus Concepts Dev Hound 2.24 and earlier allow remote attackers to inject arbitrary web script or HTML via multiple unspecified user input fields...
CVE-2005-4508
Nexus Concepts Dev Hound 2.24 and earlier allows remote attackers to obtain the installation path via a URL containing a non-existent .dll file...
CVE-2005-4056
SQL injection vulnerability in search.php in PluggedOut Nexus 0.1 allows remote attackers to execute arbitrary SQL commands via the 1 Location, 2 Last Name, and 3 First Name parameters...
CVE-2005-4057
CVE-2005-4057 describes a Cross-site scripting (XSS) vulnerability in the PluggedOut Nexus 0.1 project, specifically in search.php. The vulnerability allows remote attackers to inject arbitrary web script or HTML through the (1) Location, (2) Last Name, and (3) First Name parameters. The entries ...
CVE-2005-4056
CVE-2005-4056 describes a SQL injection vulnerability in the search.php component of PluggedOut Nexus 0.1. The flaw allows remote attackers to manipulate the database by injecting SQL through the Location, Last Name, and First Name parameters. The vulnerability is documented with a high impact po...
CVE-2005-4057
Cross-site scripting XSS vulnerability in search.php in PluggedOut Nexus 0.1 allows remote attackers to inject arbitrary web script or HTML via the 1 Location, 2 Last Name, and 3 First Name parameters...
CVE-2005-4056
SQL injection vulnerability in search.php in PluggedOut Nexus 0.1 allows remote attackers to execute arbitrary SQL commands via the 1 Location, 2 Last Name, and 3 First Name parameters...
PluggedOut Nexus SQL&XSS vuln.
PluggedOut Nexus SQL&XSS vuln. Vuln. dicovered by : r0t Date: 6 dec. 2005 Orginal advisory:http://pridels.blogspot.com/2005/12/pluggedout-nexus-sqlxss-vuln06.html vendor:www.pluggedout.com/index.php?pk=devnexus affected version:0.1 Product Description: Nexus is an open source script you can run o...
Linux news 11.05.00
nmap 2.53 Вышла новая версия утилиты, предназначенной для сканирования сетей и отдельных хостов - nmap. Подробнее: http://www.appwatch.com/Linux/Library/81/view.html Red Hat создала инвестиционное подразделение для финансирования молодых компаний Компания Red Hat объявила о создании нового...