7647 matches found
WordPress 3.3.1 Post-Auth Cross Site Scripting
TITLE ....... Wordpress 3.3.1 post-auth persistent XSS ............ DATE ........ 18.02.2012 .......................................... AUTOHR ...... http://hauntit.blogspot.com ......................... SOFT LINK ... http://wordpress.org ................................ VERSION ..... 1.0.0...
redmine -- multiple vulnerabilities
Redmine reports: Mass-assignment vulnerability that would allow an attacker to bypass part of the security checks. Persistent XSS vulnerability...
Zend Server 5.6.0 Script Insertion
!-- Title: Zend Server 5.6.0 Multiple Remote Script Insertion Vulnerabilities Vendor: Zend Technologies Ltd. Product web page: http://www.zend.com Affected version: Zend Server 5.6.0 Zend Optimizer+ 4.1 Zend Code Tracing 1.0 Zend Data Cache 4.0 Zend Job Queue 4.0 Zend Debugger 5.3 Zend Java Bridg...
ActivaDigital- XSS / SQL Injection Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
Ilient SysAid 8.5.5 - Multiple Cross-Site Scripting HTML Injection Vulnerabilities
Ilient SysAid 8.5.5 - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/52356/info Ilient SysAid is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attacker...
Toenda CMS 1.6.2 Osaka Stable Local File Inclusion
============TOENDA CMS 1.6.2 OSAKA "STABLE" MULTIPLE VULNERABILITIES============ Vulnerable Software: toendaCMS1.6.2OsakaStable Developed by: http://www.toendacms.org/index.php/en/open/download.html toenda.com http://www.toendacms.org/index.php/en/open/download.html Downloaded from:...
Enterasys SecureStack Switch v6.x - Multiple Vulnerabilities
Document Title: =============== Enterasys SecureStack Switch v6.x - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=443 Release Date: ============= 2012-03-07 Vulnerability Laboratory ID VL-ID: ===================================...
Barracuda CudaTel v2.0.029.1 - Multiple Vulnerabilities
Document Title: =============== Barracuda CudaTel v2.0.029.1 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=442 Release Date: ============= 2012-03-07 Vulnerability Laboratory ID VL-ID: ==================================== 442...
Ilient SysAid v8.5.05 - Multiple Web Vulnerabilities
Document Title: =============== Ilient SysAid v8.5.05 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=470 Release Date: ============= 2012-03-07 Vulnerability Laboratory ID VL-ID: ==================================== 470...
LDAP Account Manager Pro 3.6 跨站脚本和HTML注入漏洞
LDAP Account Manager LAM是一个基于浏览器的LDAP帐号管理系统 LDAP Account Manager LAM存在多个持久型输入校验漏洞,允许攻击者在应用程序段实现恶意脚本代码,成功利用漏洞操作数据或劫持会话user/mod/admin 另外也受客户端跨站脚本漏洞,允许攻击者劫持目标用户/admin会话 0 LDAP Account Manager Pro 3.6 厂商解决方案 目前没有详细解决方案提供: http://lam.sourceforge.net/index.htm...
LDAP Account Manager Pro 3.6 Cross Site Scripting
Title: ====== LDAP Account Manager Pro v3.6 - Multiple Vulnerabilities Date: ===== 2012-03-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=458 VL-ID: ===== 458 Introduction: ============= LDAP Account Manager Pro is an extended version of LAM which focuses on...
Elefant CMS 1.0.2 Cross Site Scripting
elefantcms vendor: http://www.elefantcms.com Version: Latest stable release: 1.0.2 Author: Karthik R 3psil0nLambDa Email: [email protected] My blog: www.epsilonlambda.wordpress.com Google dork: Powered by Elefant CMS...
CMS Builder 2.14 Cross Site Scripting
CMS Builder vendor: http://www.interactivetools.com/ Version: CMS Builder 2.14 Author: Karthik R 3psil0nLambDa Email: [email protected] My blog: www.epsilonlambda.wordpress.com Google dork: Website powered by CMS Builder...
LDAP Account Manager Pro v3.6 - Multiple Vulnerabilities
Document Title: =============== LDAP Account Manager Pro v3.6 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=458 Release Date: ============= 2012-03-01 Vulnerability Laboratory ID VL-ID: ==================================== 45...
Wolf CMS 0.7.5 - Multiple Vulnerabilities
Wolf CMS 0.7.5 - Multiple Vulnerabilities Title: ====== Wolf CMS v0.7.5 - Multiple Web Vulnerabilities Date: ===== 2012-02-27 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=452 VL-ID: ===== 452 Introduction: ============= Wolf CMS is a content management system and is...
Wolf CMS 0.7.5 Cross Site Scripting / SQL Injection
Exploit for php platform in category web applications Title: ====== Wolf CMS 0.7.5 Cross Site Scripting / SQL Injection Date: ===== 2012-02-27 Introduction: ============= Wolf CMS is a content management system and is Free Software published under the GNU General Public License v3. Wolf CMS is...
Yealink VOIP Phone Persistent Cross Site Scripting Vulnerability
Exploit for hardware platform in category web applications Title: Yealink VOIP Phone Persistent Cross Site Scripting Vulnerability Product: Yealink Easy VOIP Phone Homepage: http://www.yealink.com/ Impact: Medium Authentication: Required CVE: CVE-2012-1417 Found: 2012-02-21 Author: Narendra Shind...
Yealink VOIP Phone Cross Site Scripting
============================================================== Secur-I Research Group Security Advisory SV-2012-005 ============================================================== Title: Yealink VOIP Phone Persistent Cross Site Scripting Vulnerability Product: Yealink Easy VOIP Phone Homepage:...
Wolf CMS 0.7.5 - Multiple Vulnerabilities
Title: ====== Wolf CMS v0.7.5 - Multiple Web Vulnerabilities Date: ===== 2012-02-27 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=452 VL-ID: ===== 452 Introduction: ============= Wolf CMS is a content management system and is Free Software published under the GNU...
PayPal Revises Privacy Policy, User Agreement Policy
PayPal announced that it is changing both its privacy and user agreement policies, adding tweaks to its customer identification program and the way it collects and stores its customers’ personal information. The changes will take effect on April 1. Under the new policy, Paypal may collect...