6606 matches found
Absolute Form Processor 4.0 - Insecure Cookie Handling
Absolute Form Processor 4.0 - Insecure Cookie Handling | | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Author : Hakxer Home : Www.educ-up.com Type Gap : Insecure Cookie Handling script : Absolute Form Processor see script...
absoluteform-cookie.txt
| | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Author : Hakxer Home : Www.educ-up.com Type Gap : Insecure Cookie Handling script : Absolute Form Processor see script http://www.xigla.com/absolutefpnet/demo.htm Team : EgY...
Absolute Form Processor 4.0 - Insecure Cookie Handling
| | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Author : Hakxer Home : Www.educ-up.com Type Gap : Insecure Cookie Handling script : Absolute Form Processor see script http://www.xigla.com/absolutefpnet/demo.htm Team : EgY...
Absolute Form Processor 4.0 Insecure Cookie Handling Vulnerability
Exploit for asp platform in category web applications ================================================================== Absolute Form Processor 4.0 Insecure Cookie Handling Vulnerability ================================================================== Author : Hakxer Type Gap : Insecure Cookie...
Mozilla Firefox/SeaMonkey/Thunderbird多个远程漏洞
BUGTRAQ ID: 31346 CVE ID: CVE-2008-3837 CVE-2008-4058 CVE-2008-4059 CVE-2008-4060 CVE-2008-4061 CVE-2008-4062 CVE-2008-4063 CVE-2008-4064 CVE-2008-4065 CVE-2008-4066 CVE-2008-4067 CVE-2008-4068 CVE-2008-4069 CVE-2008-3836 CVE-2008-3835 CVE-2008-0016 CNCVE ID:CNCVE-20083837 CNCVE-20084058...
Asterisk 1.6 IAX - POKE Requests Remote Denial of Service
Asterisk 1.6 IAX - POKE Requests Remote Denial of Service source: https://www.securityfocus.com/bid/30321/info Asterisk is prone to a remote denial-of-service vulnerability because it fails to handle multiple 'POKE' requests in quick succession. Attackers can exploit this issue by sending a...
Asterisk 1.6 IAX - 'POKE' Requests Remote Denial of Service
source: https://www.securityfocus.com/bid/30321/info Asterisk is prone to a remote denial-of-service vulnerability because it fails to handle multiple 'POKE' requests in quick succession. Attackers can exploit this issue by sending a persistent stream of 'POKE' requests that will consume processo...
CentOS 4 : openoffice.org2 (CESA-2008:0537)
Updated openoffice.org packages to correct a security issue are now available for Red Hat Enterprise Linux 4 and Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite that...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Xigla Absolute Form Processor XE 4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 showfields, 2 text, and 3 submissions parameters to search.asp and the 4 name parameter to users.asp. NOTE: some of these details are...
CVE-2008-2759
Multiple cross-site scripting XSS vulnerabilities in Xigla Absolute Form Processor XE 4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 showfields, 2 text, and 3 submissions parameters to search.asp and the 4 name parameter to users.asp. NOTE: some of these details are...
Sql injection
SQL injection vulnerability in search.asp in Xigla Absolute Form Processor XE 4.0 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter...
CVE-2008-2762
SQL injection vulnerability in search.asp in Xigla Absolute Form Processor XE 4.0 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter...
CVE-2008-2759
Multiple cross-site scripting XSS vulnerabilities in Xigla Absolute Form Processor XE 4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 showfields, 2 text, and 3 submissions parameters to search.asp and the 4 name parameter to users.asp. NOTE: some of these details are...
CVE-2008-2762
SQL injection vulnerability in search.asp in Xigla Absolute Form Processor XE 4.0 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter...
CVE-2008-2759
Multiple cross-site scripting XSS vulnerabilities in Xigla Absolute Form Processor XE 4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 showfields, 2 text, and 3 submissions parameters to search.asp and the 4 name parameter to users.asp. NOTE: some of these details are...
CVE-2008-2762
SQL injection vulnerability in search.asp in Xigla Absolute Form Processor XE 4.0 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter...
CVE-2008-2762
The CVE-2008-2762 entry describes a SQL injection in the search.asp component of Xigla Absolute Form Processor XE 4.0. The vulnerability allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter, indicating a server-side input handling flaw in the sear...
CVE-2008-2759
The CVE-2008-2759 entry concerns the Xigla Absolute Form Processor XE 4.0, with multiple XSS vulnerabilities. The issue affects parameters in search.asp (showfields, text, submissions) and users.asp (name), enabling remote attackers to inject arbitrary web script or HTML. The description does not...
Stack overflow
Off-by-one error in the readclient function in webhttpd.c in Motion 3.2.10 and earlier might allow remote attackers to execute arbitrary code via a long request to a Motion HTTP Control interface, which triggers a stack-based buffer overflow with some combinations of processor architecture and...
CVE-2008-2654
Off-by-one error in the readclient function in webhttpd.c in Motion 3.2.10 and earlier might allow remote attackers to execute arbitrary code via a long request to a Motion HTTP Control interface, which triggers a stack-based buffer overflow with some combinations of processor architecture and...