CVE-2013-1083

Unspecified vulnerability in the login functionality in the Reporting Module in Novell Identity Manager aka IDM Roles Based Provisioning Module 4.0.2 before Field Patch C has unknown impact and attack vectors...

CVE-2013-1083

CVE-2013-1083 affects Novell Identity Manager RBPM 4.0.2 before Field Patch C in the Reporting Module’s login functionality. The provided descriptions state an unspecified vulnerability with unknown impact and attack vectors; no concrete root cause, exploit details, or fixed version are given in ...

CVE-2010-0114

fwcharts.php in the reporting module in the Manager aka SEPM component in Symantec Endpoint Protection SEP 11.x before 11 RU6 MP2 allows remote attackers to bypass intended restrictions on report generation, overwrite arbitrary PHP scripts, and execute arbitrary code via a crafted request...

Symantec Endpoint Protection File Overwrite

SUMMARY Symantec Endpoint Protection SEP Manager reporting module allows a php file overwrite from an authorized client that could potentially allow execution of arbitrary code on the server-side. AFFECTED PRODUCTS Product | Version | Solution ---|---|--- Symantec Endpoint Protection | 11.x |...

CVE-2009-0857

Cross-site scripting XSS vulnerability in /prm/reports in the Performance Reporting Module PRM for Sun Management Center SunMC 3.6.1 and 4.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: this can be leveraged for access to the SunMC Web Console...

Cross site scripting

Cross-site scripting XSS vulnerability in /prm/reports in the Performance Reporting Module PRM for Sun Management Center SunMC 3.6.1 and 4.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: this can be leveraged for access to the SunMC Web Console...

CVE-2009-0857

Cross-site scripting XSS vulnerability in /prm/reports in the Performance Reporting Module PRM for Sun Management Center SunMC 3.6.1 and 4.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: this can be leveraged for access to the SunMC Web Console...

Sun管理中心性能报表模块跨站脚本漏洞

BUGTRAQ ID: 33999 Sun Management Center软件是开放的、可扩展的系统监视和管理方案。 Sun管理中心的性能报表模块中存在跨站脚本漏洞，可能允许远程非特权用户在用户浏览器中执行任意JavaScript代码，或窃取可能用于访问Sun管理中心Web控制台的会话cookie。 Sun SunMC 4.0 Sun SunMC 3.6.1 厂商补丁： Sun --- Sun已经为此发布了一个安全公告（Sun-Alert-247046）以及相应补丁: Sun-Alert-247046：Cross Site Scripting XSS Vulnerability in...

PT-2007-6241 · Frontaccounting · Frontaccounting

Multiple PHP remote file inclusion vulnerabilities in FrontAccounting FA 1.12 allow remote attackers to execute arbitrary PHP code via a URL in the path to root parameter to 1 access/logout.php or certain PHP scripts under 2 admin/, 3 dimensions/, 4 gl/, 5 inventory/, 6 manufacturing/, 7...