CVE-2009-1684

Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary web script or HTML via an event handler that triggers script execution in the context of the next...

Microsoft Windows Search Script Execution Vulnerability (963093)

This host is missing a critical security update according to Microsoft Bulletin MS09-023. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

PT-2009-4182 · Apple · Ios +2

Name of the Vulnerable Software and Affected Versions: Apple Safari versions prior to 4.0 iPhone OS versions 1.0 through 2.2.1 iPhone OS for iPod touch versions 1.1 through 2.2.1 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via vecto...

Microsoft Windows Search Script Execution Vulnerability (963093)

This host is missing a critical security update according to Microsoft Bulletin MS09-023. OpenVAS Vulnerability Test $Id: secpodms09-023.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft Windows Search Script Execution Vulnerability 963093 Authors: Nikita MR Updated By: Antu Sanadi on 2012-03-22...

XSS in user links

A user with username "alert"foo" that is linked to via \username markup results in script being executed. Curiously, viewing the space homepage of that user results in a blank page. This of course is prevented for public signup, but if the user gets created via other means, i.e. external user...

XSS in user links

A user with username "alert"foo" that is linked to via \username markup results in script being executed. Curiously, viewing the space homepage of that user results in a blank page. This of course is prevented for public signup, but if the user gets created via other means, i.e. external user...

HP System Management Homepage vulnerable to cross-site scripting

Overview HP System Management Homepage SMH from Hewlett-Packard contains a cross-site scripting vulnerability. HP System Management Homepage SMH from Hewlett-Packard is a web-based interface that can manage HP servers. SMH contains a cross-site scripting vulnerability. This vulnerability is...

Mandrake Security Advisory MDVSA-2009:110 (squirrelmail)

The remote host is missing an update to squirrelmail announced via advisory MDVSA-2009:110. OpenVAS Vulnerability Test $Id: mdksa2009110.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:110 squirrelmail Authors: Thomas Reinke Copyright: Copyright c 20...

Mandrake Security Advisory MDVSA-2009:110 (squirrelmail)

The remote host is missing an update to squirrelmail announced via advisory MDVSA-2009:110. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

[ MDVSA-2009:110 ] squirrelmail

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:110 http://www.mandriva.com/security/ Package : squirrelmail Date : May 12, 2009 Affected: Corporate 4.0 Problem Description: Multiple vulnerabilities has been identified and corrected in squirrelmail: Two...

Cross-site scripting vulnerability in SKIP from SKIP User Group

Overview SKIP from SKIP User Group contains a cross-site scripting vulnerability. SKIP from SKIP User Group is an open source SNS Social Networking Service software. SKIP contains a cross-site scripting vulnerability. Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this...

XSS vulnerability can be exploited with the viewppt macro

Upload a file test.ppt Use markup: noformatviewppt:test.ppt|height=alert"xss"|width=alert"xss"noformat The scripts will be executed when the page is loaded...

XSS vulnerability can be exploited with the viewppt macro

Upload a file test.ppt Use markup: noformatviewppt:test.ppt|height=alert"xss"|width=alert"xss"noformat The scripts will be executed when the page is loaded...

XSS vulnerability can be exploited with the viewppt macro

Upload a file test.ppt Use markup: noformatviewppt:test.ppt|height=alert"xss"|width=alert"xss"noformat The scripts will be executed when the page is loaded...

JVN#11396739 Cross-site scripting vulnerability in MiniBBS from CGI RESCUE

MiniBBS is a message board script provided by CGI RESCUE, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the software Update to the latest version according to the information provided by the vendor. Products...

IncrediMail 5.86 (XSS) Script Execution Exploit

No description provided by source. !/usr/bin/perl -w IncrediMail Xe latest version XSS Vulnerability Discovered by : Bui Quang Minh Description : The most of popular Mail Client now exclude Script Code for mail content. It aims to avoid the type of XSS exploitation For e.g: stolen cookie...

IncrediMail 5.86 (XSS) Script Execution Exploit

Exploit for windows platform in category remote exploits =============================================== IncrediMail 5.86 XSS Script Execution Exploit =============================================== !/usr/bin/perl -w IncrediMail Xe latest version XSS Vulnerability Discovered by : Bui Quang Minh...

IncrediMail 5.86 - Cross-Site Scripting Script Execution

!/usr/bin/perl -w IncrediMail Xe latest version XSS Vulnerability Discovered by : Bui Quang Minh Description : The most of popular Mail Client now exclude Script Code for mail content. It aims to avoid the type of XSS exploitation For e.g: stolen cookie. IncrediMail also remove Script Code when t...

PEAK XOOPS piCal cross-site scripting vulnerability

Overview piCal from PEAK XOOPS contains a cross-site scripting vulnerability. piCal from PEAK XOOPS is a calendar module with a scheduler for XOOPS. piCal contains a cross-site scripting vulnerability. Masako Oono of NetAgent Co.,Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with...

linux/x86 Perl script execution 99 bytes + script length

linux/x86 Perl script execution 99 bytes + script length. Shellcode exploit for linx86 platform / Author : darkjoker Site : http://darkjoker.net23.net Shellcode : linux/x86 Perl script execution 99 bytes + script length .global start start: xor %eax, %eax xor %ebx, %ebx xor %ecx, %ecx xor %edx,...