6 matches found
EUVD-2007-2379
Malware in sbrugna...
CVE-2007-2384
The Script.aculo.us framework exchanges data using JavaScript Object Notation JSON without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and captures the data using...
CVE-2007-2384
The Script.aculo.us framework exchanges data using JavaScript Object Notation JSON without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and captures the data using...
CVE-2007-2384
The CVE-2007-2384 entry concerns the Script.aculo.us framework, where data is exchanged as JSON without protection. The underlying issue (JavaScript Hijacking) allows remote attackers to obtain data by loading a page that retrieves JSON via a SCRIPT tag SRC attribute and then captures it with oth...
CVE-2007-2384
The Script.aculo.us framework exchanges data using JavaScript Object Notation JSON without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and captures the data using...
PT-2007-3717 · Unknown · Script.Aculo.Us
Name of the Vulnerable Software and Affected Versions: Script.aculo.us affected versions not specified Description: The issue allows remote attackers to obtain data through a web page that retrieves the data using JavaScript Object Notation JSON without protection. This is achieved by capturing t...