Lucene search
K

75 matches found

Positive Technologies
Positive Technologies
added 2014/09/08 12:0 a.m.6 views

PT-2014-3504 · Ovirt · Ovirt

Name of the Vulnerable Software and Affected Versions: oVirt versions 3.4.0 and earlier Description: A session fixation issue in the web admin interface allows remote attackers to hijack web sessions. Recommendations: For versions 3.4.0 and earlier, update to a version later than 3.4.0 to resolve...

6.8CVSS6.4AI score0.01757EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2014/06/09 2:55 p.m.4 views

ovirt-engine-webadmin: session fixation

Session fixation vulnerability in the web admin interface in oVirt 3.4.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors...

6.8CVSS5.9AI score0.01757EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2013/04/10 12:0 a.m.19 views

MongoDB Web Interface Detection

The remote web server is running the MongoDB Web Admin Interface. This interface lists information of interest to administrators of MongoDB, a document-oriented database system. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid65915; scriptversion"1.6";...

5.5AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2012/02/08 9:55 p.m.4 views

CVE-2011-5078

The web administration interface in the server in Sybase M-Business Anywhere 6.7 before ESD 3 and 7.0 before ESD 7 does not require admin authentication for unspecified scripts, which allows remote authenticated users to list or delete user accounts, modify passwords, or read log files via HTTP...

6.5CVSS5.7AI score0.01117EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2011/02/02 12:0 a.m.2 views

PT-2011-1443 · Apache · Apache Couchdb

Name of the Vulnerable Software and Affected Versions: Apache CouchDB versions 0.8.0 through 1.0.1 Description: The issue concerns multiple cross-site scripting XSS vulnerabilities in the web administration interface of Apache CouchDB. These vulnerabilities allow remote attackers to inject...

4.3CVSS5.8AI score0.05923EPSS
Exploits0References10
securityvulns
securityvulns
added 2009/10/22 12:0 a.m.32 views

Websense Email Security multiple security vulnerabilities

Crossite scripting and DoS in Web administration interface...

1.5AI score
Exploits0References2Affected Software2
Exploit DB
Exploit DB
added 2008/10/14 12:0 a.m.56 views

Telecom Italia Alice Pirelli routers - Backdoor from internal LAN/WAN

saxdax & drpepperONE Discovered embedded backdoor to activate telnet/ftp/tftp/web extended admin interface with Admin privileges, from internal network lan on Alice ADSL CPE Modem/Router, manufactered by Pirelli based on Broadcom platform. saxdax & drpepperONE Router Vendor: Alice Telecom Italia...

7.4AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/05/20 3:0 p.m.5 views

Multiple I-O DATA DEVICE wireless LAN routers default configuration does not set authentication

Overview The web administration interface for the WN-APG/R-Series and WN-WAPG/R-Series wireless LAN routers from I-O DATA DEVICE disables authentication in the default configuration. The authentication for the web administration interface for the WN-APG/R-Series and WN-WAPG/R-Series wireless LAN...

7.5CVSS7AI score
Exploits0References3
Prion
Prion
added 2008/02/20 9:44 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the web administration interface in Sophos ES1000 and ES4000 Email Security Appliance 2.1.0.0 allow remote attackers to inject arbitrary web script or HTML via the 1 error and 2 go parameters to the login page...

4.3CVSS6.1AI score0.04191EPSS
Exploits1References8Affected Software2
Packet Storm
Packet Storm
added 2007/08/08 12:0 a.m.35 views

csam-xss.txt

A XSS vulnerability is identified in C-SAM oneWallet web admin interface. This vulnerability exists in the forget password page. http://myserver:myport/tp/web/oneWallet/user/forgotPassStep2.jsp?loginID=null%22%3e%3cscript%3ealert%22XSS!%22%3c%2fscript%3e Sucessfully tested with Version...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/08/07 12:0 a.m.51 views

C-SAM oneWallet forget password Cross Site Scripting vulnerability

A XSS vulnerability is identified in C-SAM oneWallet web admin interface. This vulnerability exists in the forget password page. http://myserver:myport/tp/web/oneWallet/user/forgotPassStep2.jsp?loginID=null223e3cscript3ealert22XSS!223c2fscript3e Sucessfully tested with Version 21007062007;1.0...

0.3AI score
Exploits0
CVE
CVE
added 2006/09/21 12:0 a.m.41 views

CVE-2006-4910

The CVE affects Cisco IDS/IPS web administration interfaces. Specifically, Cisco IDS before 4.1(5c) and Cisco IPS before 5.0(6p1) and 5.1 before 5.1(2) are vulnerable to a denial-of-service via a crafted SSLv2 Client Hello that causes the mainApp web management process to become unresponsive. The...

5CVSS6.6AI score0.03511EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2005/08/16 4:0 a.m.14 views

CVE-2005-2584

The web administration interface in Mentor ADSL-FR4II router running firmware 2.00.0111 does not set a default password, which allows local users to gain access...

6.6AI score0.00336EPSS
Exploits0References1
exploitpack
exploitpack
added 2002/10/08 12:0 a.m.13 views

SurfControl SuperScout Email Filter 3.5 - MsgError.asp Cross-Site Scripting

SurfControl SuperScout Email Filter 3.5 - MsgError.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/5928/info SurfControl SuperScout Email Filter comes with a web-based interface to provide remote access to administrative facilities. The web-based admin interface is prone to...

6.8AI score
Exploits0
CVE
CVE
added 2002/06/25 4:0 a.m.46 views

CVE-2002-0107

CacheFlow CacheOS 4.0.13 and earlier expose a information disclosure vulnerability in a web administration interface: a sequence of GET requests that do not end with a HTTP/1.0 (or another version) string causes leakage of sensitive data in the error message. Affected product: CacheFlow CacheOS (...

5CVSS6.5AI score0.07853EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder