Lucene search
K

675 matches found

Fortinet
Fortinet
added 2018/01/22 12:0 a.m.40 views

HTTP Host header attacks against web proxy disclaimer response webpage

The FortiOS web proxy disclaimer page is potentially vulnerable to an XSS attack, via maliciously crafted "Host" headers in user HTTP requests. The latter is possible if an attacker is in a Man-in-the-middle position i.e. able to modify the HTTP requests of the potential victim before they reach...

4.3CVSS1.3AI score0.01075EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/01/12 12:0 a.m.5 views

The vulnerability of the OpenVPN package arises from the improper handling of client connections to HTTP proxies, allowing a hacker to execute arbitrary code.

The vulnerability of the OpenVPN package exists due to improper handling of client connections to HTTP proxies with NTLMv authentication. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.4CVSS7.7AI score0.0338EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2018/01/11 4:29 p.m.17 views

CVE-2017-18016

Parity Browser 1.6.10 and earlier allows remote attackers to bypass the Same Origin Policy and obtain sensitive information by requesting other websites via the Parity web proxy engine reusing the current website's token, which is not bound to an origin...

5.3CVSS5.6AI score0.05479EPSS
Exploits4References4
CNVD
CNVD
added 2018/01/11 12:0 a.m.1 views

Paritytech Parity Bypass Homology Policy Vulnerability

Parity Browser is a lightweight and fast Ethereum programming language client. A security vulnerability exists in Parity Browser version 1.6.10 and earlier. A remote attacker can exploit this vulnerability to obtain sensitive information by requesting other websites with the help of a parity bit...

5.3CVSS6.6AI score0.05479EPSS
Exploits4References1
OSV
OSV
added 2018/01/10 3:29 p.m.2 views

UBUNTU-CVE-2017-7559

In Undertow 2.x before 2.0.0.Alpha2, 1.4.x before 1.4.17.Final, and 1.3.x before 1.3.31.Final, it was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that als...

6.1CVSS6.5AI score0.01655EPSS
Exploits0References2
seebug.org
seebug.org
added 2017/12/20 12:0 a.m.54 views

Windows: use-after-free in jscript!NameTbl::GetValDef(CVE-2017-11903)

There is a use-after-free vulnerability in jscript.dll. This issue could potentially be exploited through multiple vectors: - An attacker on the local network could exploit this issue by posing as a WPAD Web Proxy Auto-Discovery host and sending a malicious wpad.dat file to the victim. This works...

7.6CVSS7.8AI score0.46179EPSS
Exploits4
exploitpack
exploitpack
added 2017/12/19 12:0 a.m.27 views

Microsoft Windows - jscript!RegExpComp::Compile Heap Overflow Through IE or Local Network via WPAD

Microsoft Windows - jscript!RegExpComp::Compile Heap Overflow Through IE or Local Network via WPAD var s = 'a'; forvar i=0;i...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2017/12/19 12:0 a.m.12 views

Microsoft Windows - jscript!NameTbl::GetValDef Use-After-Free

Microsoft Windows - jscript!NameTbl::GetValDef Use-After-Free var vars = new Array100; forvar i=0;i !-- ============================================ PoC for WPAD might require page heap to trigger the crash: ============================================ function...

0.2AI score
Exploits0
0day.today
0day.today
added 2017/12/19 12:0 a.m.60 views

Microsoft Windows jscript!RegExpComp::Compile Heap Overflow Exploit

There is a heap overflow in jscript.dll when compiling a regex. This issue could potentially be exploited through multiple vectors. Windows: Heap overflow in jscript!RegExpComp::Compile through IE or local network via WPAD CVE-2017-11890 There is a heap overflow in jscript.dll when compiling a...

7.6CVSS7.9AI score0.49398EPSS
Exploits4
Exploit DB
Exploit DB
added 2017/12/19 12:0 a.m.37 views

Microsoft Windows - 'jscript!JsArraySlice' Uninitialized Variable

var x = new URIErrornew Array, undefined, undefined; String.prototype.localeCompare.callx, new Date0, 0, 0, 0, 0, 0, undefined; Array.prototype.slice.call1; !-- ============================================ Technical details: The issue is in jscript!JsArraySlice Array.prototype.slice.call in the P...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2017/12/18 12:0 a.m.78 views

Microsoft Windows jscript!RegExpComp::Compile Heap Overflow

Windows: Heap overflow in jscript!RegExpComp::Compile through IE or local network via WPAD CVE-2017-11890 There is a heap overflow in jscript.dll when compiling a regex. This issue could potentially be exploited through multiple vectors: - An attacker on the local network could exploit this issue...

8AI score0.49398EPSS
Exploits4
NVD
NVD
added 2017/12/07 2:29 a.m.12 views

CVE-2017-17055

Artica Web Proxy before 3.06.112911 allows remote attackers to execute arbitrary code as root by conducting a cross-site scripting XSS attack involving the username-form-id parameter to freeradius.users.php...

9CVSS8.6AI score0.08708EPSS
Exploits6References4
OSV
OSV
added 2017/12/07 2:29 a.m.2 views

CVE-2017-17055

Artica Web Proxy before 3.06.112911 allows remote attackers to execute arbitrary code as root by conducting a cross-site scripting XSS attack involving the username-form-id parameter to freeradius.users.php...

9CVSS6AI score0.08708EPSS
Exploits6References4
Prion
Prion
added 2017/12/07 2:29 a.m.21 views

Cross site scripting

Artica Web Proxy before 3.06.112911 allows remote attackers to execute arbitrary code as root by conducting a cross-site scripting XSS attack involving the username-form-id parameter to freeradius.users.php...

8.5CVSS8.5AI score0.08708EPSS
Exploits6References4Affected Software1
CVE
CVE
added 2017/12/06 4:0 p.m.65 views

CVE-2017-17055

Artica Web Proxy (Artica Tech) is reported vulnerable to remote code execution due to an XSS flaw in URL-related parameters (username-form-id to freeradius.users.php). Affected versions include at least 3.06.112911 and 3.06.112216. The root cause is input handling/sanitization in web parameter pr...

9CVSS8.5AI score0.08708EPSS
Exploits6References4Affected Software1
Cvelist
Cvelist
added 2017/12/06 4:0 p.m.14 views

CVE-2017-17055

Artica Web Proxy before 3.06.112911 allows remote attackers to execute arbitrary code as root by conducting a cross-site scripting XSS attack involving the username-form-id parameter to freeradius.users.php...

8.6AI score0.08708EPSS
Exploits6References4
CNVD
CNVD
added 2017/12/04 12:0 a.m.3 views

Artica Web Proxy Cross-Site Scripting Vulnerability

Artica Web Proxy is an enterprise-class web security and control solution. The solution features centralized multi-system management, URL protection and authentication. A cross-site scripting vulnerability exists in versions prior to Artica Web Proxy 3.06.112911. A remote attacker can exploit thi...

9CVSS7.1AI score0.08708EPSS
Exploits6References1
0day.today
0day.today
added 2017/12/04 12:0 a.m.43 views

Artica Web Proxy 3.06.112216 Remote Code Execution Vulnerability

Exploit for php platform in category web applications + Credits: John Page aka Hyp3rlinX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/ARTICA-WEB-PROXY-v3.06-REMOTE-CODE-EXECUTION-CVE-2017-17055.txt Vendor: ======= www.articatech.com Product: =========...

8.5CVSS0.3AI score0.08708EPSS
Exploits6
Packet Storm
Packet Storm
added 2017/12/01 12:0 a.m.50 views

Artica Web Proxy 3.06.112216 Remote Code Execution

Credits: John Page aka Hyp3rlinX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/ARTICA-WEB-PROXY-v3.06-REMOTE-CODE-EXECUTION-CVE-2017-17055.txt + ISR: ApparitionSec Vendor: ======= www.articatech.com Product: ========= Artica Web Proxy v.3.06.112216...

0.7AI score0.08708EPSS
Exploits6
exploitpack
exploitpack
added 2017/12/01 12:0 a.m.38 views

Artica Web Proxy 3.06 - Remote Code Execution

Artica Web Proxy 3.06 - Remote Code Execution + Credits: John Page aka Hyp3rlinX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/ARTICA-WEB-PROXY-v3.06-REMOTE-CODE-EXECUTION-CVE-2017-17055.txt + ISR: ApparitionSec Vendor: ======= www.articatech.com Product...

8.5CVSS0.7AI score0.08708EPSS
Exploits6
Rows per page
Query Builder