CVE-2011-4712

CVE-2011-4712 describes a directory traversal vulnerability in Oxide WebServer, allowing remote attackers to read arbitrary files via a ..\ in an HTTP request. The NVD entry assigns a medium base score (5.0) with network access, low attack complexity, and no authentication required; confidentiali...

GoAhead Webserver 2.5 Cross Site Scripting

Title : GoAhead WebServer Multiple Cross Site Scripting Vulnerabilities Author : Prabhu S Angadi from SecPod Technologies www.secpod.com Vendor : http://www.goahead.com/products/webserver/default.aspx Advisory : http://secpod.org/blog/?p=421 http://secunia.com/advisories/46896...

CoDeSys SCADA 2.3 - Remote Buffer Overflow

CoDeSys SCADA 2.3 - Remote Buffer Overflow / See Also: http://aluigi.altervista.org/adv/codesys1-adv.txt CoDeSys v2.3 Industrial Control System Development Software Remote Buffer Overflow Exploit for CoDeSys Scada webserver Author : Celil UNUVER, SignalSEC Labs www.signalsec.com Tested on WinXP S...

CoDeSys SCADA 2.3 - Remote Buffer Overflow

/ See Also: http://aluigi.altervista.org/adv/codesys1-adv.txt CoDeSys v2.3 Industrial Control System Development Software Remote Buffer Overflow Exploit for CoDeSys Scada webserver Author : Celil UNUVER, SignalSEC Labs www.signalsec.com Tested on WinXP SP1 EN THIS CODE IS FOR EDUCATIONAL PURPOSES...

Manx Multiple Cross Site Scripting and Directory Traversal Vulnerabilities

Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize user- supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Manx Multiple Cross Site Scripting and Directory Traversal Vulnerabilities

Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...

Virtual Vertex Muster 6.1.6 - Web Interface Directory Traversal

Virtual Vertex Muster 6.1.6 - Web Interface Directory Traversal source: https://www.securityfocus.com/bid/50841/info Virtual Vertex Muster is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input submitted to its web interface. Exploiting this...

Oxide WebServer - Directory Traversal

Oxide WebServer - Directory Traversal source: https://www.securityfocus.com/bid/50845/info Oxide WebServer is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input submitted to its web interface. Exploiting this issue will allow an attacker to...

Oxide WebServer - Directory Traversal

source: https://www.securityfocus.com/bid/50845/info Oxide WebServer is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input submitted to its web interface. Exploiting this issue will allow an attacker to view arbitrary files within the contex...

Manx 1.0.1 - admintiny_mcepluginsajaxfilemanager_OLDajax_get_file_listing.php Multiple Cross-Site Scripting Vulnerabilities

Manx 1.0.1 - admintinymcepluginsajaxfilemanagerOLDajaxgetfilelisting.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/50839/info Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently...

Manx 1.0.1 - adminadmin_blocks.php?Filename Traversal Arbitrary File Access

Manx 1.0.1 - adminadminblocks.php?Filename Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/50839/info Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these...

Manx 1.0.1 - admintiny_mcepluginsajaxfilemanagerajax_get_file_listing.php Multiple Cross-Site Scripting Vulnerabilities

Manx 1.0.1 - admintinymcepluginsajaxfilemanagerajaxgetfilelisting.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/50839/info Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize...

Manx 1.0.1 - '/admin/tiny_mce/plugins/ajaxfilemanager/ajax_get_file_listing.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/50839/info Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code in the browser...

Manx 1.0.1 - '/admin/admin_blocks.php?Filename' Traversal Arbitrary File Access

source: https://www.securityfocus.com/bid/50839/info Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code in the browser...

Manx 1.0.1 - '/admin/admin_pages.php?Filename' Traversal Arbitrary File Access

source: https://www.securityfocus.com/bid/50839/info Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code in the browser...

Manx 1.0.1 - '/admin/tiny_mce/plugins/ajaxfilemanager_OLD/ajax_get_file_listing.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/50839/info Manx is prone to multiple cross-site scripting and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code in the browser...

TA.CMS (TeachArabia) - lang Traversal Local File Inclusion

TA.CMS TeachArabia - lang Traversal Local File Inclusion source: https://www.securityfocus.com/bid/50773/info TA.CMS is prone to multiple local file-include and SQL-injection vulnerabilities. An attacker can exploit these issues to compromise the application, access or modify data, exploit latent...

TA.CMS (TeachArabia) - index.php?id SQL Injection

TA.CMS TeachArabia - index.php?id SQL Injection source: https://www.securityfocus.com/bid/50773/info TA.CMS is prone to multiple local file-include and SQL-injection vulnerabilities. An attacker can exploit these issues to compromise the application, access or modify data, exploit latent...

TA.CMS (TeachArabia) - 'index.php?id' SQL Injection

source: https://www.securityfocus.com/bid/50773/info TA.CMS is prone to multiple local file-include and SQL-injection vulnerabilities. An attacker can exploit these issues to compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, and view and...

TA.CMS (TeachArabia) - 'lang' Traversal Local File Inclusion

source: https://www.securityfocus.com/bid/50773/info TA.CMS is prone to multiple local file-include and SQL-injection vulnerabilities. An attacker can exploit these issues to compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, and view and...