CVE-2012-2447

Cross-site request forgery CSRF vulnerability in accountmgr/adminupdate.php in the WebAdmin Portal in Netsweeper allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via an add action...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in accountmgr/adminupdate.php in the WebAdmin Portal in Netsweeper allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via an add action...

CVE-2012-2446

Cross-site scripting XSS vulnerability in tools/locallookup.php in the WebAdmin Portal in Netsweeper allows remote attackers to inject arbitrary web script or HTML via the group parameter in a lookup action...

CVE-2012-2447

CVE-2012-2447 is a CSRF flaw in the Netsweeper WebAdmin Portal, specifically in accountmgr/adminupdate.php. The vulnerability allows an attacker to hijack an administrator’s session and perform actions that create new administrative accounts via the add action. Public materials in the connected R...

CVE-2012-2446

CVE-2012-2446 is a real XSS vulnerability in Netsweeper’s WebAdmin Portal. The issue affects the WebAdmin Portal’s tools/local_lookup.php, where the group parameter in a lookup action can be exploited to inject arbitrary web script or HTML remotely. The root cause is an inadequate input validatio...

CVE-2012-3859

CVE-2012-3859 is identified in the connected documents as a SQL Injection vulnerability affecting the Netsweeper WebAdmin Portal. The Red Hat entry describes it as an unspecified vulnerability with unknown impact, and the exploit references (Exploit-DB/PacketStorm) associate this CVE with a SQL I...

CVE-2012-3859

Unspecified vulnerability in the WebAdmin Portal in Netsweeper has unknown impact and attack vectors, a different vulnerability than CVE-2012-2446 and CVE-2012-2447...

CVE-2012-2447

Cross-site request forgery CSRF vulnerability in accountmgr/adminupdate.php in the WebAdmin Portal in Netsweeper allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via an add action...

CVE-2012-2446

Cross-site scripting XSS vulnerability in tools/locallookup.php in the WebAdmin Portal in Netsweeper allows remote attackers to inject arbitrary web script or HTML via the group parameter in a lookup action...

AdaptCMS 2.0.0 CSRF Vulnerability (Add Admin)

Exploit for php platform in category web applications AdaptCMS 2.0.0 CSRF Vulnerability Add Admin ==================================================================== .:. Author : AtT4CKxT3rR0r1ST email protected .:. Script :...

CodeMeter WebAdmin Detection

The remote web server hosts CodeMeter WebAdmin, a web-based tool for working with CodeMeter hardware and software based copy protection technology. Note: for accurate results from this plugin and those that depend on it, you may need to enable the CodeMeter WebAdmin ports 22352, 22350 in your...

CodeMeter < 4.30.498.504 Virtual Directory Traversal Arbitrary File Access

According to its self-reported version, the CodeMeter WebAdmin server running on the remote host is prior to 4.30d 4.30.498.504. It is, therefore, affected by a directory traversal vulnerability due to a failure to properly sanitize HTTP requests for files in virtual directories. An...

TC-SA-2011-01: Multiple vulnerabilities in OmniTouch Instant Communication Suite

TC-SA-2011-01: Multiple vulnerabilities in OmniTouch Instant Communication Suite Published: 2011/10/24 Advisory-Version: 1.0 References: - Alcatel Lucent Vulnerability Statement 2011003 Multiple vulnerabilities in OmniTouch Instant Communication Suite - CVE-2011-4058 - multiple XSS vulnerabilitie...

OmniTouch Instant Communication Suite XSRF / XSS

TC-SA-2011-01: Multiple vulnerabilities in OmniTouch Instant Communication Suite Published: 2011/10/24 Advisory-Version: 1.0 References: - Alcatel Lucent Vulnerability Statement 2011003 Multiple vulnerabilities in OmniTouch Instant Communication Suite - CVE-2011-4058 - multiple XSS vulnerabilitie...

CodeMeter WebAdmin 'Licenses.html' Cross Site Scripting Vulnerability

CodeMeter WebAdmin is prone to a cross-site scripting XSS vulnerability. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fre...

WIBU-SYSTEMS CodeMeter WebAdmin Detection (HTTP)

HTTP based detection of WIBU-SYSTEMS CodeMeter WebAdmin. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-3689

Cross-site scripting XSS vulnerability in Licenses.html in Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30 allows remote attackers to inject arbitrary web script or HTML via the BoxSerial parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in Licenses.html in Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30 allows remote attackers to inject arbitrary web script or HTML via the BoxSerial parameter...

CVE-2011-3689

Cross-site scripting XSS vulnerability in Licenses.html in Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30 allows remote attackers to inject arbitrary web script or HTML via the BoxSerial parameter...

CVE-2011-3689

CVE-2011-3689 is a cross-site scripting (XSS) vulnerability in Licenses.html of Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30. A remote attacker can inject arbitrary script/HTML via the BoxSerial parameter, with potential partial integrity impact in the victim’s browser and no confidentiality gai...