Lucene search
+L

144 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

WebKit JavaScript 'onload()' Event Cross Domain Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35315/info WebKit is prone to a cross-domain scripting vulnerability because it fails to properly restrict the access of JavaScript code when loading new webpages. A remote attacker can exploit this vulnerability to bypas...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Geeklog 1.3.5 Calendar Event Form Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4974/info Geeklog does not sufficiently sanitize script code from form fields, making it prone to script injection attacks. Attacker-supplied script code may potentially end up in webpages generated by Geeklog and will...

7.1AI score
Exploits0
Fedora
Fedora
added 2014/06/17 11:36 p.m.56 views

[SECURITY] Fedora 19 Update: php-5.5.13-3.fc19

PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...

7.5CVSS0.4AI score0.35635EPSS
Exploits9
securityvulns
securityvulns
added 2014/06/14 12:0 a.m.148 views

CVE-2014-3445 - Unauthenticated Backup and Password Disclosure in HandsomeWeb SOS Webpages

Vulnerability title: Unauthenticated Backup and Password Disclosure in HandsomeWeb SOS Webpages CVE: CVE-2014-3445 Vendor: HandsomeWeb Product: SOS Webpages Affected version: 1.1.11 and earlier Fixed version: 1.1.12 Reported by: Freakyclown Details: The default setup allows an unauthenticated use...

9.8AI score0.05345EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.21 views

openSUSE Security Update : Opera (openSUSE-SU-2013:0273-2)

Opera 12.13 is a recommended upgrade offering security and stability enhancements. -fixed an issue where Opera gets internal communication errors on Facebook -fixed an issue where no webpages load on startup, if Opera is disconnected from the Internet -fixed an issue where images will not load...

5.5AI score
Exploits0References4
ThreatPost
ThreatPost
added 2014/06/12 2:30 p.m.11 views

Versatility of Zeus Framework Encourages Criminal Innovation

A new report on the Zeus trojan’s evolution shows that the malware was moved from harvesting online banking credentials to controlling botnets and launching distributed denial of service attacks attributes the evolution to the highly customized and incredibly versatile framework Zeus is today...

0.3AI score
Exploits0References3
seebug.org
seebug.org
added 2014/06/10 12:0 a.m.26 views

SOS Webpages 1.1.1 /backup.php 备份文件发现漏洞

No description provided by source...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2014/05/29 12:0 a.m.49 views

HandsomeWeb SOS Webpages 1.1.11 Backup / Hash Disclosure

Vulnerability title: Unauthenticated Backup and Password Disclosure in HandsomeWeb SOS Webpages CVE: CVE-2014-3445 Vendor: HandsomeWeb Product: SOS Webpages Affected version: 1.1.11 and earlier Fixed version: 1.1.12 Reported by: Freakyclown Details: The default setup allows an unauthenticated use...

0.05345EPSS
Exploits2
CERT
CERT
added 2014/02/03 12:0 a.m.22 views

Visibility Software Cyber Recruiter authentication bypass vulnerability

Overview Visibility Software Cyber Recruiter fails to prevent unauthenticated users from accessing protected webpages. Description CWE-305: Authentication Bypass by Primary Weakness:Visibility Software Cyber Recruiter fails to prevent unauthenticated users from accessing protected webpages allowi...

7.3AI score
Exploits0References1
Symantec
Symantec
added 2013/03/12 12:0 a.m.32 views

Microsoft Internet Explorer CVE-2013-0088 Use-After-Free Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.7AI score0.19804EPSS
Exploits0Affected Software1
Microsoft KB
Microsoft KB
added 2013/01/08 12:0 a.m.50 views

MS13-004: Vulnerability in the .NET Framework could allow elevation of privilege: January 8, 2013

Resolves a vulnerability in the .NET Framework that could allow remote code execution on a client system. Vulnerability occurs if a user views a specially crafted webpage through a web browser that can run XAML Browser Applications XBAPs.View products that this article applies...

9.3CVSS9.2AI score0.25118EPSS
Exploits5
Packet Storm
Packet Storm
added 2010/07/07 12:0 a.m.28 views

Sandbox 2.0.3 Bypass / Local File Inclusion / Shell Upload / SQL Injection

Sandbox 2.0.3 Multiple Remote Vulnerabilities Name Sandbox Vendor http://www.iguanadons.net Versions Affected 2.0.3 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-07-07 X. INDEX I. ABOUT THE APPLICATION II...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2010/06/01 9:28 p.m.9 views

Facebook Hit With Clickjacking Worm

A vulnerability on Facebook forced hundreds of thousands of users to endorse a series of webpages over the holiday weekend, making the social networking site the latest venue for an attack known as clickjacking. Read the full article. The Register...

3.1AI score
Exploits0References2
exploitpack
exploitpack
added 2010/05/24 12:0 a.m.12 views

360 Web Manager 3.0 - webpages-form-led-edit.php SQL Injection

360 Web Manager 3.0 - webpages-form-led-edit.php SQL Injection source: https://www.securityfocus.com/bid/40378/info 360 Web Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

0.3AI score
Exploits0
NVD
NVD
added 2009/05/22 11:52 a.m.15 views

CVE-2009-1749

Multiple cross-site scripting XSS vulnerabilities in index.php in Catviz 0.4.0 beta 1 allow remote attackers to inject arbitrary web script or HTML via the 1 usermanform and 2 webpagesform parameters...

4.3CVSS5.8AI score0.0301EPSS
Exploits1References3
Cvelist
Cvelist
added 2009/05/21 6:0 p.m.21 views

CVE-2009-1749

Multiple cross-site scripting XSS vulnerabilities in index.php in Catviz 0.4.0 beta 1 allow remote attackers to inject arbitrary web script or HTML via the 1 usermanform and 2 webpagesform parameters...

5.8AI score0.0301EPSS
Exploits1References3
Fedora
Fedora
added 2008/12/08 1:4 p.m.42 views

[SECURITY] Fedora 10 Update: awstats-6.8-3.fc10

Advanced Web Statistics is a powerful and featureful tool that generates advanced web server graphic statistics. This server log analyzer works from command line or as a CGI and shows you all information your log contai ns, in graphical web pages. It can analyze a lot of web/wap/proxy servers lik...

4.3CVSS0.5AI score0.05597EPSS
Exploits1
Fedora
Fedora
added 2008/12/03 1:19 a.m.27 views

[SECURITY] Fedora 9 Update: lynx-2.8.6-17.fc9

Lynx is a text-based Web browser. Lynx does not display any images, but it does support frames, tables, and most other HTML tags. One advantage Lynx has over graphical browsers is speed; Lynx starts and exits quickly and swiftly displays webpages...

10CVSS6.4AI score0.0506EPSS
Exploits0
Fedora
Fedora
added 2008/06/20 7:9 p.m.58 views

[SECURITY] Fedora 9 Update: php-5.2.6-2.fc9

PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated webpages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...

10CVSS0.6AI score0.10918EPSS
Exploits4
seebug.org
seebug.org
added 2008/03/20 12:0 a.m.35 views

Joomla Component Alberghi <= 2.1.3 (id) SQL Injection Vulnerability

No description provided by source. Mambo Component comalberghi SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MA陌L : [email protected] TODAY MY B陌RTDAY SOO I WROTE 5 BUGS ALL FOR HACKERS 5 EXPLO陌TS HAVE 100.000 MAMBO-JOOMLA WEBPAGES OR MUCH MORE DONT FORGET...

7.1AI score
Exploits0
Rows per page
Query Builder