XMLHttpRequest crashes with some input streams — Mozilla

Security researcher Joe Vennix from Rapid7 reported that passing a JavaScript object to XMLHttpRequest that mimics an input stream will a crash. This crash is not exploitable and can only be used for denial of service attacks...

Google FeedBurner FeedSmith 2.2 Cross-Site Request Forgery Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25921/info FeedBurner FeedSmith is prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to use a victim's currently active session to perform actions with the application...

WordPress Contact Form plugin <= 2.7.5 - SQL Injection

No description provided by source. Exploit Title: WordPress Contact Form plugin = 2.7.5 SQL Injection Vulnerability Date: 2011-10-13 Author: Skraps jackie.craig.sparksatlive.com jackie.craig.sparksatgmail.com @skrapsfoo Software Link: http://downloads.wordpress.org/plugin/contact-form-wordpress.z...

atmail email server appliance 6.4 - Stored XSS - csrf - rce

No description provided by source. Exploit Title: Atmail Email Server Appliance 6.4 Remote Code Execution Date: Jul 21 2012 Author: muts Version: Atmail Email Server 6.4 By sending an email to a user with the Atmail administrative interface open, we can call a remote JavaScript file that will...

Vivvo CMS <= 3.4 (index.php) Remote BLIND SQL Injection Exploit

No description provided by source. html head titleVivvo CMS = 3.4 index.php Remote BLIND SQL Injection Exploit/title script type=text/javascript //'=============================================================================================== //'Script Name: Vivvo CMS = 3.4 index.php Remote BLIN...

Ultimate PHP Board <= 2.2.1 (log inj) Privilege Escalation Exploit

No description provided by source. !/usr/bin/perl -w ------------------------------------------------------------------ Ultimate PHP Board = 2.2.1 log inj Privilege Escalation Exploit ------------------------------------------------------------------ by athos - stakerathotmaildotit download on...

Apache OFBiz - FULLADMIN Creator PoC Payload

No description provided by source. / Apache OFBiz FULLADMIN Creator PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var username = 'bonsaiUser'; var password = 'bonsaiPass'; var nodes =...

Apache OFBiz - SQL Remote Execution PoC Payload

No description provided by source. / Apache OFBiz SQL Remote Execution PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var cmd = 'command'; var xmlhttp=false; try xmlhttp = new ActiveXObjectMsxml2.XMLHTTP; catch e...

XOOPS Module resmanager <= 1.21 - Blind SQL Injection Exploit

No description provided by source. html head titleXOOPS Module resmanager = 1.21 editday.php BLIND SQL Injection Exploit/title script type=text/javascript //'=============================================================================================== //'Script Name: XOOPS Module resmanager =...

Apache httpOnly Cookie Disclosure

No description provided by source. // Source: https://gist.github.com/1955a1c28324d4724b7b/7fe51f2a66c1d4a40a736540b3ad3fde02b7fb08 // Most browsers limit cookies to 4k characters, so we need multiple function setCookies good // Construct string for cookie value var str = ; for var i=0; i 819; i+...

openSUSE Security Update : MozillaFirefox (openSUSE-SU-2012:1583-1)

Changes in MozillaFirefox : - update to Firefox 17.0 bnc790140 - MFSA 2012-91/CVE-2012-5842/CVE-2012-5843 Miscellaneous memory safety hazards - MFSA 2012-92/CVE-2012-4202 bmo758200 Buffer overflow while rendering GIF images - MFSA 2012-93/CVE-2012-4201 bmo747607 evalInSanbox location context...

openSUSE Security Update : xulrunner (openSUSE-SU-2012:1586-1)

Changes in xulrunner : - update to 17.0 bnc790140 - MFSA 2012-91/CVE-2012-5842/CVE-2012-5843 Miscellaneous memory safety hazards - MFSA 2012-92/CVE-2012-4202 bmo758200 Buffer overflow while rendering GIF images - MFSA 2012-93/CVE-2012-4201 bmo747607 evalInSanbox location context incorrectly appli...

openSUSE Security Update : libqt4 (openSUSE-SU-2013:0157-1)

libqt4 received security fixes for : - XMLHttpRequest could redirect to a file: URL CVE-2012-5624, bnc793194 - Disable SSL compression by default to mitigate CRIME attack CVE-2012-4929 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

CVE-2013-0187

Foreman before 1.1 allows remote authenticated users to gain privileges via a 1 XMLHttpRequest or 2 AJAX request...

Cross site request forgery (csrf)

Foreman before 1.1 allows remote authenticated users to gain privileges via a 1 XMLHttpRequest or 2 AJAX request...

CVE-2013-0187

Foreman before 1.1 contains a privilege escalation vulnerability where remote authenticated users can gain privileges via an XMLHttpRequest or an AJAX request. The connected documents do not specify the root cause, affected components beyond the generic web interface, exploit details, or a remedi...

Adobe PhoneGap设备资源限制绕过漏洞

CVE ID:CVE-2014-1883 Apache PhoneGap是一款容易使用HTML5和JavaScript构建跨平台的移动应用的流行开源平台。 安卓平台上的Adobe PhoneGap使用shouldOverrideUrlLoading回调来代替正确的shouldInterceptRequest回调，允许攻击者利用漏洞通过特制的XMLHttpRequest方法来绕过设备资源限制，执行恶意操作。 0 Adobe PhoneGap 2.6.0 目前没有详细解决方案提供： https://cordova.apache.org/...

Design/Logic Flaw

Apache Cordova 3.3.0 and earlier and Adobe PhoneGap 2.9.0 and earlier on Windows Phone 7 and 8 do not properly restrict navigation events, which allows remote attackers to bypass intended device-resource restrictions via content that is accessed 1 in an IFRAME element or 2 with the XMLHttpRequest...

CVE-2014-1883

Adobe PhoneGap before 2.6.0 on Android uses the shouldOverrideUrlLoading callback instead of the proper shouldInterceptRequest callback, which allows remote attackers to bypass intended device-resource restrictions via content that is accessed 1 in an IFRAME element or 2 with the XMLHttpRequest...

CVE-2014-1884

Apache Cordova 3.3.0 and earlier and Adobe PhoneGap 2.9.0 and earlier on Windows Phone 7 and 8 do not properly restrict navigation events, which allows remote attackers to bypass intended device-resource restrictions via content that is accessed 1 in an IFRAME element or 2 with the XMLHttpRequest...