524 matches found
[SECURITY] Fedora 19 Update: glpi-0.83.9.1-1.fc19
GLPI is the Information Resource-Manager with an additional Administration- Interface. You can use it to build up a database with an inventory for your company computer, software, printers.... It has enhanced functions to make the daily life for the administrators easier, like a job-tracking-syst...
CUPS < 1.6.2 Multiple Vulnerabilities
According to its banner, the version of CUPS installed on the remote host is earlier than 1.6.2. It is, therefore, potentially affected by the following vulnerabilities : - Permissions on the file '/var/run/cups/certs/0' could allow access to CUPS administration interface authentication key...
Sql injection
Multiple SQL injection vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to execute arbitrary SQL commands via 1 the nHistoryId parameter to WebProd/pages/pgHistory.asp or 2 the OrderBy parameter to WebProd/pages/pgadmin.asp...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to inject arbitrary web script or HTML via the 1 Number or 2 UpdatePage parameter to WebProd/cgi-bin/AskiaExt.dll...
CVE-2013-0123
Multiple SQL injection vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to execute arbitrary SQL commands via 1 the nHistoryId parameter to WebProd/pages/pgHistory.asp or 2 the OrderBy parameter to WebProd/pages/pgadmin.asp...
CVE-2013-0123
Multiple SQL injection vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to execute arbitrary SQL commands via 1 the nHistoryId parameter to WebProd/pages/pgHistory.asp or 2 the OrderBy parameter to WebProd/pages/pgadmin.asp...
CVE-2013-0124
Multiple cross-site scripting XSS vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to inject arbitrary web script or HTML via the 1 Number or 2 UpdatePage parameter to WebProd/cgi-bin/AskiaExt.dll...
CVE-2013-0123
CVE-2013-0123 describes multiple SQL injection vulnerabilities in the ASKIA Askiaweb administration interface. The issues allow remote attackers to execute arbitrary SQL commands through two parameters: nHistoryId (WebProd/pages/pgHistory.asp) and OrderBy (WebProd/pages/pgadmin.asp). Affected com...
Askiaweb survey application contains multiple vulnerabilities
Overview The Askiaweb survey application contains multiple vulnerabilities. Description The Askiaweb survey application contains multiple vulnerabilities.CWE-89: Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' - CVE-2013-0123 The administration interface for the...
Cerberus FTP Server crossite scripting
Crossite scripting in administration interface...
SonicWall Email Security crossite scripting
Crossite scripting in Web administration interface...
Multiple XSS vulnerabilities in Cerberus FTP Server <= 5.0.5.1 [CVE-2012-6339]
Overview =============== Cerberus FTP Server http://www.cerberusftp.com/ is a secure and reliable FTP server with many features and available functionality. It was discovered that the Web Administration interface has multiple persistent Cross Site Scripting XSS vulnerabilities. In the log viewer...
Oracle GlassFish Enterprise Server REST Interface Cross Site Request Forgery (CVE-2012-0550)
A cross-site request forgery CSRF vulnerability has been reported in the GlassFish HTTP administration interface...
DataWatch Monarch BI multiple security vulnerabilities
Crossite scripting, SQL injection in administration interface...
Fedora Update for glpi FEDORA-2012-10661
Check for the Version of glpi OpenVAS Vulnerability Test Fedora Update for glpi FEDORA-2012-10661 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...
SA-CONTRIB-2012-122 - Better Revisions - Cross Site Scripting (XSS)
The Better Revisions module changes the built-in revision log text area to a customizable select list with an optional description field. It also allows an administrator to make the list and/or description field required. The module doesn't sufficiently validate strings entered in the...
[SECURITY] Fedora 17 Update: glpi-0.83.4-1.fc17
GLPI is the Information Resource-Manager with an additional Administration- Interface. You can use it to build up a database with an inventory for your company computer, software, printers.... It has enhanced functions to make the daily life for the administrators easier, like a job-tracking-syst...
Arbor Networks Peakflow SP crossite scripting
Crossite scripting in administration interface...
Fedora Update for glpi FEDORA-2012-1534
Check for the Version of glpi OpenVAS Vulnerability Test Fedora Update for glpi FEDORA-2012-1534 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
[SECURITY] Fedora 16 Update: glpi-0.80.7-1.fc16
GLPI is the Information Resource-Manager with an additional Administration- Interface. You can use it to build up a database with an inventory for your company computer, software, printers.... It has enhanced functions to make the daily life for the administrators easier, like a job-tracking-syst...