20 matches found
EUVD-2008-7051
Malware in sbrugna...
EUVD-2008-7053
Malware in sbrugna...
EUVD-2008-7052
Malware in sbrugna...
CVE-2008-7094
Campaign/CampaignListener in the listener server in Unica Affinium Campaign 7.2.1.0.55 allows remote attackers to cause a denial of service server crash via a crafted length field that triggers 1 connection exhaustion or 2 memory allocation failure...
CVE-2008-7092
Multiple cross-site scripting XSS vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to inject arbitrary web script or HTML via a Javascript event in the 1 url, 2 PageName, and 3 title parameters in a CustomBookMarkLink action to Campaign/Campaign; 4 a Javascript event i...
CVE-2008-7093
Multiple directory traversal vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to 1 create arbitrary directories or files via a .. dot dot in the folder name in the new folder functionality or 2 list arbitrary files via a crafted request to Campaign/CampaignListener...
Directory traversal
Multiple directory traversal vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to 1 create arbitrary directories or files via a .. dot dot in the folder name in the new folder functionality or 2 list arbitrary files via a crafted request to Campaign/CampaignListener...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to inject arbitrary web script or HTML via a Javascript event in the 1 url, 2 PageName, and 3 title parameters in a CustomBookMarkLink action to Campaign/Campaign; 4 a Javascript event i...
Design/Logic Flaw
Campaign/CampaignListener in the listener server in Unica Affinium Campaign 7.2.1.0.55 allows remote attackers to cause a denial of service server crash via a crafted length field that triggers 1 connection exhaustion or 2 memory allocation failure...
CVE-2008-7092
Multiple cross-site scripting XSS vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to inject arbitrary web script or HTML via a Javascript event in the 1 url, 2 PageName, and 3 title parameters in a CustomBookMarkLink action to Campaign/Campaign; 4 a Javascript event i...
CVE-2008-7094
Campaign/CampaignListener in the listener server in Unica Affinium Campaign 7.2.1.0.55 allows remote attackers to cause a denial of service server crash via a crafted length field that triggers 1 connection exhaustion or 2 memory allocation failure...
CVE-2008-7093
Multiple directory traversal vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to 1 create arbitrary directories or files via a .. dot dot in the folder name in the new folder functionality or 2 list arbitrary files via a crafted request to Campaign/CampaignListener...
CVE-2008-7092
CVE-2008-7092 affects Unica Affinium Campaign 7.2.1.0.55. The connected records confirm multiple cross-site scripting (XSS) vulnerabilities where arbitrary web script/HTML can be injected via parameters such as url, PageName, title (CustomBookMarkLink action), displayIcon (updateOfferTemplateSubm...
CVE-2008-7094
The CVE-2008-7094 entry concerns Campaign/CampaignListener in Unica Affinium Campaign 7.2.1.0.55. A crafted length field in the listener server can cause a denial of service (server crash) by triggering connection exhaustion or memory allocation failure. The provided sources show a DoS impact but...
CVE-2008-7093
CVE-2008-7093 affects Unica Affinium Campaign 7.2.1.0.55. The vulnerability class is directory traversal: (1) creating arbitrary directories/files by a .. in the folder name during the new folder operation, and (2) listing arbitrary files via a crafted request to CampaignListener. The NVD entry l...
afbookmarkxss-08_001.txt
Portcullis Security Advisory - 08-001 Vulnerable System: Affinium Campaign Vulnerability Title: The web application's bookmarks web page is vulnerable to a JavaScript injection. Vulnerability Discovery And Development: Portcullis Security Testing Services. Credit For Discovery: Tim Brown -...
aflistenerdirectorytraversal-08_006.txt
Portcullis Security Advisory - 08-006 Vulnerable System: Affinium Campaign Vulnerability Title: The Listener is vulnerable to directory traversal. Vulnerability Discovery And Development: Portcullis Security Testing Services. Credit For Discovery: Tim Brown - Portcullis Computer-Security Ltd...
afurlxss-08_005.txt
Portcullis Security Advisory - 08-005 Vulnerable System: Affinium Campaign Vulnerability Title: The web application's parameters are vulnerable to reflected JavaScript injection. Vulnerability Discovery And Development: Portcullis Security Testing Services. Credit For Discovery: Tim Brown -...
aflistenerdos-08_007.txt
Portcullis Security Advisory - 08-007 Vulnerable System: Affinium Campaign Vulnerability Title: The listener is vulnerable to Denial of Service. Vulnerability Discovery And Development: Portcullis Security Testing Services. Credit For Discovery: Neil Kettle and Tim Brown - Portcullis...
affolderdirectorytraversal-08_002.txt
Portcullis Security Advisory - 08-002 Vulnerable System: Affinium Campaign Vulnerability Title: The web application's create a new folder functionality is vulnerable to a directory traversal. Vulnerability Discovery And Development: Portcullis Security Testing Services. Credit For Discovery: Neil...