118 matches found
CVE-2011-4361
MediaWiki before 1.17.1 does not check for read permission before handling action=ajax requests, which allows remote attackers to obtain sensitive information by 1 leveraging the SpecialUpload::ajaxGetExistsWarning function, or by 2 leveraging an extension, as demonstrated by the CategoryTree,...
CVE-2011-4361
MediaWiki before 1.17.1 does not check for read permission before handling action=ajax requests, which allows remote attackers to obtain sensitive information by 1 leveraging the SpecialUpload::ajaxGetExistsWarning function, or by 2 leveraging an extension, as demonstrated by the CategoryTree,...
Fedora 16 : phpMyAdmin-3.4.4-1.fc16 (2011-11477)
Changes for 3.4.4.0 2011-08-24 : - parser SQL parser breaks AJAX requests if query has unclosed quotes - parser Invalid escape sequence in SQL parser - config $cfg'Export''asfile' set to false does not select as Text option - export Working SQL query exports error page - interface 'Create an inde...
The BodgeIt Store - another vulnerable web app
Hi folks, I've recently open sourced a vulnerable web app, called The BodgeIt Store: http://code.google.com/p/bodgeit/ Why? Well, you can never have too many vulnerable apps to test against, but also because I've found that many of the existing apps are non trivial to install - they either have a...
PYSEC-2011-30
Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery CSRF attacks via forged AJAX requests that leverage a "combination of browser plugins...
CVE-2011-0696
Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery CSRF attacks via forged AJAX requests that leverage a "combination of browser plugins...
Cross site request forgery (csrf)
Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery CSRF attacks via forged AJAX requests that leverage a "combination of browser plugins...
CVE-2011-0696
Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery CSRF attacks via forged AJAX requests that leverage a "combination of browser plugins...
CVE-2011-0696
Technical details about CVE-2011-0696 are not publicly provided in the supplied documents; no affected products, versions, exploits, or fixes are stated here. Monitor for updates.
CVE-2011-0696
Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery CSRF attacks via forged AJAX requests that leverage a "combination of browser plugins...
CVE-2008-7220
Unspecified vulnerability in Prototype JavaScript framework prototypejs before 1.6.0.2 allows attackers to make "cross-site ajax requests" via unknown vectors...
CVE-2008-7220
Unspecified vulnerability in Prototype JavaScript framework prototypejs before 1.6.0.2 allows attackers to make "cross-site ajax requests" via unknown vectors...
DEBIAN-CVE-2008-7220
Unspecified vulnerability in Prototype JavaScript framework prototypejs before 1.6.0.2 allows attackers to make "cross-site ajax requests" via unknown vectors...
Cross site scripting
Unspecified vulnerability in Prototype JavaScript framework prototypejs before 1.6.0.2 allows attackers to make "cross-site ajax requests" via unknown vectors...
CVE-2008-7220
Unspecified vulnerability in Prototype JavaScript framework prototypejs before 1.6.0.2 allows attackers to make "cross-site ajax requests" via unknown vectors...
CVE-2008-7220
Unspecified vulnerability in Prototype JavaScript framework prototypejs before 1.6.0.2 allows attackers to make "cross-site ajax requests" via unknown vectors...
SA-2008-032 - Magic Tabs - Arbitrary code execution
Magic Tabs provides an implementation of tabs filled via AJAX requests. Malicious users are able to run arbitrary PHP code via URL arguments to Magic Tabs as it does not provide a whitelist of callbacks. Versions affected Magic Tabs for Drupal 5.x prior to Magic Tabs 5.x-1.1 Drupal core is not...
PAJAX 0.5.1 - Remote Code Execution
PAJAX 0.5.1 - Remote Code Execution !/usr/bin/perl use IO::Socket; print "PAJAX Remote Code Injection - code by: Stoney - exploit found by: RedTeam\n"; if $ARGV0 && $ARGV1 $host = $ARGV0; $path = $ARGV1; $sock = IO::Socket::INET-new Proto = "tcp", PeerAddr = "$host", PeerPort = "80" || die...