14 matches found
EUVD-2008-0615
Malware in sbrugna...
AstroSoft HelpDesk operator/article/article_attachment.asp Attach_Id Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27610/info AstroSoft HelpDesk is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in...
AstroSoft HelpDesk operator/article/article_search_results.asp txtSearch Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27610/info AstroSoft HelpDesk is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in...
[DSECRG-08-011 | FIX INFORMATION] Astrosoft HelpDesk Multiple XSS
Digital Security Research Group DSecRG Advisory DSECRG-08-011 | FIX INFORMATION Application: Astrosoft HelpDesk Versions Affected: 1.95.228 Vendor URL: http://astrosoft.ru/ Bugs: Multiple XSS Injections Exploits: YES Reported: 29.01.2008 Date of Public Advisory: 04.02.2008 Vendor response:...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in AstroSoft HelpDesk before 1.95.228 allow remote attackers to inject arbitrary web script or HTML via the 1 txtSearch parameter to operator/article/articlesearchresults.asp and the 2 AttachId parameter to operator/article/articleattachment.asp...
CVE-2008-0605
Multiple cross-site scripting XSS vulnerabilities in AstroSoft HelpDesk before 1.95.228 allow remote attackers to inject arbitrary web script or HTML via the 1 txtSearch parameter to operator/article/articlesearchresults.asp and the 2 AttachId parameter to operator/article/articleattachment.asp...
CVE-2008-0605
Multiple cross-site scripting XSS vulnerabilities in AstroSoft HelpDesk before 1.95.228 allow remote attackers to inject arbitrary web script or HTML via the 1 txtSearch parameter to operator/article/articlesearchresults.asp and the 2 AttachId parameter to operator/article/articleattachment.asp...
CVE-2008-0605
CVE-2008-0605 describes multiple cross-site scripting (XSS) vulnerabilities in AstroSoft HelpDesk prior to version 1.95.228. The affected components are the txtSearch parameter in operator/article/article_search_results.asp and the Attach_Id parameter in operator/article/article_attachment.asp, w...
[DSECRG-08-011] Astrosoft HelpDesk Multiple XSS
Digital Security Research Group DSecRG Advisory DSECRG-08-011 Application: Astrosoft HelpDesk Versions Affected: Vendor URL: http://astrosoft.ru/ Bugs: Multiple XSS Injections Exploits: YES Reported: 29.01.2008 Vendor response: NONE Date of Public Advisory: 04.02.2008 Authors: Alexandr Polyakov,...
AstroSoft HelpDesk - operatorarticlearticle_search_results.asp?txtSearch Cross-Site Scripting
AstroSoft HelpDesk - operatorarticlearticlesearchresults.asp?txtSearch Cross-Site Scripting source: https://www.securityfocus.com/bid/27610/info AstroSoft HelpDesk is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...
DSECRG-08-011.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-011 Application: Astrosoft HelpDesk Versions Affected: Vendor URL: http://astrosoft.ru/ Bugs: Multiple XSS Injections Exploits: YES Reported: 29.01.2008 Vendor response: NONE Date of Public Advisory: 04.02.2008 Authors: Alexandr Polyakov,...
AstroSoft HelpDesk - operatorarticlearticle_attachment.asp?Attach_Id Cross-Site Scripting
AstroSoft HelpDesk - operatorarticlearticleattachment.asp?AttachId Cross-Site Scripting source: https://www.securityfocus.com/bid/27610/info AstroSoft HelpDesk is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...
AstroSoft HelpDesk - '/operator/article/article_attachment.asp?Attach_Id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/27610/info AstroSoft HelpDesk is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting use...
AstroSoft HelpDesk - '/operator/article/article_search_results.asp?txtSearch' Cross-Site Scripting
source: https://www.securityfocus.com/bid/27610/info AstroSoft HelpDesk is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting use...