vBulletin 3.0 - 'forumdisplay.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/9888/info It has been reported that VBulletin is prone to a cross-site scripting vulnerability in the 'forumdisplay.php' script. This issue is reportedly due to a failure to sanitize user input and so allow for injection of HTML and script code that may...

Vignette 45 - Cross-Site Scripting

Vignette 45 - Cross-Site Scripting source: https://www.securityfocus.com/bid/7687/info Vignette software has been reported prone to multiple cross-site scripting vulnerabilities. Reportedly the issue presents itself, because the Vignette software does not sufficiently sanitize HTML characters fro...

EZ Publish 2.2 - 'index.php' IMG Tag Cross-Site Scripting

source: https://www.securityfocus.com/bid/7616/info A cross-site scripting vulnerability has been reported for eZ publish. Specifically, eZ publish does not sufficiently sanitize user-supplied input supplied to the 'index.php' script. This may allow for theft of cookie-based authentication...

A Stateful Inspection of FireWall-1

A Stateful Inspection of FireWall-1 Thomas Lopatic, John McDonald TUV data protect GmbH tl,[email protected] Dug Song Center for Information Technology Integration University of Michigan [email protected] 1 Introduction -------------- At the Black Hat Briefings 2000, we presented an analysis of...