32 matches found
EUVD-2007-3894
Malware in sbrugna...
EUVD-2007-5971
Malware in sbrugna...
EUVD-2007-3893
Malware in sbrugna...
Hackers Can Tell What Netflix 'Bandersnatch' Choices You Make
Researchers have shown that even though Netflix encrypts its traffic, hackers can figure out your interactive movie choices...
Researchers go hunting for Netflix’s Bandersnatch
A new research paper from the Indian Institute of Technology Madras explains how popular Netflix interactive show Bandersnatch could fall victim to a side-channel attack. In 2016, Netflix began adding TLS Transport Layer Security to their video content to ensure strangers couldn’t eavesdrop on...
Bandersnatch 0.4 - Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/25094/info Bandersnatch is prone to multiple input-validation vulnerabilities because the application fails to sanitize user-supplied input. These issues include multiple SQL-injections vulnerabilities and an HTML-injecti...
Bandersnatch 0.4 Index.PHP Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/26553/info Bandersnatch is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...
Bandersnatch 0.4 - index.php Multiple Cross-Site Scripting Vulnerabilities
Bandersnatch 0.4 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/26553/info Bandersnatch is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues t...
Bandersnatch 0.4 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/26553/info Bandersnatch is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.php in Bandersnatch 0.4 allow remote attackers to inject arbitrary web script or HTML via the 1 func or 2 date parameter, or the jid parameter in a 3 log or 4 user action, a different vulnerability than CVE-2007-3910...
CVE-2007-6001
Multiple cross-site scripting XSS vulnerabilities in index.php in Bandersnatch 0.4 allow remote attackers to inject arbitrary web script or HTML via the 1 func or 2 date parameter, or the jid parameter in a 3 log or 4 user action, a different vulnerability than CVE-2007-3910...
CVE-2007-6001
Multiple cross-site scripting XSS vulnerabilities in index.php in Bandersnatch 0.4 allow remote attackers to inject arbitrary web script or HTML via the 1 func or 2 date parameter, or the jid parameter in a 3 log or 4 user action, a different vulnerability than CVE-2007-3910...
CVE-2007-6001
Multiple cross-site scripting XSS vulnerabilities in index.php in Bandersnatch 0.4 allow remote attackers to inject arbitrary web script or HTML via the 1 func or 2 date parameter, or the jid parameter in a 3 log or 4 user action, a different vulnerability than CVE-2007-3910...
CVE-2007-6001
CVE-2007-6001 concerns Bandersnatch 0.4. The connected documents confirm multiple cross-site scripting (XSS) vulnerabilities in index.php, exploitable via parameters (func, date, jid) in actions (log, user). Root cause is improper handling of user-supplied input leading to script/HTML injection. ...
Design/Logic Flaw
Bandersnatch 0.4 allows remote attackers to obtain sensitive information via a malformed request for index.php with 1 a certain func parameter value; or 2 certain func, jid, page, and limit parameter values; which reveals the path in various error messages...
CVE-2007-5942
Bandersnatch 0.4 allows remote attackers to obtain sensitive information via a malformed request for index.php with 1 a certain func parameter value; or 2 certain func, jid, page, and limit parameter values; which reveals the path in various error messages...
CVE-2007-5942
Bandersnatch 0.4 allows remote attackers to obtain sensitive information via a malformed request for index.php with 1 a certain func parameter value; or 2 certain func, jid, page, and limit parameter values; which reveals the path in various error messages...
CVE-2007-5942
Bandersnatch 0.4 allows remote attackers to obtain sensitive information via a malformed request for index.php with 1 a certain func parameter value; or 2 certain func, jid, page, and limit parameter values; which reveals the path in various error messages...
CVE-2007-5942
CVE-2007-5942 affects Bandersnatch 0.4. A malformed request to index.php with specific func parameter values (or with a combination of func, jid, page, and limit) can cause error messages to disclose the application path, enabling information disclosure. The NVD entry attributes a CVSS v2 base sc...
Bandersnatch <= 0.4 Multiple Vulnerabilities
Binary data 4149.prm...